Sure, though that’s part of the problem that the States is whining about. US taxes paid for the service, which lots of other nations/foreign companies used.

Things like Libraries require taxes to operate. You’d likely be annoyed if you were struggling, and then found out your gov was using your taxes to pay for a bunch of foreign countries to have libraries. And then you find out that those foreigners are able to use those libraries to make good money, which they don’t use to support their libraries, cause the States is already covering it. So you’re paying taxes, and struggling to do so, so that EU companies can reap profits and live comfy.

And yes, charge a fee. That’s basically what I’ve said, no? That there’s a value add, and that there are ‘professionals’/companies using it who aren’t paying for that value add. So something like a fee for frequent pulls against the vuln feeds, to replace whatever funding the US gov was giving, would make sense to me. though I suppose this has now been kicked down the road till next year.

Yeah, but that’s sort of the point I was making… it was a data repository used by “thousands and thousands” of security professionals and organizations. So people who were generating revenue off of the service. I mean, they’re professionals, not hobbyists / home users.

I’m not an American, but in terms of everything running like a company/for profit, I’d say that its best if things are sustainable / able to self-maintain. If the US cutting funding means this program can’t survive, that’s an issue. If it has value to a larger community, the larger community should be able to fund its operation. There’s clearly a cost to maintaining the program, and there are clearly people who haven’t contributed to paying that cost.

In terms of going back to whatever, the foundation involved is likely to sort out alternative funding, though potentially with decreased functionality (it sounds like they had agreements to pay for secondary vulnerability report reviews, which will likely need to get scaled back). Maybe they’ll need to add in a fee for frequent feed pulls, or something similar. I wouldn’t say it’s completely toast or anythin just yet.

I’m honestly not totally sure what to think about this one, though I recognise that it’s a big shift/likely a negative overall result.

Reason I’m humming and hawing, is that there are lots of expensive cybersecurity type ‘things’ that rely on the CVE system, without explicitly paying in to that system / supporting it directly, from what I recall / have seen. Take someone like Tenable security, who sell vulnerability scanners that extensively use/integrate with the CVE/NVD databases… companies pay Tenable huge amounts of money for those products. Has Tenable been paying anything into the ‘shared’ public resource pool? How about all those ‘audit’ companies, who charge like 10-30k per audit for doing ‘vulnerability / penetration tests’.

IT Security has been an expensive/profitable area for a long time, while also relying on generally public/shared resources to facilitate a lot of the work. Maybe an ‘industry’ funded consortium is the more appropriate way to go.

pot -> kettle

The states has been moving towards authoritarian corporate control for a long time though. The freedom cities controlled by big tech, setup in whatever country they want, operating outside ‘local’ regulations, with services via satellite and protection via US military, very much fits with what Starlink has done. Techs push for ‘rare earth’ (uranium) is likely about powering these sorts of cities, without needing to rely on a ‘countries’ power grid – to make them autonomous and impervious to local issues.

A few big military powers to allow for the “constant enemy” setup similar to 1984, with a corporate backend to prop up oligarchs that can act based on the whims of the oligarch without fear of repudiation.

Authoritarianism is on a big upswing lately, and egalitarian ideals are busy eating themselves alive – mired in demographic politics. And the conspiracy gremlin in me says it’s been intentional on the part of the democrats/progressive sorts, as they’re just as beholden to ‘rich’ authoritarian leaning tech people as the right wing/republican sorts.

Reddit’s seeing membership outflows resulting from their more draconian policies. Reddit boss restarts a competitor platform so that he can try and recapture users by owning his own competition, while trying to pretend like there’s no conflict.

idk. Seems pretty suspect to me. Lemmy seems ‘ok’ for news aggregation, and it has a more community / local vibe to it. For example, I can have more confidence that the feeds I see on Lemmy.ca are more controlled / accountable to Canadians, rather than the heavily Americanized subs that exist in Reddit. And I can pick and choose which other subs to see, with better understanding of the likely biases that I’ll encounter. This sort of end user transparency is really refreshing, especially given the burbling propaganda war being waged by the Americans at present against Canada.