Please create an account to participate in the Slashdot moderation system

 


Forgot your password?
Close
typodupeerror
×
Linux Business

Getting Companies to Contribute to Open Source? 57

Posted by Cliff from the an-uphill-battle dept.
epiphani writes "At my company, we make heavy use of Open Source products in almost all work we do. We also spend significant amounts of time customizing these packages to our needs, be they for performance or functionality. With the exception of actual bug fixes, we are not generally permitted to return those customizations to the community. The GPL allows us to customize these packages for internal use, and we do not distribute our changes outside our organization. Being an open source developer in my spare time, I can see the value of these customizations, and can see how they could be improved by releasing them into the community. However, the company does not allow us to return them because they are seen as our investment and as our competitive edge over others in the same market. We have thousands of hours of code development and packages we are being forced to maintain internally as a result. How can I, being a lowly developer, convince our management that it makes more sense to release many of these customizations back into the Open Source community? How have people convinced old-corporate management that its a good idea to give away something we just spent three months building?"
This discussion has been archived. No new comments can be posted.

Getting Companies to Contribute to Open Source? More

Getting Companies to Contribute to Open Source?

Comments Filter:

  • start small (Score:4, Insightful)

    by iocat ( 572367 ) on Wednesday December 06, 2006 @12:41PM (#17131378) Homepage Journal
    Start small, with a dicrete component, and emphasize the PR benefit. "MegaCom Gives Back" will raise some goodwill for the company. Talk to someone in PR/Marketing -- they are always looking for new press release to do. Now is a great time too, "MegaCom gives back for the Holidays!"

    • Re: (Score:3, Insightful)

      by networkBoy ( 774728 )
      You hit it on the head. Get the marketing dept to think it is a good idea then you have your own marketing department working to market your idea to the bosses :-)
      -nB
      • Or you could present it as follows:
        Reasons for releasing code to the open source community:
        * If there is no direct value to your competitors then why not? If the goals of the project are not the goals of your business then you won't be helping your competitors.
        * Bug fixes and maintenance are now naturally outsourced.
        * You get more control of the open source project itself through inclusion of your code, and through ...
        * Increased respect for your developers and your company in the community
        * Adding feature
    • This may not produce the results expected, particularly if his company is a venerable leader in his field. Saying MegaCom gives back is just an invitation for competitors to steal their code.

      For example, imagine if Google decided to release all their code back into the community. The PR it would bring them would be negligible, but EVERYONE would be scrambling to grab hold of their code to use it. The competitive risk far outweighs any benefits.

      • Re: (Score:3, Insightful)

        by blincoln ( 592401 )
        The competitive risk far outweighs any benefits.

        I disagree. It would lend weight to the idea that other companies should do the same. How many of the OP's employer's competitors are writing code that's functionally the same and also keeping it secret? They're not maintaining an advantage, they're all wasting time doing the same thing on their own.

        One more company giving its work back to the community may not make a difference, but it helps move the aggregate of all companies in the direction of doing the sa
        • "I disagree. It would lend weight to the idea that other companies should do the same. How many of the OP's employer's competitors are writing code that's functionally the same and also keeping it secret?" You've proved the OPs point. His competitors are playing catch up by writing code that the OP already has. This one of the fundamental disconnects between OSS and profit driven corporations. In the OSS world its good if everything improves. You prefer others to gain through your efforts. Its a group effo

          • Re: (Score:3, Insightful)

            by Stradivarius ( 7490 )
            You've proved the OPs point. His competitors are playing catch up by writing code that the OP already has

            Or it could be that his company is the one playing catch-up, not his competitors, who might similarly have their own secret patches to do the same thing and more. There's really no way to know unless the various competitors communicate their positions, which is probably unlikely.

            Also, consider that by contributing his version of improvements to the OSS community, his company can get free maintenance and
            • Also, consider that by contributing his version of improvements to the OSS community, his company can get free maintenance and further improvements. This imposes a cost on their competitors, who now must either essentially maintain a fork of the software with their own now-incompatible secret changes (thus losing out on the community's improvements), or spend money to convert their own secret changes to be compatible with the new "official" version.

              Bingo. That's the key right there... as long as you don't

    • Banking and Secrecy (Score:5, Informative)

      by justanyone ( 308934 ) on Wednesday December 06, 2006 @01:35PM (#17132584) Homepage Journal
      I used to work for BankOne (now JPMorganChase) in Chicago doing Perl work for their Capital Markets trading systems. This meant writing about 40,000 lines of Perl code to decode the bank's internal reports and load 'em to a data warehouse. In the process, I had to decode some report formats that were not proprietary, as well code up some helper modules, like ones that retrieved files (recursively) from FTP sites, verified they were complete, etc., based on configuration files.

      Much of this code could have been released to http://cpan.org/ [cpan.org] nicely.

      However, I signed a nondisclosure agreement (NDA) when I joined the bank saying, more or less, I won't release any of the bank's intellectual property to any third party without prior (probably written) approval from umpteen layers of management.

      This kind of NDA has been more-or-less standard when joining a new firm as a developer. People don't like it when you release code to the world that gives your company a competitive edge, or might present a security risk if people knew how you were doing things (I know all those rules about security through obscurity being useless, but that's different than posting to a cracking website the protocols you use to get data from servers around the bank).

      The problems of being able to contribute back this worthwhile code are legion. Many organizations are not set up to deal with this kind of problem yet. Over time, when managers come to understand that there are definite gains to be made by releasing a module to the wild, and actually find that other people like it and contribute-to/improve it, then word will get around.

      I would counsel slow, persistent, quite isolated pushes for very clearly non-business-critical components to be put under the GPL into CPAN or the like. No excited "let's do this" will get the idea through. Calm, rational arguments about a component being broadly useful elsewhere and this would may mean someone else (that you don't have to pay) will fix the small bugs we don't have time for.

      I think this is going to take hold at smaller companies MUCH more quickly. I work at a startup now, and we regularly contribute patches to several of the open source (mostly Python) projects we use. Why? Because we want our changes incorporated into the tree so we don't diverge too much from the standard release (which would require much more work to update when they release a new branch).

      After a while, larger companies will get the message, too, and understand this business model. Compare this to flying airplanes - pilots all talk, and contribute info, so everyone is safer. Your competitive advantage is the systems you build, and how you run them, not the fact that everyone else crashes more than you do, because whenever anyone crashes, everyone suffers.
      • What I would like to know is about the routines that you wrote for your employer. Did your employer commission you to write these programs? Did he pay you specifically to write tools or did he pay you to maintain systems already in place. What it sounds like to me is that you made your own tools to make your job easier, and if they are your tools - well "Do what thou wilt."? Or am I thinking incorrectly here?
        • > Or am I thinking incorrectly here?

          Even if you're right, you'll still be fired and have 1000s of dollars of legal bills. My advice is to get a job somewhere sane instead. There are plenty of code monkeys that can write insecure proprietary software, but the number of people that can write good open source software is much lower. Hence, finding some place to use that skill will probably get you a better job anyway.

      • Re: (Score:3, Insightful)

        by Twylite ( 234238 )

        This is good advice, especially the bit about "non-business-critical components".

        I'm going through the process of getting company approval to release a component as Open Source, so I'll add my 2c for anyone who finds themselves in this position.

        First, drag your sorry brain out of the technical trenches and understand how your business creates value. You have to understand that before your can claim that any given bit of code is or is not valuable.

        Second, focus your efforts on bits of code that you ca

    • Actually in my own experiences I'd say, start small, and keep a low profile. It is easier if things falter, and you don't need a Microsoft (funded or employed) rep calling your boss's boss to ask them FUD-fueling questions like "what about the liability?"

      I've seen low profile submission of patches being a great way to start. This is often easy to explain and justify to your manager, and no one else needs to know about it. The developers are glad to get a good patch, so they will welcome contributions on the

    • Re: (Score:3, Insightful)

      by DerekLyons ( 302214 )

      Start small, with a dicrete component, and emphasize the PR benefit. "MegaCom Gives Back" will raise some goodwill for the company.

      Sure - it will create some goodwill. Mostly among the F/OSS community, which is unlikely to be MegaCom's target demographic. It'll give the Slashdot and F/OSS folks a few warm fuzzies - but the net PR result will likely be close to nil.

      The fact that this same lame question keeps getting asked and getting the same lame and predictable answers should be a clue that ther

  • open source is an acquired taste. (Score:4, Interesting)

    by yagu ( 721525 ) * <yayagu@[ ]il.com ['gma' in gap]> on Wednesday December 06, 2006 @12:42PM (#17131408) Journal

    I once gave a presentation on Linux to a corporate "get together"... a full auditorium. While I shanked the Linux presentation, I did get off on an Open Source tangent that spilled over into the next time segment. Over 100 audience members stayed.

    I shared my experiences about Open Source and why I thought conceptually there were a lot of great returns on investment by thinking in terms of Open Source. I suggested as a first step corporately we could begin to think of ourselves as an Open Source community whereby any code anybody created anywhere in the company be made available for use by anybody else.

    Note: I did not put this out as a suggestion for "code repository", a concept I have seen fail time and time again (usually because of heavy handed requirements to "go to the well" for already written code, usually poorly written and ill-suited for the task at hand). Instead I saw this as an opportunity for real code sharing in a community whereby status (and maybe even title) was elevated by putting something out there others liked so much, they wanted to use it.

    I described all of the tools, "slashcode", etc. that could provide infrastructure. The interest was palpable... but the audience was mostly tech staff. Ultimately nothing happened... as managers pretty much stated they weren't about to let any of their staff share their code to other projects.

    Yes, Open Source/sharing is an acquired taste, not one easy to get corporate management to try. When and until corporate management loosens up their uptight world view a bit and be a bit more willing to share, maybe you'll see Open Source gain purchase.

    • Re: (Score:3, Informative)

      by Intron ( 870560 )
      My company took the opposite view when it started work on open source. Giving back patches saves money because
      • we were able to start from working code that did most of what we wanted
      • we don't have to repatch each new release
      • we don't have to worry that someone else implements the same change in a different way
      • we get hundreds of free testers

  • #1 - Cheaper to Share the Cost of Maintenance (Score:4, Insightful)

    by mkcmkc ( 197982 ) on Wednesday December 06, 2006 @12:44PM (#17131442)
    One argument is that it's cheaper to share the maintenance cost of all of these deltas, which the poster suggests is significant. (And any company that wants to use the shared code but doesn't want to share back will find itself in the same bind your's is in now.)
    • Even better than that, it's possible that the patches will not only make it into the trunk, but actually get improved there. Say you upload a Perl module for handling some obscure file format. Somebody else might have the same problem, but also have a group of files that exercise other corner cases of that format. When you go to upgrade your software, suddenly it handles all these corner cases, without your company having to lift a finger.
  • Try to calculate the cost involved in maintaining there own code wrt the changing public code base. Offset that cost to the added revenue by keeping their own code secret. If the numbers make sence, managers will at least contemplate it. Be sure to have a viable test program setup for this. Finally, bundle it up in a nice report, ask your direct superior for approval and put it in peoples inboxes.

  • cost analysis (Score:3, Informative)

    by TheSHAD0W ( 258774 ) on Wednesday December 06, 2006 @12:48PM (#17131522) Homepage
    Do the math. Calculate out how many hours it's taking you guys to merge new updates into your code and how much money per month/year it's costing you. Then tell management you can cut that by 90% by contributing code back, and ask them whether it's worth that much to keep that "edge" they're talking about.

    • Re: (Score:3, Insightful)

      by westlake ( 615356 )
      Then tell management you can cut that by 90% by contributing code back

      wildly improbable claims of massive cost savings screams "Bullshit!" to management. you want to get this thing done, keep your promises anchored in reality.

    • Re: (Score:2)

      by bakes ( 87194 )

      Do the math. Calculate out how many hours it's taking you guys to merge new updates into your code and how much money per month/year it's costing you. Then tell management you can cut that by 90% by contributing code back, and ask them whether it's worth that much to keep that "edge" they're talking about.

      Unfortunately this won't help if the changes are seen to be part of a 'competitive advantage'.

      What would help get things started is isolating that code that most definitely does NOT give any sort of competitive advantage, and encouraging the company to release those changes. Don't push to release everything, just a few 'insignificant' bits. Some is better than none.

      The parent's point is a good argument to help you get started.

  • Translate the following into business speak:

    "By releasing our changes, and encouraging others to do the same, you can receive enhancements and bug fixes to those changes at a cost lower than developing them in-house." If it is a piece of software that gives you an edge over a direct competitor using the same software, do a cost/benefit analysis and figure out whether it's worth while to release it. You may even be able to negotiate an agreement with that competitor to "both" release your source.

    You co
    • Unfortunately if this is too successful this may make any people who are just writing code at your company ultimately useless. Remember: downsizing is cost-effective if your employees don't need to work as much as before!
      • Instead, use the opportunity to get more done with the same people.

        Spreading the workload should imply that the people in MegaCorp can spend more time focussing on the solutions that MegaCorp wants, & less time with basic adaptation & repeated work like re-applying patches.

  • Maintenance costs (Score:2, Insightful)

    by Anonymous Coward

    How can I, being a lowly developer, convince our management that it makes more sense to release many of these customizations back into the Open Source community?

    Keep track of the amount of time you spend maintaining those changes outside of the upstream distribution. A new major version is released that forces you to spend time patching to keep up to date? That's something that wouldn't happen if you contributed your changes back to the community. Maintenance is an ongoing cost; releasing your code

    • Keep track of the amount of time you spend maintaining those changes outside of the upstream distribution. A new major version is released that forces you to spend time patching to keep up to date? That's something that wouldn't happen if you contributed your changes back to the community.

      As a manager, I'd also be tempted to solve the "wasting time on custom code" problem by either looking at a commercial package that keeps us out of the custom code business or outsourcing the custom code bits.

      Also, sending

      • Re: (Score:2)

        by dch24 ( 904899 )

        Also, sending back to the community isn't always a guarantee that your changes will make it in, or that they will make it in by the time you need it. In that respect open source projects are similar to commercial products: in both cases you are often subject to the whims of leaders who are not your employees.

        I was thinking along the same lines, and wondering what arguments could be made by a company which wants to contribute a large set of patches and what arguments could be made by the project lead in th

      • Whether or not custom code is appropriate in their particular case is irrelevant. The point is that if you have spent a considerable amount of time fixing or improving open source software that you rely on, there is considerable benefit in contributing that code back to the project. There is the maintenance piece as already mentioned. Additionally, you benefit from continued testing and perhaps bug fixing or further improvement of your code by the larger user community. This alone can be a huge benefit, bec

      • Re: (Score:2)

        by Rakishi ( 759894 )
        As a manager, I'd also be tempted to solve the "wasting time on custom code" problem by either looking at a commercial package that keeps us out of the custom code business or outsourcing the custom code bits.

        And you'd thus in many cases you'd be a shitty manager:
        a) It's likely no commercial package meets all your requirements
        b) Switching has a large upfront cost (migration, retraining, hiring new support staff, etc.), not counting the actual cost.
        c) Outsourcing is likely to just create confusion and even m
  • Hi;

    sometimes a mix is a good thing, if you look at email, there were a lot of opensource projects in the early days, sendmail, postfix, exim, qmail, cyrus, imp, horde, openldap etc. But, if you look at the VoIP area, which really is nothing more than another protocol to talk over the internet, in this case, SIP and maybe XMPP vs SMTP/POP/IMAP and DNS of course to make it all work, the opensource projects are less. Most notably Asterisk and SER.

    I do not have a perfect answer why there are less efforts, maybe

  • Why we're about to do it (Score:3, Interesting)

    by truthsearch ( 249536 ) on Wednesday December 06, 2006 @12:59PM (#17131760) Homepage Journal
    My company is just getting ready to open source some of our software. We're also planning to contribute back to some open source software projects we use. Here are the biggest reasons:

    - PR and advertising. With our corporate name attached to some projects out in the community we get a little mind share.
    - Demonstration of our expertise. By contributing features and patches back to large projects we can show clients and prospects that we know what we're doing. We're not just users of well known apps, we also know how it works deep in the code. Therefore we're worth every penny we charge.
    - We'll get back more features and patches from the community. If we open source a new package (or a new module to an existing project) that people are interested in, the community will provide feedback, support, and code.
    - It contributes to how good the developers feel working at the company.

    We're not concerned if our competitors pick up our open source code. First, we're not open sourcing absolutely everything we have. Second, our clients get value from the custom solutions we provide. Even though we have general purpose code we can give to the community, our clients will still pay to have it customized just for them. Plus by showing we share code between projects they realize we're actually saving them development time and money.
    • I dream of the day that people will demand from the companies to open their code... ;)
    • A lot of this discussion seems to presume that the companies involved are SOFTWARE companies, by which I mean they make money from their software.

      While certainly these companies are going to be the ones most likely to have software to give back, there are plenty of non-software companies that nonetheless use and enhance open source software. For example, I know of biotech firms that have hired professional developers to modify various open source packages (from scientific tools to ecommerce) and, in at lea
  • As a company, why would you ever pay?

    Seriously, as long as you treat the free code like groundwater and it does what you need, what's the incentive to ever kick back? The ONLY open source projects I give any money too are those that require me to do so to rebundle their stuff into commercial products I profit off of.
    • You lost me. Where did he say he would be giving money to the open source projects? All he's talking about is trying to contribute patches, which shouldn't cost him anything.

  • Core Competencies (Score:3, Insightful)

    by bill_mcgonigle ( 4333 ) * on Wednesday December 06, 2006 @01:27PM (#17132396) Homepage Journal
    Don't give back the changes that really make a difference to what you do as a company, but really do figure out what you do as a company.

    So, if you're not in the backup business, the features you added to bacula should go back to the community so you don't have to maintain them.

    If you're selling Widgets and the Boss thinks of WidgetCo2 has a better backup system they'll be able to outcompete you there's something wrong with your business.

  • Carthage must burn (Score:3, Insightful)

    by MarkusQ ( 450076 ) on Wednesday December 06, 2006 @01:57PM (#17133040) Journal

    If you have the right sort of personality, and the right sort of boss, you can get your point across by repeatedly showing how silly the logic is.

    For example (I actually used this once):

    Me: Would it be better to buy or rent a volcano?
    PHB: What?
    Me: Would it be more cost effective to buy a volcano, or rent one?
    PHB: What are you talking about? Why would we need a volcano in the first place?
    Me: Well, we have to plant the coffee someplace, and according to what I recall, it grows well on the sides of volcanoes.
    PHB: We don't need to plant coffee in the first place.
    Me: But what about our competitive advantage? If we aren't drinking special coffee that's a little better than the...
    PHB: Ok, I get your point. Submit the damn patches.

    Of course, there were twenty or so intermediate steps, including my arguing that we should refuse to answer a product satisfaction survey from a vendor, because they might use the information to improve their product, and so forth. But since the argument against submitting patches is so weak in the first place it real was a pretty easy sell.

    --MarkusQ

  • Moo (Score:2, Insightful)

    by Chacham ( 981 )
    Just a thought, don't write the code yourself right away. As on the mailing list if some pseudo-code would help implement some feature. Afterwards, code it.

    Besides having submitted at least pseudocode (which someone else may just write for you) you'll be able to hear if its already beenm done.
  • I see a lot of people are suggesting that you mention the difficulties of merging external code changes into your own custom code base, but one thing I don't see emphasized enough in this thread is some way to communicate that given that there's already a lot of value out there, the value that the code can build on top of your changes may be worth giving back for.

    Yes, you've got a (perceived) competitive advantage by hiding stuff away, but maybe you can quantify how much of an advantage that really is (I'd
    • They already have an advantage by using OO. (most of their competition are probably still paying for MS Office).
    • Being known as a contributor to the OO community will make it easier to hire quality coders.
    • They will get thousands of free testers
    • They will get free support for their new code
    • they won't have to re-patch OO every time there's a new version
    • Free developers -- other people will improve the code that your company releases
    • possible compatibility with the outside world (as their approach becomes a
  • Even if it can't be compelled to release them, once they're out... IANAL but it seems to me the GPL applies once the cat's out of the bag. Tough noogies for your bosses if they don't like sharing. Besides, what are the chances they'd catch you?
  • Our business (85%) is custom embedded firmware and hardware designs. We make some money from the few products we sell OTS; but even those are by their nature designed to be customized.

    Whereever possible, we give changes back and our released code is free. Open source tools allowed us to build our business on a very tight budget. Good Karma. :)

    There is still a lot of resistance to releasing source, period, though. We find smaller clients much more receptive to the idea of GPL code inclusion than larger ones
  • There's a groklaw comment from someone who noted that [groklaw.net] Coverity is using their automated bug-hunting software on Open Source code (for free!) and documenting the bugs that they find.

    Why? Well, FLOSS code doesn't have NDA provisions, so Coverity can use the results that they get with FLOSS code in their marketing literature without having to worry about getting sued. As a result, everybody gains. Coverity gets a public testbed for their code, and the OS community gets free access to a tool that many pr

Slashdot Top Deals

"What man has done, man can aspire to do." -- Jerry Pournelle, about space flight

Close