HP and Novell announced a joint agreement to certify and support the Novell SUSE LINUX operating system on select HP Compaq client systems.
A Canadian researcher has drafted a paper about five areas where open source software often falls flat on its face - user-interface design, documentation, feature-centric development, programming for the self and religious blindness.
There are two vulnerabilities in CVS; one in the server and one in the client. These vulnerabilities allow the reading and writing of arbitrary files on both client and server.
Several serious problems have been discovered in the Linux kernel. This update takes care of Linux 2.4.18 for the i386 architecture. This advisory replaces the i386 part of DSA 479-1 (except for the i386bf part). An unfortunate build error caused some of the kernel packages in DSA 479-1 to be broken.
Steve Kemp discovered a vulnerability in xonix, a game, where an external program was invoked while retaining setgid privileges. A local attacker could exploit this vulnerability to gain gid "games".
Max Vozeler discovered two format string vulnerabilities in ssmtp, a simple mail transport agent. Untrusted values in the functions die() and log_event() were passed to printf-like functions as format strings. These vulnerabilities could potentially be exploited by a remote mail relay to gain the privileges of the ssmtp process (including potentially root).
A number of vulnerabilities were discovered in tcpdump versions prior to 3.8.1 that, if fed a maliciously crafted packet, could be exploited to crash tcpdump.
On Monday, the new Mozilla 1.7 branch was cut from the trunk, in preparation for the final release of Mozilla 1.7 in mid-May. As well as 1.7, the branch will also provide the foundation for Mozilla Firefox 1.0 and several other Mozilla-based applications. Post-1.7, the new branch will replace 1.4 as the stable development baseline. Checkins to the branch require approval from email@example.com — the trunk, meanwhile, is now open for 1.8 Alpha development work. Consult tinderbox for the latest tree status.
A new version of the X11 windowing system, used by Unix-like operating systems including Linux, will become generally available in ten days time. This is significant as it's likely to be the version that will face most users in future distributions. Known as X11R6.7, it's the first release from the XOrg consortium. This was originally founded to steer the specification in May 1999, but only recently decided to do something about it, citing the glacial pace of development by the XFree86 consortium.
The beauty of the open source software community -- and the General Public License that governs Linux and open source -- is that innovation must be shared with the community. This can also cause a bevy of sleepless nights for vendors, IT managers, developers and enterprise bean counters. Reciprocal, or "copyleft", provisions in the GPL give the license a viral aspect...
Approximately 650 MySQL users and supporters are spending April 14 - 16 in the conference center of the Peabody Hotel, with so much of their time occupied by MySQL training sessions that hardly any of them seem to be taking advantage of Orlando-area tourist attractions like Walt Disney World. These people came here to learn -- and possibly to swim with dolphins Thursday evening. The dolphin outing is totally appropriate; there's a dolphin in the MySQL logo. But long discussions about how to make MySQL run better and faster are this group's main course. The dolphin swim is just dessert.
A CANADIAN researcher has warned that Open Source will fall flat on its face unless it gets its act together. In First Monday, Michelle Levesque said that the Open Source concept fails because of its "user-interface design, documentation, feature-centric development, programming for the self and religious blindness". She warned that Open Source will remain an unknown quantity to most computer users until these problems were addressed.
Real World Linux 2004 Conference and Expo is under way this week at the Metro Convention Center in Canada's largest city, and NewsForge is there. Day 2 of the conference saw a lot more people and a lot more happening.
Updated Subversion packages that fix a vulnerability in neon, exploitable by a malicious DAV server, are now available.
Building the case for turning the Boy Scouts into a worldwide advocate of free software.
So, my challenge goes out to everyone to share their own experiences in getting an open source project off the ground, technically speaking. Are there tools out there that make this process much easier, and perhaps ones that I could take advantage of by moving my own open source project to? Also what experiences have people had with the different community projects?
Introducing open source software to those who will teach future generations of computer programmers was a major theme at the ICT in Education Conference held in Cape Town last week.
Two years after the start of the trademark dispute between Microsoft Corporation and Lindows Inc., the battle over the "LindowsOS" name is over - henceforth it will be called "Linspire."
Here is our promised in-depth look at the latest SUSE 9.1 beta. I found a little more flakiness than I would be comfortable with long-term, but I have been using this near-final version in my day-to-day work for nearly a week now and see no reason to go back to my previous installation.
"It is important to remember that open source is not free of cost – it is free to use and share. Its use must be part of a strategy as it can be costly in terms of migration, integration, training and systems management."