Showing headlines posted by Scott_Ruecker

The Ruby on Rails developers have, in their blog, noted a security problem which can allow the circumvention of password protection of pages or content. This is related to the return value from the digest authentication code, authenticate_or_request_with_http_digest. This code should return true if the user is found and false if not. However the documentation was unclear, and it was possible for a developer to return nil from the method.

A new bi-weekly development update of Wine is now available. The release of Wine 1.1.23 is not as exciting as some of the other development updates recently that have brought cleaner Direct3D code, initial Shader Model 4.0 support, and other exciting enhancements, but there are a few changes the developers list as important for version 1.1.23.

Intel announced that it has entered into a definitive agreement to acquire Wind River Systems, one of the top providers of embedded Linux distributions and tools. Intel plans to acquire Wind River for $11.50 per share in cash, or about $884 million, making it a wholly owned subsidiary.

When Black and Decker trains new sales person they ask, "Why do people buy a Black and Decker Drill?"After all of the discussion about power, size, and battery live, the answer is simply, "Because they want a hole." Sugar is in the same situation. "Why would someone want Sugar?" After the discussions about tool kits, screen size, and battery life. The answer is simply, "To help their kids learn." The desktop, and even the computer become invisible as the number and quality of learning activities increases. The learning activities, remain visible and occupy a child's full attention while the rest of the system stays out of sight

Linux has a lot of great tools for recovering deleted files, including filesystem commands that aren't specifically designed for recovery, but can do it anyway. Juliet Kemp shows us how the lsof command can be used to recover deleted files.

I need at least one i386 installation here at Studio Dave because some production software is not yet 64-bit ready, and I happen to need that software. SuperCollider3 can run on a 64-bit system, but only after some tricky maneuvers; the label printing programs for my Lightscribe drive are 32-bit only; and VST/VSTi audio plugins still work best in a pure 32-bit system. My main production machine runs a pure 64-bit distribution (64 Studio), but an i386 box is still required for the complete Studio Dave.

Pain-free networking is the promise of Gnome's NetworkManager. For mobile laptop users NetworkManager is great, but what about desktop and server deployments? Charlie Schluting takes it for a torture-test to find out.

The Linux Driver Project (DLP), started by kernel developer Greg Kroah-Hartman about two and a half years ago, is a group of Linux kernel developers and project managers that focus on developing and maintaining Linux kernel drivers for device manufacturers. The group works with manufacturers to create free drivers for various hardware. The project also aims to make sure that work on new and experimental drivers, takes place publicly.

Although it has been one of Novell's success stories, the company has none-the-less remained circumspect about committing to Linux. Novell's recently released figures for the second quarter of 2009 showed an 8.5 per cent drop in sales compared to the previous year – not a big surprise in light of the much debated economic crisis. Even so, the latest figures are in line with the broad trend at Novell. Sales have been falling for years – from just shy of $300 million per quarter in late 2004 to around $216 million now.

The Apache Tomcat developers have released patches to fix three vulnerabilities in their implementations of the Java Servlet and JavaServer Pages technologies. When Tomcat receives a request with invalid headers via the Java AJP connector, it closes the connection without returning an error message. The vulnerability can be exploited by an attacker in load balancing environments to initiate a denial of service (DoS) attack.

Google's Chrome browser was released for Windows last year, but they are now finally pushing out development builds of this unique web browser for Linux and Mac OS X. Linux users could previously try out the rough equivalent of Chrome via Google's open-source Chromium project, but this is the first time they are releasing a development version of the official Chrome web-browser for Linux.

Google is planning to release version 2.0 (code-named Donut) of its open source Android mobile operating system this year. While presenting the latest stage of development at the Google I/O developer conference in San Francisco, Google announced that Android 2.0 should be ready in approximately three to six months.

Saying it will improve the netbook user experience on Linux, RealNetworks Inc. is licensing its RealPlayer for Mobile for the popular Ubuntu Linux distro running on x86 and coming ARM-based netbooks, as well as three up-and-coming "instant-on" Linux operating systems. Besides Canonical Inc.'s Ubuntu, RealNetworks has signed deals with Xandros Inc. for its Presto instant-on Linux desktop, DeviceVM for its similar Splashtop product, and Phoenix Technologies Inc. for its also similar HyperSpace Linux environment.

Anyone who doesn't know the economy is unwell has obviously been off the planet or in a cave for the last nine months. Despite the government's attempt to stop the bleeding, one company after another has collapsed — the latest to join the list is General Motors, a fixture in American automotive culture. GM's situation, which included filing for bankruptcy this week, comes with an additional blow to the company, if not fiscally then to its corporate pride: the company's bankruptcy filing has disqualified it from inclusion in the Dow Jones Industrial Average, an honor it has held for eighty-three years, a record second only to General Electric's 102 years.

Christian Schaller's Transmageddon and Daniel Taylor's Arista are both easy-to-use video file conversion tools for GNOME, but they share more than just a vision for simple file transcoding. Rather than competing head-on (or attempting a merge), the two developers are collaborating in the middle; sharing information and utilizing the similar aims of their projects to strengthen the underlying GStreamer multimedia framework on which both code bases depend.

As they make software and hardware purchases, governments are creatures of habit. They form long relationships with IT vendors and stick with them so they can keep their IT systems running with minimal interruptions. And while new technologies might be intriguing, governments often shy away from major IT changes because they have little willingness to take even the slightest risks of introducing a glitch into their infrastructures. So they stay with the companies and technologies they know as they undergo their traditional Request for Proposal (RFP) contract bidding and acquisition procedures.

Forty years ago this summer, a programmer sat down and knocked out in one month what would become one of the most important pieces of software ever created. In August 1969, Ken Thompson, a programmer at AT&T subsidiary Bell Laboratories, saw the month-long departure of his wife and young son as an opportunity to put his ideas for a new operating system into practice. He wrote the first version of Unix in assembly language for a wimpy Digital Equipment Corp. (DEC) PDP-7 minicomputer, spending one week each on the operating system, a shell, an editor and an assembler.

Security specialist Jacques Copeau has analysed a number of well-known PHP applications for susceptibility to the MIME sniffing issue in Internet Explorer. This "protective" feature, originally introduced as a security measure in Internet Explorer 6 and 7, can in fact cause the browser to treat an image as HTML and execute embedded scripts.

After 5 months of hard work the Amarok team is proud to announce the next major release, Amarok 2.1, codenamed "Let There Be Light". Since the release of 2.0 we have gotten a lot of feedback and have already integrated some of it in 2.0.1 and 2.0.2. This new release includes a new look, many improvements, new features and brings back old favorites.

Linux is easy to customize, is stable, malware-resistant, lightweight, and both user- and developer-friendly. So why do OEM Linux netbook implementations suck so badly? Matt Hartley analyzes the exploding netbook market, and why Linux is struggling to gain traction.