Luis Villa

1 month ago

Luis Villa
1 month ago

It’s really really embarrassing that @TheASF still distributes OpenOffice, leaving people like this schoolteacher (name omitted to spare them spam) to think it’s a maintained or viable alternative.

My casual count suggests LibreOffice has done 40+ releases since OOo last did a release.

Screenshot of a toot, cropped to remove identifying information. The text of the toot reads:

Is Open Office a good alternative to Word?

Do I download something to use it?

Do I sound like my mother right now? Yes, yes I do.

(I think I last used Open Office in 1995)

@Apache - TheASF

reshared this

in reply to Luis Villa

bignose

in reply to Luis Villa 1 month ago

It seems clear to me that the embarrassment lands squarely on the tech media, who should be far better at communicating "#OpenOffice is not what you're looking for, use #LibreOffice @libreoffice instead". That's firmly within the tech media's job.

The job of @TheASF lies primarily in maintaining software. Let them maintain whatever software, for as long as people want it maintained.

#libreoffice #openoffice @LibreOffice @Apache - TheASF

This entry was edited (1 month ago)

in reply to bignose

Luis Villa

in reply to bignose 1 month ago

@bignose @libreoffice No, ASF has the domain and the Google/SEO juice, so they have the primary responsibility.

And to be clear they’re not actually maintaining it, since it regularly has security vulnerabilities that go unpatched for months at a time.

@LibreOffice @bignose

in reply to Luis Villa

Luis Villa

in reply to Luis Villa 1 month ago

@bignose @libreoffice Eg, the OpenOffice website could say “please don’t download this, we just do it for fun and as a result this often has security vulnerabilities. If you want an free office suite that is maintained to a high level of professionalism and security, please go to libreoffice.org”. But instead it not only encourages downloads, it misleads a banner stating “380M downloads”, giving the impression that it is an active (and presumably secure) project.

@LibreOffice @bignose

in reply to Luis Villa

Helga Secures All the Things

in reply to Luis Villa 1 month ago

@bignose @libreoffice something needs to be done about this. It's unethical to distribute insecure software. If there's corporate association here they could find themselves in a law suit, too, though most likely victims wouldn't have the wherewithal to initiate one. Where is sense of responsibility to one's community?

@LibreOffice @bignose

in reply to Helga Secures All the Things

LibreOffice

in reply to Helga Secures All the Things 1 month ago

@bluetea Please contact press@apache.org and ask them why they're still distributing OpenOffice despite multiple unfixed security issues over a year old. The more people that do this, the more chance there is of finally putting it in the Attic...

@Helga Secures All the Things

in reply to Luis Villa

some reatarded wood

in reply to Luis Villa 1 month ago

@bignose @libreoffice tbh I didn't know that OO is not well-maintained until your post...
I was thinking that way because of Manjaro calamares installer (which I used like 5 years ago) that had two options of office suite.

@LibreOffice @bignose

in reply to some reatarded wood

Luis Villa

in reply to some reatarded wood 1 month ago

@somereatardedwood @bignose @libreoffice it’s unfortunate but this is the case. Elsewhere in this thread I’ve posted at least three situations where a security researcher did proper bug filing against OOo, and then no release was done until after the security researcher had done the correct thing (waited, waited, and only then with reluctance published the vulnerability). And given that Libreoffice is doing regular security releases from a similar codebase, there’s almost certainly more.

@LibreOffice @bignose @some reatarded wood

in reply to Luis Villa

LibreOffice

in reply to Luis Villa 1 month ago

Please contact them (apache@apache.org) and ask why they're still distributing OpenOffice despite multiple unfixed security issues over a year old, and no updates. Let us know what they say. Thanks!

in reply to bignose

Adam Demasi

in reply to bignose 1 month ago

@bignose @libreoffice Not at all. The media can report on it (and they have, there are articles linked in this thread), but ASF is responsible for its own failure when they’re supposed to act as a FOSS project incubator. Nothing much is incubating here, and there’s no reason they should be misleading users when there’s an actively maintained fork.

@LibreOffice @bignose

in reply to Adam Demasi

LibreOffice

in reply to Adam Demasi 1 month ago

@kirb You can email press@apache.org and ask them if it's responsible to keep distributing OpenOffice despite the multiple, year-old security issues. See what they respond...

@Adam Demasi

⇧

Luis Villa

Luis Villa 1 month ago • •

Luis Villa
1 month ago