CCAN is supposed to be about the code, so I've avoided the standard GPL boilerplate comment at the top of each source file.  I reluctantly include a symlink to the full license text in each directory now, since lawyers approached me to clarify the single "License:" line in _info.  A useful discussion on the samba-technical mailing list has reinforced my view that it's marginal clutter, but most CCAN modules now have a one-line courtesy comment such as "/* Licensed under LGPLv2.1+ - see LICENSE file for details */" at the top of each .c and .h file.

Please make a conscious choice here: if license enforcement is a high priority for your project you probably want copyright assignments, license boilerplates and click-through agreements for everyone who downloads your source code.  But if you're spending significant time or effort on legal issues for your little coding project, you're probably doing it wrong...

(ccanlint now scans for common license boilerplates, as well as those comments; this means we can also detect use of incompatible licenses inside modules, or dependent modules.  The former test noticed that I'd labelled the md4 module as LGPL, yet it's actually GPL.  The latter spotted that ccan/likely (LGPL) depends on ccan/htable (GPL): legal (the whole thing is actually GPL), but misleading, as Michael Adam noted).  Automating this stuff is a clear win for a project like CCAN.  I also re-licensed a bunch of useful-but-trivial modules from LGPL to public domain, as I want the BSD modules to use them).