As some of our users discovered, about two weeks ago, SourceForge.net (which hosts all our open source software), began blocking downloads from IP addresses in Cuba, Iran, North Korea, Sudan, and Syria. This is due to those countries being on the United States Office of Foreign Assets Control (OFAC) sanction list.
Yesterday, SourceForge.net removed the blanket blocking and provided projects with the ability to select between two options in the Project settings:
SourceForge.net Project Settings
1. This project does NOT incorporate, access, call upon, or otherwise use encryption of any kind, including, but not limited to, open source algorithms and/or calls to encryption in the operating system or underlying platform.2. This project DOES incorporate, access, call upon or otherwise use encryption. Posting of open source encryption is controlled under U.S. Export Control Classification Number "ECCN" 5D002 and must be simultaneously reported by email to the U.S. government. You are responsible for submitting this email report to the U.S. government in accordance with procedures described in: http://www.bis.doc.gov/encryption/PubAvailEncSourceCodeNotify.html and Section 740.13(e) of the Export Administration Regulations ("EAR") 15 C.F.R. Parts 730-772.
The default selection for all SourceForge projects is the 2nd (to err on the side of caution). Project owners can change the selection to the first option, which will open up downloads to countries on the sanction list.
Unfortunately, we can not change the setting of our project to the first option. We have multiple applications hosted on SourceForge which utilize encryption including Firefox, Thunderbird, Sunbird, Songbird, FileZilla, KeePass, Toucan, KompoZer, 7-Zip, Miranda IM, Pidgin, PuTTY, SeaMonkey, WinSCP, WinWGet, OpenOffice.org, PDFTK Builder, PNotes and PeaZip. To select the other option would be a knowing violation of the law on our part and would expose us to possible fines or imprisonment.
The only real possibility would be to split the SourceForge PortableApps.com project into two pieces with all the apps with encryption on one project (with the block) and everything else on the other (without the block). Unfortunately, that wouldn't really be very useful as users behind the block wouldn't have access to the suite, browsers, ftp, email, IM, archives or an office suite... which isn't terribly useful.
In the end, there is no real workaround for us. Google Code (the other big open source host) also blocks downloads to those countries as they are also under US law. Using another server in another country to try to get around the issue would also subject us to possible fines or imprisonment. The only real way to 'fix' this and get all users access would be for the US government to change their policy. Until then, we will be unable to provide apps to users in the affected countries.
Kind Regards,
John
Visit the Community page
Join our forums
Subscribe to our email newsletter
Subscribe with RSS
Follow us on BlueSky
Follow us on Facebook
Follow us on LinkedIn
Follow us on Mastodon
Follow us on Twitter
http://www.computerworld.com/s/article/9167558/Update_U.S._lifts_Iran_Su...
Ed
Yeah, I saw that. Hopefully SourceForge will throw the switch to remove the block soon.
I'd be willing to bet SourceForge enabling that block did a good job of raising awareness of the issue and getting the policy to be changed, finally.
Sometimes, the impossible can become possible, if you're awesome!
Since North Korea isn't on the new 'unblocked' list per the Computerworld article, I assume it's still on the block list and therefore SF will have to block it.
The original SF press release mentions NK, the US Govt press release doesn't mention unblocking NK, and neither does the SF one so I assume North Korea is still "on the list".
http://www.ustreas.gov/press/releases/tg577.htm
EDIT: According to the NY Times, the ruling above doesn't affect North Korea and Syria so I'm guessing all countries are unblocked now. You almost need to be a lawyer to figure this out. :/
Reference: http://www.nytimes.com/2010/03/08/world/08export.html
The original PDF document everyone is quoting from is not available right now (all the links to it are broken) so here's the text from the doc if you'd like to read it (scroll down to the 2010-05023_PI.pdf part):
http://cryptome.org/0001/treas030810.htm
Cancer Survivors -- Remember the fight, celebrate the victory!
Help control the rugrat population -- have yourself spayed or neutered!
As I know, NK so called "internet" is just a huge LAN, It seems only Kim Jong-il can get access to the TRUE internet.
I hope China would not be on that list someday.