| Written by Steve Burge |
Those of you who know me realise I rarely, rarely get worked up ..... I think this is the first time I've used this blog to blow off steam. Its so rare, I've even had to create a whole new blog category for this. Anyway, the last couple of weeks I've been frustrated one recurring problem - encoded components. This issue has come up in three different situations: - Moving a site. Recently we moved a large site to a new domain name. That meant contacting several different vendors and asking them to work with us to change the licenses. One of them, the developers of a key component, failed to respond for over two weeks while the client and ourselves sat and fumed.
- Upgrading a site. One of our clients purchased a component about a month ago. A week later the developer announced that they would be encoding all future versions. The client isn't on a site that allows IonCube installation and so their new component won't ever get an upgrade, despite any security holes that might emerge in future.
- Developing a site. We developed a site offline and then put files onto a webserver so that it could be accessed it via an IP address. For example, you can access Alledia.com via IP address: 72.249.30.148. However, before the actual domain points to the site, none of the encoded components will work because they're tied to the domain name. So, instead of a smooth launch, we need to point the nameservers, take the site offline for a day while we test the encoded components are working properly and then launch the site. Very frustrating.
I am not against encoding per se and realise that developers need to be protected from people spreading their files around on warez sites. However, the problem is often with the way that the encoding is implemented: - Customer Support. If you want to use professional-grade encoding, you'd better provide professional-grade support. Some people such as Emir at Sakic.net and Jeff and Joomlaware.com do that. Certain others don't.
- Hosting. Even the best Joomla hosts don't always have Zend, IonCube and other decoding software available. We host with Rochen.com and recommend them wholeheartedly, but even they didn't have both available on all servers when we arrived. Zend itself has had some serious issues with some scripts such as phpBB and many hosting companies are reluctant to use it.
- Restrictive Licenses. If you're going to encode, at least allow people some leeway with the license. Some developers won't even allow the component to be used on a sub-domain. We never return to purchase a second time from companies that do this.
- Unclear Licenses. Try this simple test ....visit several component developers websites and see how long it takes you to answer the following questions:
- What's their upgrade policy?
- Will the product work on Joomla 1.5 or will I need to pay again?
- What happens if the software doesn't perform as described?
All valid customer support questions but you'll spend hours looking on most sites without finding the answers.- Usability. Encoding makes Joomla less attractive to the casual user. When we ask a resolutely non-technical user to negotiate their way through the different decoding requirements for three or four different components, we're drastically reducing the overall user-friendly nature of Joomla.
Finally, in closing, its appropriate to give kudos to those companies that produce commercial components but haven't yet succumbed to the siren call of encoding: (I'll be happy to add anyone I've missed) |
Comments
Very good points, as usual. I have struggled with encrypted code. My favorite calendar, Thyme, is encoded. I don't mind the price - in fact, it's a heck of a deal for as amazing as the calendar is.
But, why should some software be "protected" from the community eyeballs when it is taking full advantage of a market that exists because of trust others place into the community? I just don't like it.
Watching Eben Moglen's video of his Plone Keynote really cemented it for me. I completely support commercial open source products, but I can not get behind encoding. If we buy it, we are discouraging our open source developers. It makes no sense to me.
A Link to Moglen's speech: http://daledietrich.com/imedia/2006/12/12/eben-moglens-plone-keynote-software-and-community/
I think that encoding should be the absolute minimum neccessary to stop people abusing the software and using it on multiple domains. Anything else, such as encoding the files simply to stop rivals reading the code, or restricting the components use on subdomains is a long way from the principles that attracted most of us to Joomla in the first place.
Fortunately this problem is not too widespread. In general we have a blacklist of three Joomla companies whose products we won't use for a combination of shoddy service, overly-restrictive licenses and the fact that encoded files contain places where we need to make modifications.
Watch this space...
I would like to say that you can add us
Some of our components were encrypted with IonCube, but we have decided to stop encoding.
We just propose evalutation version which are encrypted...
As you, I think, it's a mistake to encode for many reasons.
Congratulations for your blog, it's really interesting! I'm a big fan
That is good news
Thanks too for your work with Joomla - we're running NeoReferences on our site : http://www.alledia.com/porfolio/
Thanks for pointing that out! I've added Azrul to the list.
Steve
Food for thought: http://www.gnu.org/licenses/gpl-faq.html#GPLAndPlugins
I agree - thats a big potential issue.
As the encoding increases, so does the risk of infringing on the GPL.
I appreciate the stance of people such as Vince from Jomres.com, who will encode the absolute minimum neccessary to stop people ripping off their products.
Encoding simply to maintain a competitive advantage however....
Steve
RSS feed for comments to this post