On Sun, 29 May 2022 at 09:46, Imre Jonk <i...@imrejonk.nl> wrote: > > Hi all, > > I'm not sure if this is the right place to address this issue; as far > as I'm aware, there is no Arch mailing list or forum for legal matters. > What I'd like to discuss is the (unnecessary?) legal risk that mirror > operators are exposed to when they don't mirror source packages.
Mirrors are simply acting as a service provider and therefore they don't have the same risks as infringing parties. Services like Cloudflare or AWS S3 aren't responsible for the content they are serving, and the mirrors are pretty much offering the exact same service. The only responsibility we have is to respond to DMCA or GDPR requests. -Konstantin
