ELasticSearch License

484 views

Skip to first unread message

smit patel

unread,

Jan 23, 2021, 12:55:23 AM1/23/21

to Wazuh mailing list

Dear Team,

I belive Everyone has read about Elasticsearch license change rules.

Can someone please let me know what will impect on Wazuh Model.

News link:

https://www.protocol.com/enterprise/about/aws-targeted-by-elastic

Thanks in Advance.

Santiago Bassett

unread,

Jan 25, 2021, 2:36:26 AM1/25/21

to smit patel, Wazuh mailing list

Hello Smit and everyone,

as some of you probably already know, a few days ago Elastic announced that they will not release new versions under the Apache License, Version 2.0 (ALv2). New versions of the Elastic Stack software (starting from 7.11) will be dual licensed under Elastic License and the Server Side Public License (SSPL). More information can be found here:

https://www.elastic.co/blog/licensing-change

This change has raised some controversy because SSPL is not recognized as Open Source, since it violates definition number 6, of "The Open Source Definition". More information here:

https://opensource.org/node/1099

https://opensource.org/osd-annotated

As a result of this license change, several vendors (including Amazon) have now decided to fork the Elastic Stack to keep it open source. See blog posts below:

https://aws.amazon.com/blogs/opensource/stepping-up-for-a-truly-open-source-elasticsearch/

https://logz.io/blog/open-source-elasticsearch-doubling-down/amp/

As an open source project ourselves (our source code is licensed under GPLv2), with a community of thousands of enterprise users that rely on our solution to protect their infrastructure, we are committed to continue offering a comprehensive and innovative security solution (EDR/SIEM) for threat prevention, detection, and response. We have no plan to change our license or commercialize our source code.

Moreover, as one of the biggest advocates for open source in the cybersecurity space, we have decided to contribute to the initiatives to fork Elasticsearch and Kibana based on the latest ALv2 version. This means that our solution by default will be integrated with an open source version of Elasticsearch and Kibana.

In addition, for those who choose to use the Elastic commercial version, we will maintain compatibility with it too (as we do with other commercial software, such as Splunk).

I hope it answers the question. Happy to provide further explanation if needed,

Santiago.

--
You received this message because you are subscribed to the Google Groups "Wazuh mailing list" group.
To unsubscribe from this group and stop receiving emails from it, send an email to wazuh+un...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/wazuh/9d803a08-3d15-4aac-8cac-b1f971fba5f9n%40googlegroups.com.

Reply all

Reply to author

Forward

0 new messages