Hacker News new | ask | show | jobs
by zAy0LfpBZLC8mAC 3535 days ago
> Needless to say, OpenSSL is looking for contributors. Beyond contributing patches, interested developers can test the pre-releases, report bugs, and help to close bugs. The presenters concluded by saying that they would like users to get in touch, especially those who are distributing OpenSSL further downstream.

... and just a few days later they closed ~ 150 bugs, some with patches attached, "because they were too old":

https://www.openssl.org/blog/blog/2016/10/12/f2f-rt-github/

https://mta.openssl.org/pipermail/openssl-dev/2016-October/0...
1 comments
akira2501 3535 days ago
That was something else that irked me in the article, where they decry the small $2,000 a year they receive in donations; but they don't address how much their commercial support contracts[1] bring in. OpenSSL seems to be both an open source project and a cottage industry all wrapped in one.

[1] https://www.openssl.org/support/contracts.html

link
vtlynch 3534 days ago
The first date that Archive.org has that page is August 2015, after heartbleed. Do you know for sure that they offered this service before heartbleed?
link
LukeShu 3534 days ago
Yes.

https://web.archive.org/web/20120805001248/http://www.openss...

August 2015 is just when they did a website redesign, which caused some URLs to change.

link
vtlynch 3529 days ago
Good find. This is an excellent question. Knowing how much OpenSSL made through this is certainly important.
link