Bringing you the latest news from the Linux World.
Dedicated to keeping Linux users up-to-date, with concise
news for all interests
Sections: Main page Security Kernel Distributions Development Commerce Linux in the news Announcements Back page
Other stuff:
Contact us
Recent features: Here is the permanent site for this page.
|
Leading items and editorialsThe subversive power of free software. Many in the Linux community are attracted to the system because they want control over what they do with their computers. The freedom of free software allows us to know what goes into our systems, and to fix, improve, and change it as we see fit. To many, such freedom seems so fundamental that it is not even thought about all that much. Free software is increasingly running afoul of those who wish to exercise control not just over our ability to access source, but over what we can know and do. And, in the process, free software is proving itself to be an agent of freedom beyond just the keyboard. As a result, there may be a confrontation brewing in our future. Not everybody will like the subversive power of free software. This confrontation can be seen in the ongoing DVD and "cphack" affairs. But perhaps the first real demonstration of what free software can do was the release of PGP by Phil Zimmerman, years ago. The U.S. Government's desire to prevent the spread of cryptographic knowledge and code was frustrated forevermore. It was an exquisite act of subversion, and one for which Mr. Zimmermann paid with years under the shadow of a federal investigation. 21st century subversives are busily building an infrastructure to help let future cats out of the bag, and to keep them out. The FreeNet project is a classic example, but the real tool of the future may be the newly revitalized Gnutella project. Gnutella may look like a Napster clone to some, but it's much more interesting than that. Gnutella will be able to distribute any kind of file in an anonymous fashion, and in a way that is inherently difficult to shut down. If Gnutella works as planned, it will soon be a simple task to get a copy of DeCSS, cphack, or tomorrow's hot hack from the distributed network. Free software is a great way to codify (and improve) many types of information. The Internet already makes it easy to spread such information widely; with a suitably-designed decentralized distribution infrastructure built on top of it, the net will move further toward being the uncontrollable space that many have made it out to be. It would be foolish to expect that those who have something to lose in such a world will not fight back. The DVDCCA, the MPAA, and Mattel have already demonstrated that nicely. The responses we have seen so far, however, have mostly been of a panic-stricken, "throw lawyers at it" variety. Sooner or later, corporations and governments may start seeing free software itself as a threat. The nature of their reaction at that point is impossible to predict, but is guaranteed to be interesting. It's going to be a wild time. (Acknowledgements: very little of the above is original. The What is Gnutella? page gives a good overview of what they are about. See Upside's talk with Eben Moglen, the FSF's lawyer, for his view on the subversive side of free software. Anybody interested in these topics should certainly have a look at Lawrence Lessig's Code and Other Laws of Cyberspace as well. See also Jungle Monkey for another approach to distributed file sharing.) The Maryland General Assembly has passed UCITA. Maryland thus becomes the second state to adopt this law, which has a number of unfortunate implications for users of licensed software. The lawmakers in Maryland have, however, marked up UCITA considerably (detracting from the "Uniform" aspect of the legislation). Among the changes they made are restrictions on remote disabling of software, some "fair use" protections, and requiring licenses to adhere to Maryland's "fair competition" law - a change which is alleged to protect reverse engineering, at least in some cases. Those who want to see what passed can go to the House Bill 19 page and download it in RTF format. (Thanks to Bob Kopp). No joy at Linuxcare. Back toward the beginning of the year, when Linux stocks were still flying high, Linuxcare was often named as the company most likely to produce the next spectacular IPO. They duly filed in January, but the actual offering never quite seemed to happen. People were starting to wonder what was going on. Now it appears that the offering will not happen for some time. On Friday, April 9, the company confirmed the rumors that had been circulating with this press release. The release, which still contains most of what is really known about this affair, stated the following:
Linuxcare may well recover. There are many good people working there, and their business plan may yet yield strong rewards. Assuming that there are not more surprises in store, the company should be able to regroup and move forward. We wish them luck. Minix is free software. After many years, Andy Tanenbaum has finally released the Minix operating system under the BSD license. Had Minix used this license from the beginning, Linux may have never come to exist. As it is, Minix certainly provided some of the inspiration for the creation of a free, Unix-like operating system for PC-class computers. It is an important part of Linux history, and it is good that it is free at last. Inside this week's Linux Weekly News:
This Week's LWN was brought to you by:
|
April 13, 2000
|
Sections: Main page Security Kernel Distributions Development Commerce Linux in the news Announcements Back page See also: last week's Security page. |
SecurityNews and editorialsB1 sample source code from SGI. SGI has released source from a number of modules in its "Trusted IRIX" system as open source; it can all be found on the SGI open source site. The released code implements useful features like mandatory access control, capabilities, access control lists, audit trails, and more.Note that nobody should expect to plug this code in and turn a Linux box into a B1-secure system. The code has been released, but has not been ported to Linux - as the web site says, "the code that comprises this release will not work, it wont even compile. It is provided soley [sic] as a reference base for interested parties to investigate." Some of the code duplicates work that is already in the Linux kernel (capabilities), or which is well developed outside of the kernel (access control lists). It should, nonetheless, be most useful for those working on highly secure systems. (Thanks to Jose Nazario). The first release of Sentinel is out, see the announcement for details. Sentinel attempts to find hosts on a network which might be running password sniffers by using some clever techniques to find ethernet interfaces which are running in promiscuous mode. Most of these techniques involve sending packets with legitimate IP addresses, but with bogus ethernet MAC addresses; systems running in promiscuous mode will often respond to those packets. It looks like a worthwhile tool. The TrustedBSD project has been launched. As detailed in the announcement, this project is starting with the FreeBSD code base and adding a number of new features. The list includes a fancy authorization framework, capabilities, access control lists, and much more. The work, once complete, is intended to be merged back into FreeBSD. New Linux security site. SecurityFocus.com has set up a new Linux focus area with information of interest to Linux users. It starts off with an editorial from Bruce Perens. Security ReportsA vulnerability in Linux trustees has been reported. The Linux Trustees patch appears to implement a simple, access control list-like permissions model that allows different access permissions to be defined for different groups on the same files. It turns out that, through the use of very long paths, certain denial of service problems can be created, and the possibility of more sinister problems exists. Those using Trustees should upgrade to version 1.6.GNU locate in Caldera OpenLinux 2.4 eDesktop is run automatically out of cron as root, and allows any user to get a listing of any directory, regardless of permissions. The short-term fix is to disable locate in cron, while waiting for Caldera to come out with an update. UpdatesFreeBSD security updates. The FreeBSD project has issued a security update for a root compromise problem in healthd, as well as a fix for the ircii vulnerability.ResourcesIntel to Open-Source CDSA. Intel Corporation announced it will release the code for its Common Data Security Architecture (CDSA) software. A specific open-source license has not been mentioned.Intel getting inside open source (ZDNet). ZDNet looks at Intel's Common Data Security Architecture, which will be released as open source in May. "[CDSA] is essentially middleware with capabilities that can be called on or used by applications, such as e-mail or e-business software, to provide a level of security. It can, in other words, be used to encrypt e-mail or secure electronic transactions." (Thanks to Bertrand Fremont). Web-based firewall rule generation is available from the Linux Firewall Design Tool, put together by Robert Ziegler. Answer some questions, and it will generate a set of rules, in any of the ipfwadm, ipchains, or iptables formats. Note that the site requires Javascript to be enabled in your browser to function. Section Editor: Liz Coolbaugh |
April 13, 2000
|
Sections: Main page Security Kernel Distributions Development Commerce Linux in the news Announcements Back page See also: last week's Kernel page. |
Kernel developmentThe current development kernel release is 2.3.99-pre5. The pre4 release came out finally on April 11; it contained the changes that have been mentioned in the last couple of LWN kernel pages: a lot of additions to the configuration help file, a number of architecture-specific updates, a new CPiA video camera driver (which relocates and adds to the existing USB support for this device), many changes to the eepro100 ethernet driver, a number of USB serial changes, a StrongARM 1100 LCD frame buffer driver, a major DMA Sound driver rework, extensive NFS updates, and some networking fixes. Unfortunately, 2.3.99-pre4 also contained a "brown paper bag" problem in the filesystem code which caused it to crash on boot. Most users tend to dislike that sort of behavior, even in a development kernel, so 2.3.99-pre5 was rolled out within a few hours. Along with the filesystem fix, pre5 contained a bunch of changes to the code that handles routing of PCI interrupts. There is a 2.3.99-pre6 prepatch out there; it contains SMP and IO APIC tweaks, and large updates to the I2O subsystem and a number of sound drivers. The current stable kernel release is still 2.2.14. Alan Cox has evidently sent a final version of 2.2.15 to Linus, but the official kernel had not been released as of this writing. Dealing with bad blocks. The ext2 filesystem does not currently deal automatically with bad blocks that develop on a disk. It does maintain a list of such blocks (by making them part of a special file), but it can not add a new block to the list on the fly. A number of people have asked why that is, and whether it might be changed sometime soon. Coping with bad blocks on the fly is hard. By the time the kernel gets around to trying to write a block, the contextual information (such as what file the block belongs to) may be long gone. So, even in the case of a simple file block, finding the file itself to relocate the block could involve a scan of the entire disk. If the block contains filesystem metadata, the job gets harder, since a fair amount of filesystem structure may need to be changed to move the block. Much of this work can be done with e2fsck, but that requires the filesystem to be unmounted first. The amount of code involved makes it unlikely that the e2fsck code will move into the kernel, however. Of course, by the time that a bad block has been detected, it's often too late to save the data it contains. Modern disks contain a feature called SMART, which can, in some cases, detect a failing block before it actually goes bad. When this happens, it would be very nice to be able to cope with the problem quickly, so that the data can be saved. To this end, Andre Hedrick is frantically hacking away trying to get a SMART implementation ready for possible inclusion into 2.4. It's an uphill battle, but, as he puts it, he hasn't yet reached the "half lethal dose" of two tins of caffeinated Penguin Mints within 24 hours... Andre has set a big goal for himself, and it's not clear that a change of this magnitude to the fundamental disk subsystem can be shown to be sufficiently stable by the time 2.4 comes out. Some also question whether bad block recovery is worth the effort. In these days of cheap drives, it may be better to just back up a drive with known problems and swap it out. Dealing with a serious disk failure is far more expensive, in terms of downtime and people time both, than a new drive. The best bad block recovery scheme may well be to use RAID and a small stash of spares. Other patches and updates released this week include:
Section Editor: Jonathan Corbet |
April 13, 2000
For other kernel news, see: Other resources: |
Sections: Main page Security Kernel Distributions Development Commerce Linux in the news Announcements Back page See also: last week's Distributions page. |
DistributionsPlease note that security updates from the various distributions are covered in the security section. Red Hat 6.2 vs. Caldera 2.4 eDesktop. Here is a detailed, combined review of Red Hat 6.2 and Caldera 2.4 eDesktop by Eric Lee Green. "It is rare that Linux distributions rev on almost the same day, but that's what happened with Red Hat 6.2 and Caldera 2.4. Both are tasty, but in different ways. Having tired of reading shallow distribution reviews by people who have no idea of the enterprise environment, I decided to remedy that situation. In this article I attempt to tell you the good, the bad, and the ugly of each one, and which one you might want to use in various situations." Debian GNU/LinuxWichert Akkerman released doc-central this week. doc-central is a new system for browsing Debian's documentation easily with a web browser; he wrote it out of frustration with the current documentation tools and as a project to learn Python. More information can be found in Wichert's announcement.IBM and Alcôve partner to support Debian GNU/Linux Alcôve has announced (in French) that it is partnering with IBM to provide support for the Debian distribution in several parts of the world, including France, Belgium, Luxembourg, The Middle East, and Africa. The service seems to consist primarily of phone support, and appears to be limited to IBM hardware. English text is also available. (Found in Portalux News). Debian Weekly News. This week's Debian Weekly News by Joey Hess looks at the problem of insuring the integrity of Debian packages on mirror sites and a few other short subjects. Hard Hat LinuxMontaVista Software ports to IBM PowerPC 405GP. MontaVista Software has announced a port of its Hard Hat Linux distribution to IBM's PowerPC 405GP processor.Hard Hat Linux for ARM. Applied Data Systems (ADS) has launched a new commercially-available Linux, the Intel StrongARM SA-1110 platform. The ADS Virtual Linux Development Team is supplying the ARM port to Monta Vista, who will then deliver Hard Hat Linux for ARM. Kha0s LinuxKha0s Linux gets a new project leader. The Kha0s project ("better living through extreme paranoia") has set itself a goal of developing "an ultra-secure, Linux-based operating system that will appeal to security minded systems administrators." The project got off to a good start under leader Scott Fallin; their early releases were downloaded by people at NASA, the FBI, and the NSA, among others. In recent times development has slowed somewhat; Mr. Fallin has also taken on new "real job" responsibilities and has not been able to devote much time to the project.Thus the announcement that Mr. Fallin is stepping down as the leader of Kha0s, to be replaced by Moshe Bar. Mr. Bar's name may be familiar to many who have seen his articles in places like the Linux Journal, Linux Magazine, and Byte, but writing is not his profession. Instead, he works as an OS researcher for clients worldwide - a job that has him dealing with security issues frequently. Mr. Bar is also one of the initial developers that started work on Kha0s, and the author of its crypto layer. As one of the people who have shaped Kha0s thus far, he was an obvious choice to be the new project leader. In that role, he hopes to revitalize the project and, helped by a somewhat reduced set of objectives, to get a working alpha version out by September. He is, of course, looking for more developers to help move things along... Linux-MandrakePerfect...except for the documentation... LinuxPlanet reviews Linux-Mandrake 7.0. "Linux-Mandrake comes this close to being the perfect Linux distribution.... So why aren't we jumping up and down, proclaiming that Linux-Mandrake 7.0 is the best Linux distribution ever? For one reason: the poor quality of the documentation in the shrink-wrap version. Much of what's great in Linux-Mandrake 7.0 is simply undocumented or misdocumented..."IBM to support Linux-Mandrake in France. MandrakeSoft has announced (in French) that IBM's Global Services will be offering support for the Linux-Mandrake distribution in France. English text is available via Babelfish. (Found in Da Linux French Page). Red Hat LinuxRed Hat Enterprise Edition. Red Hat has announced its "Enterprise Edition," which prominently features the "ARCserveIT" storage management package from Computer Associates.Large-scale Red Hat deployment. Red Hat has announced that epicRealm, an Internet service provider, will be deploying 1,000 servers running Red Hat Linux. Slackware LinuxInstalling Slackware manually is fun. For those of you who are not impressed with four-click installation procedures, here is a lengthy document describing how to install Slackware 7 manually. Expect it to take a while... As an added challenge for some of us, the document is in French; a partial translation is available via Babelfish. (Found in Da Linux French Page).SuSE LinuxSuSE 6.4 reviewed. Pro-Linux.de has put up a review (in German) of the SuSE 6.4 distribution. A partial translation (the article is long) is available via Babelfish.TrustixThe 1.0 version of Trustix Secure Linux has been released. Trustix is working at building a secure, server-oriented distribution. There is little information about what they are up to on their web site; a quick look at the download site shows the familiar signs of a Red Hat-derived product, however.TurboLinuxA TurboLinux discussion forum has been established for those who would like to gather and talk about their experiences with the distribution.Section Editor: Liz Coolbaugh |
April 13, 2000
Please note that not every distribution will show up every week. Only distributions with recent news to report will be listed.
|
Sections: Main page Security Kernel Distributions Development Commerce Linux in the news Announcements Back page See also: last week's Development page. |
Development projectsBrowsersMozilla on SourceForge. VA Linux Systems, Inc. announced that mozilla.org will be making its browser source code available on SourceForge.A report from the Mozilla developers' meeting is available on Slashdot. DocumentationThe Linux Documentation Project has submitted the following report, hopefully the first of many, by Stein Gjoen: The LDP has now started work on creating a higher profile, including this semi-regular section in LWN and posting to comp.os.linux.announce. The LDP web site has been reworked and welcomes all Linux users. The goal is to produce and provide all sorts of quality Linux documentation in a number of languages. A large number of new and updated documents has been uploaded so if your collection is more than 6 months old you are recommended to look for updates. The LDP has over 250 worldwide mirrors. Selecting a site from the list of available mirrors will help to provide you with fast, efficient access to the available content - regardless of where you are located. Feedback is welcome and there is information on how to contribute as well as mailing lists and archives. The LDP also accepts submissions to the links and resources area. Regular postings of HOWTOs to comp.os.linux.answers will also commence shortly and a number of other projects are planned which together with your feedback will make sure the LDP will serve the Linux community as a one stop source of documentation. Linux Knowledge Base. After a long break, the Linux Knowledge Base weekly status report has resumed. Much is happening in the LKB realm as they aim for a beta release in mid-May. EducationThe April 10 SEUL/edu Linux in education report is out. It includes a discussion of the collaboration between the OpenClassroom project and Maxspeed, and covers a number of other topics as well.High AvailabilityA new mailing list for piranha has been announced. It thus appears that piranha discussion will be moving out of the high-availability list and into its own domain.Office ApplicationsAbiWord Weekly News. This week's AbiWord Weekly News describes a relatively slow week in AbiWord development.On the DesktopVersion 1.1 of the KDE tutorial is available. This tutorial is aimed at developers wanting to create KDE applications, rather than at users.KDE2 alpha binaries are available for those who want to try life on the bleeding edge. Have a look at Christopher Molnar's posting for details on where to pick them up. Gnucash will have a booth at Comdex/Chicago, thanks to the folks at LinuxMall.com. A number of the gnucash developers plan to be there. The GNOME UI Summary has resumed. Things had been suspended for a while - the current issue covers the time period between January 5 and April 10. ScienceThe third SEUL/sci Linux in science report is out, with a survey of useful tools for scientific users.Website DevelopmentGeoff Hutchison writes in again with a ht://Dig development update. Most importantly, version 3.2.0b2 was just released on Tuesday after clearing a few last-minute showstopper bugs. This version moves another large step towards a 3.2.0 release. Recent discussion on the developer list has been on cleanups in the search and configuration code and improving the performance of the new database format. Geoff also notes that he will be at COMDEX/Spring, and is organizing a last-minute BOF session during the show. Anyone interested should contact him at ghutchis@wso.williams.edu.Zope Weekly News. This week's Zope Weekly News (by Mike Pelletier) covers a new low-cost Zope hosting service, some new Zope products, and more. Section Editor: Liz Coolbaugh |
April 13, 2000
|
|
Development toolsJavaBlackdown Java 2 Compatibility Kit (JCK) MIPS status. The Blackdown Java 2 JCK Status page is now set up to start tracking the JCK status for Java 2 on the MIPS platform. No test reports have been published as of yet.Tritonus 0.2.0 is out. Tritonus is an implementation of the Java Sound 1.0 API; it currently runs on Intel Linux systems. Licensing is GPL. More information can be found in the announcement. PerlProcessing XML with Perl is an article on XML.com on how to use the Perl XML modules.PythonGarbage collection for Python. Python has, since the beginning, used a reference counting mechanism for memory management. Every object in a Python program has a reference count with it. The object will continue to exist as long as that reference count is greater than zero; when the last reference goes away, the object is deleted. This technique has the advantage of being quick, and of (usually) realizing immediately when an object may be recovered.The problem with reference counts is that they fail whenever circular references to objects are created. These references can be easy to create; once they exist, they can keep the reference count for the objects involved from ever going to zero. The result is lost memory which, in some situations, can be a serious problem. Enter the garbage collection for Pythonpatch. Garbage collection replaces reference counting with an occasional scan which identifies all memory which is no longer reachable. Such memory is "garbage" and can be reused. The author, Neil Schemenauer, claims that the overhead of his patch is minimal, and that it solves most of the problems associated with reference counting. Interestingly, this patch does not replace reference counting. Instead, it relies on the existing reference counts to free most objects, and concentrates only on finding circular references. In this way, the patch is much smaller, and the algorithm implemented much more specialized. It may well be worth a look for applications where circular references are a problem. Python 1.6 alpha 2 is out. See the announcement for details. This is very much an alpha release, and not to be used for production work. Nonetheless, Guido is asking for as many people as possible to help test it out as he tries to put together a highly robust 1.6 release by the beginning of June. Tcl/tkTcllib 0.3 has been released. Tcllib is a collection of useful utilities, put together by Eric Melski, "the other Tcl guy" at Scriptics. This version is considered a "pre-1.0 alpha release." More information in the announcement.This week's Tcl-URL has been posted. It is a "time warp" issue, covering back into late March. Section Editor: Liz Coolbaugh |
Language Links Guile Haskell Blackdown.org IBM Java Zone Perl News PHP Daily Python-URL Python.org JPython Smalltalk |
Sections: Main page Security Kernel Distributions Development Commerce Linux in the news Announcements Back page See also: last week's Commerce page. |
Linux and businessWe got a copy of WordPerfect Office 2000 for Linux from Corel, so your editor decided to give it a quick try. This product is, after all, a large part of Corel's plan to find success in the Linux world; one would hope that it came out well. The sad truth appears to be otherwise. WPO2000 has much the same feel as one of last year's Mozilla milestone releases. It's a beta-quality product at best. Here's just a few examples:
CorelDRAW for Linux ships early. Corel has sent out this press release stating that CorelDRAW for Linux will be shipping two months earlier than expected. Betas have evidently been delivered already; the full product will go out in July. In the same announcement Corel also says that VENTURA Publisher will be made available for Linux by the end of the year. The InterBase license. Version 1.0 of the InterBase Public License - the license that will be used for the InterBase source - has been released. At a first glance, it looks strongly derived from the Mozilla license. It allows distribution of binaries under any license, but requires that source be made available under the InterBase license. All changes to the source must be documented in a separate file - the form of the documentation is not specified, a simple CVS log would probably suffice. There is also the "patent poison pill," which terminates the license for anybody who brings a patent suit against a contributor to the source. People with more experience will make the final judgement, but this does indeed look like an open source license. What it probably is not is compatible with either the GPL or BSD licenses. It will thus be hard for code from InterBase to migrate into other projects, unless those projects, too, use the InterBase license. As more code becomes free, this sort of licensing mismatch is going to increasingly frustrate attempts to combine and reuse existing code in new projects. IDC declares Linux is red hot in the server market. Here's a press release from IDC on its latest report on the server market. Server shipments grew 166% between the fourth quarters of 1998 and 1999. "In a recent IDC survey of 200 Linux users ... the majority of participants estimated that their Linux servers offered at least 4 9s in availability, which translates to less than one hour of unexpected downtime per year." Option source? Merlin Software Technologies has announced the creation of the "option source" program. Option source seeks to reward free software developers through payments in cash and/or Merlin stock. Although the resulting software is supposed to be open source, there is a line in the web site about how Merlin might be the "sole commercial product distributor" for some projects for some time. Lynx Real-Time Systems gets investments from TurboLinux, Motorola. Lynx Real-Time systems has announced the receipt of investments from TurboLinux and Motorola. Amounts of the investments have not been revealed. CSP Inc. introduces Linux cluster system. CSP Inc. has announced a new Linux cluster product. This one is based on PowerPC processors, and runs Terra Soft's Black Lab Linux. BigStorage Inc. sponsors ReiserFS journaling filesystem. BigStorage Inc has announced that it is sponsoring the development of the ReiserFS filesystem. Compaq is #1 Vendor in Linux Server Market. Compaq has issued a press release citing the IDC "server tracker," which places Compaq as the top supplier of Linux servers. The following places are taken by IBM, Dell, and HP; companies like VA Linux Systems are not even mentioned. Computer Associates unveils Linux service offerings. Computer Associates has announced a line of Linux service offerings aimed at high-end enterprise clients: it includes 24x7 support and remote monitoring and administration services. Caldera Systems announces new channel program. Caldera Systems has announced a number of changes to its channel program, including a name change (to "eCommerce Solutions Provider program") and the "alliance" partner level which offers a higher level of support. Linux Powered Voting Booth. Dallas Semiconductor supplied the Internet components. iButtons, computer chips in stainless steel cans, provided registered, private ballots. The Tiny InterNet Interface (TINI) will relay real-time voting results over a live network. What's interesting about this press release is one line about half-way down. "Further demonstrating the flexibility of the iButton/TINI technology, the "central server" in this election is nothing more than a laptop running Linux." Coollogic to begin shipping Coollinux. Coollogic has announced that it will begin shipping its "Coollinux" distribution this week. Coollinux is aimed at embedded tasks, and seems to be intended for set-top boxes and other "Internet access devices" in particular. They claim that their kernel can fit in less than 355 KB, then talk about their inclusion of things like Netscape 4.7, which would seem a little contradictory. More information can be found on Coollogic's web site (which is running IIS 4.0 on Windows...hmm...) Section Editor: Jon Corbet.
Press Releases:
Section Editor: Rebecca Sobol. |
April 13, 2000
|
Sections: Main page Security Kernel Distributions Development Commerce Linux in the news Announcements Back page See also: last week's Linux in the news page. |
Linux in the newsRecommended Reading The Economist has run a lengthy article on patents and how they fit poorly into the current economy. "The Internet's early communalist enthusiasm for open-source software-which is free, unpatented and uncopyrighted-has now given way to a land-grab. Internet companies are rushing to patent their ideas. Ownership of a patent (or, since getting a patent takes a couple of years, a provisional patent application, which gives some rights) is a big help in raising finance." Salon has put up a high-quality story about the troubles at Linuxcare. "...it is, instead, a warning signal of the weaknesses inherent in applying venture capital insta-company strategy to the world of free software. Just because you have the billions necessary to hire name-brand executives and PR firms and throw huge parties doesn't necessarily mean you know what Linux is all about. And from that perspective, the news that [founder Art] Tyde has been named a member of Linuxcare's new four-headed 'office of the CEO' monster is encouraging, because Tyde does understand Linux and the value of the open-source approach to software." Tucows Acquires LWN The Rocky Mountain News covers the acquisition of LWN by Tucows.com. "If consolidation signals an industry's arrival, an example of Linux's mainstream coming-of-age can be found in Boulder County." Internet.com ran a brief article about the acquisition of LWN. "The acquisition firmly positions TUCOWS.com as a major industry resource and authority for Linux content to the open-source marketplace." The Register ran this article about Tucows' acquisition of LWN. "Tucows has been knocking around for years as a destination site for free and paid-for downloads. The advent of Linux, and all the various distros, suits its business down to the ground - right now, Tucows it is probably the closest competitor to Freshmeat, the soon-to-be VA Linux-owned download site." Events LinuxMall.com reports from the Colorado Linux Info Quest, held in Denver on April 1. "[Jon 'Maddog'] Hall highlighted Linux applications in such areas as medicine, business, education, and supercomputing, giving a detailed history his own experienced and humorous perspective. His recurring theme? Whenever entering a new environment in an effort to support Linux, he was repeatedly told, 'there's no Linux here'--only to find that an almost underground group of users did, in fact, always exist." Here's a Linux Advocate column by Scott Dowdle about his visit to the Colorado Linux Info Quest on April 1. "First off, I love Larry [McVoy]. He is cool. He is funny. He is blunt. He is honest. Did I mention he is funny? Ok, anyway... Mr. McVoy gave a speech (like the PHP guy) on what you would think would be a very dry topic... how to scale Linux to the Enterprise. Larry reminds me of Norm McDonald. Do you know who Norm McDonald is? If not, he was the 'Fake News Guy' on Saturday Night Live for a couple of years before he got fired and got his own sitcom." This Reuters article looks at some of the announcements made at the Linux Expo in Montreal. "Canada's first Linux exhibit, follows on similar shows in New York and Paris, and has attracted a modest crowd of about 100 companies." Here's another Reuters article about the Linux Expo event in Montreal. "A string of Linux heavyweights -- including Corel Corp., Red Hat Inc. and VA Linux Systems Inc. -- will highlight their achievements at Linux Expo 2000, which opens on Monday, wishing, no doubt, that Microsoft's pain will mean a gain for companies that sell Linux open-source software or services." Legal/Political This Linuxcare column makes the point that the free software community has to start taking more responsibility for preventing the creation of bad technology law. "It's time to stop reacting and become proactive. Our community is strong and united when things go astray, but we seemingly don't have the wherewithal to anticipate social and political entanglements until it's too late. We can design the best technological solutions on the planet, but we don't seem to be able to unite in the political sphere." Here's a column in Scientific American about the DVD case. "Although it makes sense to prosecute wholesale piracy, it makes no sense whatsoever to refuse to produce software to allow people to play legally acquired discs on devices they own and then prosecute them if they write their own software. It makes even less sense to prosecute people for doing what the Web was built for: posting and linking to useful information." UCITA has gotten past another state legislature: this time it's Maryland. In case anybody wonders whether further education on this bill is necessary, consider this coverage in the Baltimore Sun: "Maryland lawmakers stepped bravely into the digital age yesterday, adopting pioneering legislation that will govern the sales and licensing of computer software in stores and over the Internet." (Thanks to Bob Kopp). Gnutella Multimedium reports (in French) on the resurrection of Gnutella. It's a concise and informative article, touching on the importance of the "unstoppable" nature of the Gnutella design and its open source nature. English text is available via Babelfish. (Found in Da Linux French Page). News.com looks at the life-after-death of gnutella and other open source Napster clones. "Whatever the outcome of the Napster lawsuit, the open-source Gnutella movement may well prove to be the more dangerous branch of the file-swapping technology trend. Because Napster runs through only a few central servers, it is an easy target for lawyers seeking to shut down the service or for those looking for individuals swapping files through the Napster software. Gnutella has no central location. It's modeled after the way the Internet itself is connected:" Netpliance News.com has posted an article about Netpliance's change in terms for its "iOpener" appliance. "The Austin, Texas-based Internet appliance company.... said it now requires customers to sign up for at least 90 days of Internet service at $21.95 a month. Customers can return the unit within 30 days if dissatisfied but otherwise face a $499 cancellation fee if they drop service within the 90-day period." Wired News also has an article about this change, which is aimed at preventing people from buying the system and converting it over to Linux. (Thanks to Jay R. Ashworth). Freshmeat.net took a long look at the Netpliance i-opener. "It's not so simple. Netpliance received enormous amounts of free publicity from the whole affair, and many of the people who bought the i-opener with the intention of modifying it were so impressed with the device that they also bought second boxes as gifts for their friends and relatives to use as originally intended. That's saying nothing of the potential benefits of Open Source development. " Resources Here's a 'Duke of URL' review of the AOpen AX64 Pro motherboard. This review includes Linux benchmarks, happily. LinuxMall.com has posted this look at XFree86 4.0. "The default window manager for XFree86 is twm. Unless you're pushing 20 years of UNIX usage with a penchant for the genuinely arcane, nobody likes this window manager. I actually found it disappointing that they are still shipping twm with Xfree86 at all." The April issue of Troubleshooting Professional contains a report from ApacheCon and a lengthy tutorial on PHP and PostgreSQL. LinuxPapers has put up a basic tutorial on the use of users and groups in Linux. "Managing users with different permissions that are able to access the system at the same time, is one of biggest advantages of Unix systems. The flexibility of the management system is made even better by the ability to have user groups." The O'Reilly Network ran this How-To article on the new Netscape 6. It includes some install tips, like how to keep your old bookmarks. "The Mozilla project, on which Netscape 6 is based, has been an important test case for the Open Source methodology. While taking longer than some expected to produce a browser for the average desktop user, the Mozilla team should be proud of their accomplishment." Linuxcare's latest 'Dear Lina' column looks at IPv6. "IPv6 is a next generation Internet Protocol that aims to correct the 'oops' of the Internet's popularity. IPv6 will give us loads and loads more IP addresses--you know, those things that look like 192.168.1.1 today but will look like 1080::8:800:200C:417A in the future." C't ran this article comparing web server downtimes. "The most interesting test results were achieved when evaluating the downtime per operating system. Here, NT servers were clearly second to their Unix competitors. During our 32 days, servers running Microsoft's operating system were down for an average of nearly 15 hours, which is equivalent to about 1.9 percent of the overall time. For Linux, the average downtime per server was 4 hours, which is 0.5 percent. Solaris servers did even better and displayed an average of 2.5 hours, which equals a downtime of 0.3 percent." (Thanks to "Danny"). Linuxcare CBS Marketwatch reports on events at Linuxcare. "Linuxcare said it will work with its IPO underwriters CS First Boston, Chase H&Q and Fleet Boston Robertson Stephens to weigh market conditions and decide when to move ahead with its stock offering." Here's News.com's take on the events at Linuxcare. "'We are confident that Linuxcare's business plan, management strength, technology infrastructure, employee base and technical expertise will enable us to work through this event and pursue our path toward an initial public offering and a long-term leading position in the Linux industry,' [new CEO Pat] Lambs said in a statement." Corel Here's a News.com article about Corel's push to bring more applications to Linux. "Corel believes its effort to bring mature software to Linux will help quickly boost the operating system to become a viable competitor to Windows, a situation that would let Corel compete more effectively against Microsoft. Despite the efforts by Corel and others, though, that vision is still a ways off." Here's an Ottawa Citizen article looking at how Corel might benefit from Microsoft's problems. "[Microsoft] cannot, for example, refuse to deal with Corel because Corel is putting out Linux products. There's a honeymoon period for competitors where they'll be able to feel free of Microsoft retaliation, and that's beneficial to Canadian firms." Business Here's an Upside article about the sad state of Linux stocks. "Now, a couple of bad months erases neither the huge returns Linux stocks have run up since their IPOs in 1999, nor the operating system's genuine technological merit. But Linux's winter of discontent may serve as a reminder that its market power is finite." News.com reports on Atipa's acquisition of DCG Computer Group. "The Alpha connection distinguishes Atipa from VA, which doesn't currently offer Alpha chip support." Newsweek looks at the use of Linux in Europe. "Sometimes it pays to be late. Corporate Europe switched from mainframes to PC-based networks only in the mid-1990s. When Americans made that leap half a decade earlier, there weren't any alternatives to Microsoft. But by 1995, Linux was ready to compete with Windows. As a result, companies like Siemens, Volkswagen and Deutsche Bank have been using Linux for years." This ZDNet article looks at the new Amiga. "Amiga claims it has more than 117 applications -- many of them games -- from a variety of partners that are ready to roll out in conjunction with new Amiga systems. [Amiga CEO]McEwen said the first Amiga-on-Linux developer platforms will be available soon, but declined to say when commercial systems might become available from OEMs. Sources said the new Amiga systems could hit the streets as early as this summer." (Thanks to Cesar A. K. Grossmann). TechRepublic has put up an article on the latest move from AOL and Gateway. "In what could be the biggest challenge yet to Microsoft's domination of the home computing market, America Online and PC maker Gateway unveiled a trio of sub-$500 Internet-access devices Wednesday based on the Linux operating system instead of Windows." Note that TechRepublic requires registration. (Thanks to Cesar A. K. Grossmann). Here's a News.com article about the equity investments taken in Lynx Realtime Systems by Motorola and TurboLinux. "The TurboLinux investment is curious in light of TurboLinux's own embedded Linux research, a small programming team in China. TurboLinux vice president Lonn Johnston declined to offer specifics beyond saying Lynx's work won't overlap with TurboLinux's efforts." Interviews The E-Commerce Times interviews TurboLinux president Cliff Miller. "We put something on there that people will pay for, not necessarily because they have to, but because they want these things and they're willing to pay for them. And it's anything from bundling and integrating third-party software, to developing our own software that goes beyond the infrastructure and it really gives certain features that users are looking for and willing to pay for. But they may not necessarily need them to be open-source software." Olinux.com.br interviews Miguel de Icaza. "Evolution is a pretty ambitious project for providing a uniform, and powerful interface to the information a user has to handle. The idea is to provide ways for users to find, and keep track of all their information sources: mail, contacts, chats, instant messaging, paging services and more. With a pluggable architecture based on Bonobo, the system can be extended to handle all sorts of information that needs to be managed." Finally ZDNet posts an interesting observation about Apple supporters. "A thought though, have you ever seen a Linux fan in the same room at the same time as a Macintosh fan? No you haven't have you, that's cos they are the same people." TechMailings reviews the linux-msdos mailing list. "Honestly, who would create a list like this and expect anything less than full-time fire? With the adamant militancy of most Linux enthusiasts, a peaceful co-existence between the open source upstart and the monopolistic giant is about as likely as snowfall at the equator." (Thanks to Cesar A. K. Grossmann). Section Editor: Rebecca Sobol |
April 13, 2000 |
Sections: Main page Security Kernel Distributions Development Commerce Linux in the news Announcements Back page See also: last week's Announcements page. |
AnnouncementsResourcesNew LinuxUser magazine. LinuxUser is a new magazine for IT professionals in the UK who use Linux, or are thinking about using Linux. Register before April 21st and get the first copy free.The Alinka Linux Clustering Letter. Alinka has announced the creation of the "Alinka Linux Clustering Letter." It's a weekly newsletter on clustering topics; the first edition is included with the announcement. EventsGet LPI certified at LBE The Linux Professional Institute has announced that a certification center will be set up at the Linux Business Expo in Chicago on April 18-20. The first 200 people to register will be able to take the exams for free, thanks to sponsorship from Linux International.Netproject presents Linux/Open-Source workshops The Netproject folks have announced a series of workshops in the U.K. on Linux and open source. These workshops are being presented in cooperation with a long list of organizations with an interest in this area; they are scheduled from mid-May to mid-June. IDG LinuxWorld Conference IDG World Expo has announced that the fourth LinuxWorld conference will be held August 14-17 in San Jose. Keynote speakers include Michael Dell, Ransom Love, and HP Chief Scientist Joel Birnbaum. Web sitesAcrylis launched WhatifLinux.com Acrylis Inc. announced WhatifLinux.com, a Web-based service that helps Linux Administrators monitor and manage open-source software assets. |
April 13, 2000
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
Software Announcements
|
Our software announcements are provided courtesy of FreshMeat
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Sections: Main page Security Kernel Distributions Development Commerce Linux in the news Announcements Back page See also: last week's Back page page. |
Linux links of the weekBustPatents.com is a central information point for those trying to deal with the patent problem. It includes a great deal of information on how the patent process works, as well as information which can be used to fight inappropriate patents. WhatWeNeed is a site trying to put together a list of desired enhancements to Linux; readers can then vote on what they would most like to see. Of course, it has some ground to cover still, given that "add bluescreens" is currently the most popular idea... Section Editor: Jon Corbet |
April 13, 2000 |
|
Letters to the editorLetters to the editor should be sent to letters@lwn.net. Preference will be given to letters which are short, to the point, and well written. If you want your email address "anti-spammed" in some way please be sure to let us know. We do not have a policy against anonymous letters, but we will be reluctant to include them. | |
Date: Thu, 6 Apr 2000 11:15:01 -0400 From: "John F. Gibson" <gibson@mae.cornell.edu> To: letters@lwn.net Subject: Re: LWN's position on DOJ vs MS >From http://lwn.net/2000/0406/ >In the end, it is not at all clear that free software will benefit >from government action against Microsoft. Free software is on the >rise because it is better economically - freedom almost always is. >A large, distributed network of free software developers are doing >far more to change the way we deal with software than the U.S. >government will. This is a common opinion in the software world, but it's fundamentally misguided. There would be no competitive economic environment without the regulation of law specifically crafted to promote and sustain it! Lawrence Lessig makes a similar point in a recent issue of the American Prospect, pointing out that, at its root, the GPL is a copyright agreement, relying on the regulation of copyright law for its effectiveness. (http://www.prospect.org/archives/V11-10/lessig-l.html) Crafting the correct laws to support specific goals is a long, detailed process that relies on the court system and lawsuits for exploration and feedback. The DoJ vs. Microsoft suit is a necessary step for exploring the application of anti-trust law to monopolistic practices in the field of software. It needs to happen, so that the emerging body of software law moves towards openness and competitiveness. Another example is the recent finding that computer programs are protected by the First Amendment. This is good news, right? Or does anyone think we'd be better off without the regulation implied by First Amendment protection? John -- John F. Gibson gibson@mae.cornell.edu (grad student + sysadmin)/2 Mechanical and Aerospace Engineering, Computational Fluid Dynamics Lab 288 Upson Hall, Cornell University, Ithaca, New York, 14853-7501 Tel: (607) 255 0360 Fax: (607) 255 1222 | ||
Date: Thu, 06 Apr 2000 16:39:51 -0500 From: Dub Dublin <dub.dublin@tivoli.com> To: letters@lwn.net Subject: de Icaza Speaking Ad? Now, folks, I admire Miguel de Icaza and what he has done, and having met him, know that it's impossible to stay low-key in any conversation with him, but really folks, I don't think a puff-piece press release from his booking agent qualifies in any way as news worthy of inclusion in LWN. Journalistic integrity should trump the cult of personality. Along the same lines, I've noticed a disturbing trend in the past several months to take strong advocacy positions on issues even when there is legitimate dissension on the "other" side. (For instance, there are many of us who think that a) resolving silly patent claims is a job for the courts, not advocacy (that *is* what the law says), and b) weakening the patent system by eliminating software patents, etc. will in the long run only strengthen the grip that very large companies have on technology. I personally feel that in the oh-so-PC rush to villify Amazon et al, we ultimately run the risk of squashing garage shop inventors by eliminating their ability to protect and therefore profit from their inventions.) You'd do your readers a better service if you backed off on the opinion (or moved it to a separate section) and concentrated on the detailed "just the facts" approach that made you successful and useful. I'm not proposing that you drop opinion or advocacy altogether, but rather to put it in it's proper place, which is NOT infused in everything. Dub | ||
Date: Tue, 11 Apr 2000 12:30:55 -0500 From: Bob Kopp <r-kopp@uchicago.edu> To: letters@lwn.net Subject: UCITA Coverage Dear Editor: In Linux Daily News brief this week, you write: > UCITA has gotten past another state legislature: this time it's Maryland. In > case anybody wonders whether further education on this bill is necessary, > consider this coverage in the Baltimore Sun: "Maryland lawmakers stepped > bravely into the digital age yesterday, adopting pioneering legislation that > will govern the sales and licensing of computer software in stores and over > the Internet." (Thanks to Bob Kopp). While I agree that the Baltimore Sun is guilty of hyperbole, your brief makes it seem as though the bill the Maryland legislature approved is the same as the horrid bill that was originally opposed. Nothing is further from the truth, as any one who reads the amendments at the General Assembly web page (http://mlis.state.md.us/2000rs/billfile/hb0019.htm) can see. Maryland's version of UCITA may still have some flaws; but it is grossly unfair to the members of the committees that spent two months revising the bill to suggest that its passage is a product of the legislators' ignorance. Nobody defends this bill better than Del. Kumar Barve, chairman of the House committee that examined it: > As I am sure you know, the House of Delegates approved a heavily amended > UCITA bill. There seems to be a great deal of confusion regarding this > amended version. > > The House Subcommittee on Science and Technology held ten open public work > session attended by both opponents and proponents of the bill. Many > suggestions which came from these work sessions were incorporated into our > final version. > > Currently, there is no current federal or Maryland statute that specifically > applies to computer software licensing. However, twelve court cases have > upheld shrinkwrap licenses and there have been no court cases to the contrary > since 1993. By passing UCITA, consumers will now be allowed to get their > money back if the product does not work as advertised or was purchased in > error even after having loaded on their computer. Our amended version of > UCITA also makes it clear that Maryland consumer laws apply to consumer > computer transactions. Specifically, the Maryland version of UCITA prohibits > software licensors from modifying or disclaiming implied warranties of > merchantability. > > Current law allows a company to disable software in home or business > computers. Under UCITA, this practice is outlawed on home computers by our > consumer protection laws and is heavily restricted in the commercial market. > > Many of those concerned about the bill believe it gives software vendors > control over your files and data. Under our version of UCITA, your data is > your property. > > The provisions do not change the law with respect to copyrighting and reverse > engineering. UCITA explicitly states that all aspects of federal copyright > law govern computer information transactions. The legislation also makes it > clear that state trade secret laws and unfair competition laws are in full > force and not overridden by UCITA. It is likely that many states will examine some form of UCITA over the next several years. Rather than blindingly opposing the bill, it makes more sense for free software advocates to spend their time ensuring the legislators examine UCITA in the calm and careful manner of their Maryland counterparts rather than hastily approving such significant legislation, as Virginia did. Sincerely, Bob Kopp --- Bob Kopp <r-kopp@uchicago.edu> http://home.uchicago.edu/~rekopp | ||
Date: Fri, 7 Apr 2000 21:06:22 -0700 From: Seth David Schoen <schoen@loyalty.org> To: letters@lwn.net Cc: ralsina@unl.edu.ar, cp-legal@lists.lemuria.org Subject: Re: Selling rights In the current issue of LWN, Roberto Alsina writes: > In both cases, signing copyright to the FSF makes no sense. Why should I > trust the GPL more than I trust myself? That's nonsense. In the Cyber Patrol case, which is the context of the article in which Professor Moglen urged software authors to assign copyright to the FSF, Mattel sued the authors of some controversial software. As part of their settlement in that case, the defendants assigned the copyright in their software to Mattel. Not all of the software was meants to be under the GPL in the first place; however, retaining copyright in the controversial software turned out to be a bad idea, from the point of view of the goal of achieving wide distribution. (Maybe it was a good idea, from the point of view of having something to bargain with in order to settle the anticipated lawsuit.) Why? Because, now that Mattel owns the copyright, it can claim that the previous permission to distribute and mirror the software was a non-binding "gratuitous promise", without exchange of consideration, and that it, as the new copyright holder, is entitled to revoke that permission and halt distribution of the software. The legal issues here are many and thorny, but obviously Mattel's position would be weaker if the copyright had already been abandoned or else assigned to some other entity. Instead, because it was retained by the authors, Mattel was able to acquire it, which may make life harder for anybody else who hopes to distribute the software. If the FSF (or SPI, or other organization) accepts a copyright assignment for some controversial software, it can try to use its resources (money, legal counsel, supporters, communications channels) to protect the public's ability to redistribute the software if it comes under legal attack. If there is, for instance, some question of the validity of the GPL, the FSF might be able to do a better job of litigating the issue than you or I could. And, in that case, it might have more incentive to fight in court. This is not a general rule -- it's just a particular circumstance in which the FSF is a more "reliable" copyright holder than you or I. That is, if you trust in its ability to handle lawsuits effectively, something which has also never been tested. -- Seth David Schoen <schoen@loyalty.org> | And do not say, I will study when I Temp. http://www.loyalty.org/~schoen/ | have leisure; for perhaps you will down: http://www.loyalty.org/ (CAF) | not have leisure. -- Pirke Avot 2:5 | ||
Date: Thu, 06 Apr 2000 15:01:02 +0530 From: Anand Srivastava <anand@aplion.stpn.soft.net> To: ralsina@unl.edu.ar, letters@lwn.net Subject: Re: Selling Rights In response to Mr Roberto Alsina's question, why should FSF be trusted any more to keep a GPL software GPLed. Hi Roberto, I agree with you that you should only trust in yourself. But free software projects tend to be co-operative in nature. People who are co-operating with you on the project may not feel to trust you in the same way you don't trust the FSF. Also like in the current Mattel case, the project might infringe on somebody's Patents. In which case you may not have any option but to handover the license, due to lack of money, time, etc. While the FSF may be able to fight in case. thanx, -anand | ||