On the defense of piracy enablers

Noted anti-patent activist Florian Mueller recently distributed a statement regarding the Linux trademark policy. This policy, according to Mr. Mueller, is just fine; trademarks are not a barrier to innovation and free software in the way that patents are. Opposing trademark protection, he says, risks making the anti-patent community look like it opposes intellectual property in general; that, in turn, could hurt the fight against software patents.

That could all be true, as far as it goes. Mr. Mueller does not stop there, however:

This, in your editor's opinion, is dangerous and incorrect reasoning.

One could start by noting that bnetd was certainly not implemented as a "piracy enabler." Bnetd is a game server for certain games created by Blizzard Entertainment. It was created because its developers, having experienced Blizzard's game servers, decided that they could create a better environment for themselves. So they wrote their own game server package which lacks some of the problems of Blizzard's Battle.net. It also lacks Blizzard's authentication mechanisms (for which the requisite implementation information is not available in any case). As a result, bnetd can (unlike Battle.net) be used by multiple players who have made copies of the same game CD; this is an unintended side effect of bnetd's implementation, not its purpose for existing.

It seems unlikely that any significant amount of piracy has been "enabled" by bnetd. But it would not matter in any case. The issue here is not one of piracy, it is, instead, about the right to create interoperable software. If bnetd is illegal, then our right to develop software to interoperate with commercial offerings is much reduced. That is an outcome which is worth fighting.

We have seen this sort of issue before. Dmitry Sklyarov's e-book processor could be said to be a "piracy enabler." Adobe certainly made that claim. Fortunately, few people questioned the correctness or necessity of defending Mr. Sklyarov. Similarly, Jon Johansen was accused of facilitating piracy by releasing the DeCSS code. But DeCSS is not about piracy; it is about our right to play the DVDs we have purchased on our Linux systems. If we cannot write interoperable software, we will be stuck with whatever others deign to sell to us.

In the U.S., at least, the fight for civil liberties often requires defending unpleasant people. It is the criminals, pornographers, drug dealers, and others whose rights tend to be infringed first. But even the sleaziest of people still have rights; if those rights are not defended, they will soon cease to exist for everybody else as well. If the people we disagree with do not have rights, we do not either.

Calling the bnetd developers "piracy enablers" puts them in the same camp as other societal outcasts. Pirates are, after all, among the great evildoers of our time - at least, according to some people. So casting developers as pirates makes it easier to attack them. But even if bnetd were truly a "piracy enabler," its developers would still deserve our support. These developers did something that many or most of us believe is within our rights to do. Should we write them off just because somebody says they are helping pirates?

Anybody who believes that the bnetd developers do not deserve the community's support would be well advised to think about what the next "piracy enabler" might be. BitTorrent, perhaps. MythTV? Sound Juicer? Gaim or Kopete? How about GreaseMonkey? Or XBox Linux? Or Linux in general, for that matter. The fight against software patents is crucially important, and it is well to think about how we might best win it. But any victory which involves throwing members of our community to the wolves to avoid any appearance of being soft on intellectual property rights will be illusory at best. The EFF is doing the right thing when it defends the bnetd developers; this fight is just as important to our rights as the patent fight.

Comments (97 posted)

OSI procedures - a study in quotes

The Open Source Initiative announced last April that it was forming a committee to address the license proliferation problem. This committee is charged with the task of coming to terms with this problem, proposing ways of improving the situation, and sorting open source licenses into "tiers" as a way of directing projects toward a preferred subset. The archive of the committee's closed mailing list suggests that, as of this writing, not a whole lot of work has gotten done yet.

The issue of committee membership recently surfaced on the license-discuss mailing list. Rather than attempt to summarize the discussion, your editor decided to provide a few quotes and let the participants speak for themselves. For the curious, the entire thread is available from the archives.

-- Bruce Perens

-- Russ Nelson

-- Ian Lance Taylor

-- Russ Nelson

-- Bruce Perens

-- Russ Nelson

-- Russ Nelson

-- Keven Bedell

-- Russ Nelson

-- Bruce Perens

For what it is worth, the current committee membership is Brian Geurts, John Cowan, McCoy Smith, Diane Peters, Cliff Schmidt, Laura Majerus, Karna Nisewaner, Russ Nelson, Damien Eastwood, Eric Raymond, Mitchell Baker, Rishab Aiyer Ghosh and Sanjiva Weerawarana. There are no indications that any changes to the membership will be made.

Comments (24 posted)

Guten Tag from Avahi

Early this week, the Avahi team announced the 0.1 release of Avahi, dubbed "Guten Tag." Avahi is a framework for service discovery on local networks, using the same specifications as Apple's Bonjour (formerly "Rendezvous"), Multicast DNS (mDNS) and DNS Service Discovery (DNS-SD) from the Zero Configuration Networking (Zeroconf) working group. So, Avahi allows programs to publish services that are available and to discover services that are available on other machines. As an example, a user could find local printers without needing to know their IP address, or which computers are publishing file shares.

We asked two of the Avahi developers, Trent Lloyd and Lennart Poettering, about this release and what we could expect from future releases.

Avahi is a framework, and is meant to be used by other programs that have a need for mDNS/DNS-SD. It uses a D-BUS API, with "implicit bindings" for Python, Mono and many other languages, according to Poettering.

According to the release notes, a few of the "SHOULDs" for mDNS were not implemented. We were curious about what hadn't been implemented, and whether they planned to implement them in the future. Poettering explained why some of the "SHOULDs" were not in this release:

Poettering also identified three "SHOULDs" in the mDNS specification that are not implemented in the 0.1 release of Avahi:

Despite the low version number, and the fact that a few of the "SHOULDs" have not yet been implemented, Lloyd said that this release is actually quite usable:

Poettering also noted that Avahi "has lots of uncommon features that even Apple's stack doesn't have". One feature that Poettering highlighted is "avahi-dnsconfd," which "allows the configuration of unicast DNS servers via mDNS in a DHCP-like fashion. This is especially useful on IPv6 where address autoconfiguration is available out-of-the-box, but DNS server configuration currently isn't."

We also asked if the low version number indicated that Avahi would be undergoing major API changes. Poettering said that he doesn't see "any major changes coming for the near future" but that there would probably be some API additions.

One thing that Poettering stressed is that Avahi is not GNOME-centric or KDE-centric. "We currently ship a glib adapter for our libraries, but this purely optional... We are interested in adoption of Avahi in all desktop environments, including both GNOME and KDE. Admittedly the core developers of Avahi are all GNOME people, but that's just personal preference."

There are other implementations of mDSN/DNS-SD available, but not under what many would consider a "free" license. Avahi is available under the LGPL, so it should be usable by nearly any project that would care to incorporate Avahi.

At the moment, Avahi is only available for Linux. The only stumbling block appears to be netlink, according to Poettering and Lloyd. Poettering says that "as soon as the BSD compatible replacement for netlink is in place, porting to other kernels should be really simple".

It should be interesting to see how Avahi is incorporated into Linux applications and distributions. The ability to easily advertise printing, file-sharing and other services for desktop users -- putting Linux on par with Mac OS X -- is one more component in helping to secure Linux's place on the desktop.

Comments (7 posted)

Victory against spam?

The August 20 edition of The Economist includes an article (restricted to Economist subscribers as of this writing) makes an interesting claim:

The core of the article is based on a MessageLabs report stating that spam, which constituted 83% of all email traffic in January, fell to "only" 67% in June. 67% remains a horrifying number, but it also clearly is a step in the right direction. Interestingly, your editor's personal spam indicator, currently running at about 4,000/day, does not show any decline at all. Some people, it seems, are just lucky.

The Economist credits a number of factors in the decline. Filters are one of those, though the article only mentions proprietary offerings. (Said proprietary filters are credited with 95% effectiveness, incidentally; your editor can attest that a well-trained SpamAssassin can do much better than that). Smarter recipients are another; evidently most Internet users have already enlarged whatever parts of their anatomy they felt were too small, or figured out that it wasn't going to happen for them. High-profile legal setbacks for selected spammers have provided a small disincentive. And phishing attacks, which are very much on the increase, have convinced many users that spam can be dangerous and is best avoided.

Phishing is where the action is now - especially in South America, it would seem, where a strong interest in postcard sites makes attacks relatively easy. Since there is money in phishing, this problem is likely to grow, at least until enough people get burned that a general awareness sets in. It is a somewhat ironic outcome, meanwhile, that the phishers may be helping to take the profits out of spam, and thus reducing the problem.

Declaring victory on spam seems somewhat premature, however. The costs of carrying that much garbage through the email system, filtering, and shoveling out mailboxes remain high. But wouldn't it be interesting if the arms race between spammers and their opponents turned out to be winnable - by the good guys - after all?

Comments (10 posted)

cvs: insecure temp file

Package(s):	cvs	CVE #(s):	CAN-2005-2693
Created:	August 23, 2005	Updated:	September 9, 2005
Description:	Insecure temporary file usage was found in the cvsbug program. It is possible that a malicious user could use this to execute arbitrary instructions as the user running cvsbug.
Alerts:	Debian DSA-806-1 cvs 2005-09-09 Debian DSA-802-1 cvs 2005-09-07 Red Hat RHSA-2005:756-01 cvs 2005-09-06 Fedora FEDORA-2005-791 cvs 2005-08-23 Fedora FEDORA-2005-790 cvs 2005-08-23

Comments (none posted)

elm: buffer overflow

Package(s):	elm	CVE #(s):	CAN-2005-2665
Created:	August 23, 2005	Updated:	November 11, 2005
Description:	A buffer overflow flaw in Elm was discovered that was triggered by viewing a mailbox containing a message with a carefully crafted 'Expires' header. An attacker could create a malicious message that would execute arbitrary code with the privileges of the user who received it.
Alerts:	Slackware SSA:2005-311-01 elm 2005-11-08 Red Hat RHSA-2005:755-01 elm 2005-08-23

Comments (none posted)

kernel: multiple vulnerabilities

Package(s):	kernel	CVE #(s):	CAN-2005-2098 CAN-2005-2099 CAN-2005-2456 CAN-2005-2457 CAN-2005-2458 CAN-2005-2459 CAN-2005-2548 CAN-2005-2555
Created:	August 19, 2005	Updated:	September 19, 2005
Description:	David Howells discovered a local Denial of Service vulnerability in the key session joining function. Under certain user-triggerable conditions, a semaphore was not released properly, which caused processes which also attempted to join a key session to hang forever. (CAN-2005-2098) David Howells discovered a local Denial of Service vulnerability in the keyring allocator. A local attacker could exploit this to crash the kernel by attempting to add a specially crafted invalid keyring. (CAN-2005-2099) Balazs Scheidler discovered a local Denial of Service vulnerability in the xfrm_compile_policy() function. By calling setsockopt() with an invalid xfrm_user policy message, a local attacker could cause the kernel to write to an array beyond its boundaries, thus causing a kernel crash. (CAN-2005-2456) Tim Yamin discovered that the driver for compressed ISO file systems did not sufficiently validate the input data. By tricking an user into mounting a malicious CD-ROM with a specially crafted compressed ISO file system, he could cause a kernel crash. (CAN-2005-2457) It was discovered that the kernel's embedded zlib compression library was still vulnerable to two old vulnerabilities of the standalone zlib library. This library is used by various drivers and can also be used by third party modules, so the impact varies. (CAN-2005-2458, CAN-2005-2459) Peter Sandstrom discovered a remote Denial of Service vulnerability in the SNMP handler. Certain UDP packages lead to a function call with the wrong argument, which resulted in a crash of the network stack. (CAN-2005-2548) Herbert Xu discovered that the setsockopt() function was not restricted to privileged users. This allowed a local attacker to bypass intended IPSec policies, set invalid policies to exploit flaws like CAN-2005-2456, or cause a Denial of Service by adding policies until kernel memory is exhausted. Now the call is restricted to processes with the CAP_NET_ADMIN capability. (CAN-2005-2555)
Alerts:	Debian-Testing DTSA-16-1 linux-2.6 2005-09-15 Trustix TSLSA-2005-0043 kernel 2005-08-19 SuSE SUSE-SA:2005:050 kernel 2005-09-01 Fedora FEDORA-2005-821 kernel 2005-08-28 Fedora FEDORA-2005-820 kernel 2005-08-28 Ubuntu USN-169-1 linux-source-2.6.8.1, linux-source-2.6.10 2005-08-19

Comments (3 posted)

Kismet: multiple vulnerabilities

Package(s):	kismet	CVE #(s):	CAN-2005-2626 CAN-2005-2627
Created:	August 19, 2005	Updated:	August 29, 2005
Description:	Kismet is vulnerable to a heap overflow when handling pcap captures and to an integer underflow in the CDP protocol dissector. With a specially crafted packet an attacker could cause Kismet to execute arbitrary code with the rights of the user running the program.
Alerts:	Debian DSA-788-1 kismet 2005-08-29 Gentoo 200508-10 kismet 2005-08-19

Comments (none posted)

lm-sensors: insecure temp files

Package(s):	lm-sensors	CVE #(s):	CAN-2005-2672
Created:	August 23, 2005	Updated:	November 10, 2005
Description:	Javier Fernández-Sanguino Peña noticed that the pwmconfig script created temporary files in an insecure manner. This could allow a symlink attack to create or overwrite arbitrary files with full root privileges since pwmconfig is usually executed by root.
Alerts:	Red Hat RHSA-2005:825-01 lm_sensors 2005-11-10 Fedora FEDORA-2005-1054 lm_sensors 2005-11-07 Fedora FEDORA-2005-1053 lm_sensors 2005-11-07 Debian-Testing DTSA-17-1 lm-sensors 2005-09-15 Debian DSA-814-1 lm-sensors 2005-09-15 Gentoo 200508-19 lm_sensors 2005-08-30 Mandriva MDKSA-2005:149 lm_sensors 2005-08-25 Ubuntu USN-172-1 lm-sensors 2005-08-23

Comments (1 posted)

mantis: missing input sanitizing

Package(s):	mantis	CVE #(s):	CAN-2005-2556 CAN-2005-2557
Created:	August 19, 2005	Updated:	September 26, 2005
Description:	Two security related problems have been discovered in Mantis, a web-based bug tracking system. A remote attacker could insert arbitrary SQL code into SQL statements and a remote attacker was able to insert arbitrary HTML code bug reports, hence, cross site scripting.
Alerts:	Gentoo 200509-16 mantisbt 2005-09-24 Debian DSA-778-1 mantis 2005-08-19

Comments (none posted)

openvpn: multiple vulnerabilities

Package(s):	openvpn	CVE #(s):	CAN-2005-2531 CAN-2005-2532 CAN-2005-2533 CAN-2005-2534
Created:	August 23, 2005	Updated:	October 10, 2005
Description:	A number of vulnerabilities were discovered in OpenVPN that were fixed in the 2.0.1 release: A DoS attack against the server when run with "verb 0" and without "tls-auth" when a client connection to the server fails certificate verification, the OpenSSL error queue is not properly flushed. This could result in another unrelated client instance on the server seeing the error and responding to it, resulting in a disconnection of the unrelated client. A DoS attack against the server by an authenticated client that sends a packet which fails to decrypt on the server, the OpenSSL error queue was not properly flushed. This could result in another unrelated client instance on the server seeing the error and responding to it, resulting in a disconnection of the unrelated client. A DoS attack against the server by an authenticated client is possible in "dev tap" ethernet bridging mode where a malicious client could theoretically flood the server with packets appearing to come from hundreds of thousands of different MAC addresses, resulting in the OpenVPN process exhausting system virtual memory. If two or more client machines tried to connect to the server at the same time via TCP, using the same client certificate, a race condition could crash the server if --duplicate-cn is not enabled on the server.
Alerts:	Debian DSA-851-1 openvpn 2005-10-09 Mandriva MDKSA-2005:145 openvpn 2005-08-22

Comments (none posted)

pcre3: arbitrary code execution

Package(s):	pcre3	CVE #(s):	CAN-2005-2491
Created:	August 23, 2005	Updated:	March 10, 2006
Description:	A buffer overflow has been discovered in the PCRE, a widely used library that provides Perl compatible regular expressions. Specially crafted regular expressions triggered a buffer overflow. On systems that accept arbitrary regular expressions from untrusted users, this could be exploited to execute arbitrary code with the privileges of the application using the library.
Alerts:	Red Hat RHSA-2006:0197-01 Python 2006-03-09 Fedora-Legacy FLSA:168516 pcre 2006-03-07 Debian DSA-821-1 python2.3 2005-09-28 Debian DSA-819-1 python2.1 2005-09-23 Debian DSA-817-1 python2.2 2005-09-22 Gentoo 200509-08 python 2005-09-12 Red Hat RHSA-2005:358-01 exim 2005-09-08 Red Hat RHSA-2005:761-02 pcre 2005-09-08 Trustix TSLSA-2005-0045 multi 2005-08-26 OpenPKG OpenPKG-SA-2005.018 pcre 2005-09-05 SuSE SUSE-SA:2005:051 php4,php5 2005-09-05 Gentoo 200509-02 gnumeric 2005-09-03 Debian DSA-800-1 pcre3 2005-09-02 Ubuntu USN-173-4 python gnumeric 2005-08-31 Slackware SSA:2005-242-01 pcre 2005-08-31 SuSE SUSE-SA:2005:049 php4, 2005-08-30 SuSE SUSE-SA:2005:048 pcre 2005-08-30 Ubuntu USN-173-3 apache2 2005-08-30 Mandriva MDKSA-2005:155 apache2 2005-08-29 Mandriva MDKSA-2005:154 python 2005-08-26 Mandriva MDKSA-2005:153 gnumeric 2005-08-26 Mandriva MDKSA-2005:151 pcre 2005-08-25 Mandriva MDKSA-2005:152 php 2005-08-25 Gentoo 200508-17 libpcre 2005-08-25 Ubuntu USN-173-2 pcre3, apache2 2005-08-24 Fedora FEDORA-2005-803 pcre 2005-08-24 Fedora FEDORA-2005-802 pcre 2005-08-24 Ubuntu USN-173-1 pcre3 2005-08-23

Comments (none posted)

php: arbitrary code execution

Package(s):	php	CVE #(s):	CAN-2005-2498
Created:	August 19, 2005	Updated:	October 4, 2005
Description:	A bug was discovered in the PEAR XML-RPC Server package included in PHP. If a PHP script is used which implements an XML-RPC Server using the PEAR XML-RPC package, then it is possible for a remote attacker to construct an XML-RPC request which can cause PHP to execute arbitrary PHP commands as the 'apache' user.
Alerts:	Debian DSA-842-1 egroupware 2005-10-04 Debian DSA-840-1 drupal 2005-10-04 Gentoo 200509-19 php 2005-09-27 Debian-Testing DTSA-15-1 php4 2005-09-13 Slackware SSA:2005-251-04 php5 2005-09-09 Debian DSA-798-1 phpgroupware 2005-09-02 Slackware SSA:2005-242-02 PHP 2005-08-31 Gentoo 200508-21 phpwebsite 2005-08-31 Gentoo 200508-20 phpgroupware 2005-08-30 Debian DSA-789-1 php4 2005-08-29 Gentoo 200508-18 phpwiki 2005-08-26 Fedora FEDORA-2005-810 php 2005-08-25 Fedora FEDORA-2005-809 php 2005-08-25 Gentoo 200508-14 tikiwiki 2005-08-24 Gentoo 200508-13 PEAR-XML_RPC 2005-08-24 Mandriva MDKSA-2005:146 php-pear 2005-08-22 Ubuntu USN-171-1 php4 2005-08-20 Red Hat RHSA-2005:748-01 PHP 2005-08-19

Comments (none posted)

slocate: long path bug

Package(s):	slocate	CVE #(s):	CAN-2005-2499
Created:	August 22, 2005	Updated:	October 5, 2005
Description:	A bug was found in the way slocate processes very long paths. A local user could create a carefully crafted directory structure that would prevent updatedb from completing its file system scan, resulting in an incomplete slocate database.
Alerts:	Red Hat RHSA-2005:346-01 slocate 2005-10-05 Red Hat RHSA-2005:345-02 slocate 2005-09-28 Mandriva MDKSA-2005:147 slocate 2005-08-22 Fedora FEDORA-2005-771 slocate 2005-08-22 Fedora FEDORA-2005-770 slocate 2005-08-22 Red Hat RHSA-2005:747-02 slocate 2005-08-22

Comments (none posted)

ToorCon 7

ToorCon 7 will be held on September 16 to 18 in San Diego. Speakers include Paul Vixie, Roger Dingledine, Jay Beale, and many others. Early registration ends on September 1; click below for the full announcement.

Full Story (comments: none)

Kernel release status

The current 2.6 prepatch is 2.6.13-rc7, announced by Linus on August 23. This prepatch, probably the final one before 2.6.13, includes a rather large number of small fixes; the long-format changelog has the details.

A handful of additional fixes has found its way into Linus's git repository since 2.6.13-rc7 came out.

The current -mm tree is 2.6.13-rc6-mm2. Recent changes to -mm include a number of architecture updates (including various i386 tweaks to better support virtualization), a couple of new timeout functions (see below), and various fixes.

Comments (none posted)

A pair of new timeout functions

The traditional way to delay a process for a given period of time is via schedule_timeout():

    set_current_state(state);
    schedule_timeout(delay);

The state parameter to set_current_state() should be either TASK_INTERRUPTIBLE or TASK_UNINTERRUPTIBLE, depending on whether the delay should be cut short on signal delivery or not. Evidently, a common error is to omit the call to set_current_state(), with the result that the request delay does not happen. As a way of making life easier, the -mm tree now includes a pair of new functions:

    signed long schedule_timeout_interruptible(signed long timeout);
    signed long schedule_timeout_uninterruptible(signed long timeout);

These functions take care of setting the process state, so the delay should always happen as expected. Presumably these functions will be merged into the mainline for 2.6.14.

Comments (2 posted)

Linux and TCP offload engines

The TCP/IP protocol suite takes a certain amount of CPU power to implement. So it is not surprising that network adapter manufacturers have long been adding protocol support to their cards. This support can vary from the simple (checksumming of packets, for example) through to full TCP/IP implementations. An adapter with full protocol support is often called a TCP offload engine or TOE.

Linux has never supported the TOE features of any network cards. For some time, there had not even been much discussion of TOE support. The topic has returned, however, with this patch adding TOE support which was posted by Scott Bardone of Chelsio Communications. This TOE patch is clearly intended to support Chelsio's line of network adapters, but it has been coded as a more generic "open TOE" framework. The Chelsio folks would very much like to see this patch merged for the 2.6.14 kernel release.

Those who are curious about the TOE patch can go in and look at the code; it is relatively straightforward. At its core, it creates a new type of extended network device (struct toedev) with an additional set of methods:

	int (*open)(struct toedev *dev);
	int (*close)(struct toedev *dev);
	int (*can_offload)(struct toedev *dev, struct sock *sk);
	int (*connect)(struct toedev *dev, struct sock *sk);
	int (*send)(struct toedev *dev, struct sk_buff *skb);
	int (*recv)(struct toedev *dev, struct sk_buff **skb, int n);
	int (*ctl)(struct toedev *dev, unsigned int req, void *data);
	void (*neigh_update)(struct net_device *lldev,
			     struct toedev *dev,
			     struct neighbour *neigh, int fl);

There are various hooks sprinkled through the TCP code to detect when a TOE-capable device is being used and call the appropriate method rather than performing the TCP processing in the kernel. One assumes that the patch works as advertised, but its chances of getting into the kernel appear to be relatively small. There is a very long list of objections which have been raised, including:

• The TOE code must, by necessity, hook deeply into the Linux TCP implementation. These hooks will make it harder to make high-level TCP changes in the future. The TOE patch thus represents a long-term maintenance burden.

• TOE shorts out much of the Linux networking code. In the process, it cuts out little features like netfilter, traffic control, and more. So a Linux system using TOE will lack many of the capabilities which characterize the Linux networking stack. The networking hackers can already foresee the interminable series of "why doesn't my TOE adapter support netfilter?" questions which will go their way.

• The Linux networking stack is easy to fix when a bug or security issue comes up. If a security problem turns up in a TOE adapter, instead, there is very little which can be done to fix it.

• The performance benefits from TOE are minimal at best. Even if a TOE adapter and software stack currently outperforms "dumber" adapters for very high networking speeds (10G currently, say), that advantage tends to disappear by the time those speeds are in common use. Jeff Garzik claims that 100Mb/s TOE adaptors (which used to be the bleeding-edge high speed) are now slower than the Linux networking stack. So any performance advantage from TOE is a temporary thing, but, once it is merged, the code must be supported forever.

There is also the inconvenient little detail that a company called Alacritech owns several patents relating to TOE. It recently used those patents to extract money from Microsoft, which is including TOE support in its upcoming Windows release. This, alone, would almost certainly cause distributors to disable TOE support, even if it were to find its way into the kernel. (For the record, Chelsio claims to have done its legal homework, but not everybody finds that claim to be convincing).

Will it find its way in? Not if David Miller has anything to say on the matter:

There is essentially zero chance of a networking patch being merged over David's objections, so the TOE developers have an uphill road ahead of them.

One might well ask: if TOE cannot be merged, how will Linux maintain competitive speeds as networks get faster? A big area of interest, currently, is offloading parts of the protocol which do not require great intelligence or state in the card. The kernel already supports TCP segmentation offloading (TSO), where an adapter can create TCP packets out of a large array of data. TSO reduces the necessary CPU power, bus overhead, and cache impact to send a series of packets, but it still does not require that the adapter actually know anything about specific TCP connections. There is talk of using a similar technique for incoming packets: an adapter could merge a configurable set of incoming packets into a single array, thus reducing the demands on the rest of the system. One way or another, the networking stack is likely to keep up with the demands of current hardware.

It has often been said that a maintainer's real job is to say "no" to patches. Not all features are worth their (very real) cost, and merging some patches can be detrimental to the kernel in the long run. For years, the networking maintainers have felt that TOE support is the kind of patch which should not be accepted, and the current implementation appears not to have changed their minds. TOE appears to be one of those ideas which never really goes away, however, so chances are good that we will see this debate again in the future.

Comments (10 posted)

Configfs - an introduction

Complicated kernel subsystems can require complex configuration. Traditionally, Unix-like subsystems have made this configuration possible either via new system calls, or by way of a complex, ioctl()-based interface. Neither approach is considered to be optimal. New system calls clutter the namespace and must be added separately for each architecture; they are also quite inflexible once defined and used by user-space code. Anybody who uses the ioctl() interface for new code tends to get sneered at; using ioctl() is like adding new system calls but without the clear definition of the interface that a system call gives you.

So how should a new subsystem allow for configuration from user space? In some cases, sysfs can be used. Sysfs, however, was never really meant for this application. It provides a view into the kernel's data structures, and it can be used to cause things to happen with those structures. But sysfs cannot be used to create new objects - at least, not without distorting the interface somewhat. It is the wrong tool for this job.

The right tool might turn out to be a thing called configfs. It is yet another virtual filesystem, but one which is oriented toward user-space configuration tasks. It is currently part of the OCFS2 patch set, but it is likely to be merged separately due to interest from other kernel projects. It could, conceivably, be merged as early as 2.6.14.

Configfs is meant to be mounted on /config. Each subsystem which uses configfs then creates one or more top-level directories within configfs for their configurations; the distributed lock manager code, for example, creates /config/dlm/. That directory can start out empty, or it can be populated with the initial configuration of the subsystem, whichever is appropriate.

Like sysfs, configfs uses directories as the way of representing objects. Directories contain files ("attributes") which display the current state of the object, and which, optionally, may be writable to change that state. A fundamental difference, however, is that a suitably-privileged user-space process can create directories within configfs. That action will result in a callback within the kernel and the creation of the corresponding object. Directories created within configfs will have a set of attribute files from the beginning.

As an example (taken from the configfs documentation), consider a hypothetical network block device driver called "fakenbd." This driver would set up /config/fakenbd, which would start out empty. A system administrator could then use mkdir to create a network disk by creating an appropriately-named subdirectory under /config/fakenbd. That directory (called disk1, say) would be populated by the kernel with the relevant attributes: target for the IP address of the server providing the disk, device for the device on the server, and rw to control whether the disk is to be writable or not. The administrator would simply write the appropriate value into each attribute, and the disk would be configured.

Some observers have questioned the distinction between configfs and sysfs. Users may well wonder why there are two separate directory trees performing similar tasks - especially since sysfs can be used for certain types of administrative functions. Configfs also has certain problems (such as persistence of attribute permissions) which have already been encountered - and solved - in sysfs. The kernel developers do see the two as being fundamentally different, however, so a merger seems unlikely.

If configfs takes off, one could imagine it being used all over the kernel. Much of what is done with ioctl() now could be moved over. Other patches (such as CKRM) which have their own configuration filesystems could switch to configfs. In the long term, configfs could be the path to a much more consistent - and transparent - way of configuring the many subsystems which make up the Linux kernel.

Comments (25 posted)

Configfs - the API

The configfs introduction described how this filesystem looks from user space. Anybody wanting to use configfs within a kernel subsystem will also be interested in the kernel-side interface. The configfs API will be somewhat familiar to developers who have worked with kobjects and sysfs; there are some differences, however. What follows is a blindingly fast overview of the configfs API; hold on tight.

Configfs implements a set of object types used to put together a configuration hierarchy:

• A config item (struct config_item) is the internal representation of an object to be configured. It corresponds to a directory in user space, and behaves somewhat like (the sysfs aspect of) a kobject in kernel space. Each config item has one or more attributes, represented in user space as files containing text values. Like kobjects, config items are almost always embedded within other, domain-specific structures.

• A config group (struct config_group) is just a config item which can contain other config items (or groups).

• A config subsystem (struct configfs_subsystem) is a top-level config group. Like the sysfs subsystem type, it contains a semaphore used for mutual exclusion within the configfs code. The presence of the semaphore is somewhat interesting; the sysfs equivalent has been recognized for a while as being superfluous, and it will eventually be eliminated. The system being configured will have to perform its own internal locking anyway, so the same lock might as well be used at the configfs level.

More specifically, anybody wanting to create a configfs hierarchy must set up one or more config items - even if the only item, at the outset, is the config_subsystem structure implementing the top-level directory. Creating a config item requires, in turn, that some other structures be set up. The first of these is:

    struct configfs_item_operations {
	void (*release)(struct config_item *item);
	ssize_t (*show_attribute)(struct config_item *item,
				  struct configfs_attribute *attr,
				  char *buffer);
	ssize_t (*store_attribute)(struct config_item *item,
				   struct configfs_attribute *attr,
				   const char *buffer, size_t size);
	int (*allow_link)(struct config_item *src,
			  struct config_item *target);
	int (*drop_link)(struct config_item *src,
			 struct config_item *target);
    };

This structure defines how a specific config item operates. The release() method will be called whenever a config item's reference count drops to zero; its job is to perform the necessary cleanup. Attributes are implemented via the show_attribute() and store_attribute() methods, which work in the obvious manner. The final two methods, if present, control whether the creation of symbolic links between config items is allowed (allow_link()) and provide notification when a symbolic link is removed (drop_link()).

The above operations structure should be filled in for a specific type of config item. Then, it is necessary to store a pointer to the structure in a config_item_type structure:

    struct config_item_type {
	struct module                    *ct_owner;
	struct configfs_item_operations  *ct_item_ops;
	struct configfs_group_operations *ct_group_ops;
	struct configfs_attribute        **ct_attrs;
    };

Here, ct_owner is used to manage module reference counts, and ct_item_ops is the set of methods seen above. ct_group_ops is a separate set of operations for config groups; we'll get to those shortly. The final field, ct_attrs, defines the actual attributes which belong to this type of config item; it is an array of pointers to configfs_attribute structures:

    struct configfs_attribute {
	char          *ca_name;
	struct module *ca_owner;
	mode_t         ca_mode;
    };

As with sysfs, the structure representing an attribute contains little information beyond its name and permissions. A single set of functions is used for all attributes belonging to a given item type; they must figure out which attribute is being accessed themselves by looking at the name or by embedding the configfs_attribute structure inside another structure.

An actual config item looks like this:

    struct config_item {
	char                    *ci_name;
	char                    ci_namebuf[UOBJ_NAME_LEN];
	struct kref             ci_kref;
	struct list_head        ci_entry;
	struct config_item      *ci_parent;
	struct config_group     *ci_group;
	struct config_item_type *ci_type;
	struct dentry           *ci_dentry;
    };

Code creating a config item should zero the entire structure, then initialize it with one of:

    void config_item_init(struct config_item *item);
    void config_item_init_type_name(struct config_item *item,
				    const char *name,
				    struct config_item_type *type);

If the name and type are set using the second form, no other initialization is required. The item, once created, will show up in configfs and will contain the attributes defined by its type.

Config items have a reference count, which is manipulated with the usual sort of functions:

    struct config_item *config_item_get(struct config_item *item);
    void config_item_put(struct config_item *item);

Items are created within a config group, defined by this structure:

    struct config_group {
	struct config_item	  cg_item;
	struct list_head	  cg_children;
	struct configfs_subsystem *cg_subsys;
	struct config_group	  **default_groups;
    };

As noted before, a config group is just a config item which can contain other items (or groups). So it has a config_item structure embedded within it. There is also a set of subgroups which will automatically be created whenever a group is created within this group. This list (default_groups), along with the list of attributes associated with the config item, define the full contents of the group's directory when it is created.

Groups are initialized in a manner similar to items:

    void config_group_init(struct config_group *group);
    void config_group_init_type_name(struct config_group *group,
				     const char *name,
				     struct config_item_type *type);

Groups must define a set of group operations (and store a pointer to them in the config_item_type structure):

    struct configfs_group_operations {
	struct config_item *(*make_item)(struct config_group *group,
					 const char *name);
	struct config_group *(*make_group)(struct config_group *group,
					   const char *name);
	int (*commit_item)(struct config_item *item);
	void (*drop_item)(struct config_group *group,
			  struct config_item *item);
    };

Any particular config group type should only define either make_item() or make_group(), but not both. If make_group() exists, it will be called in response to a request from user space to create a directory; its job is to create a config_group structure, initialize it, and return it. In the absence of a make_group() method, make_item() will be called instead. There is, thus, no way to create a group which allows the dynamic creation of both items and groups within it; that limitation is unlikely to be a problem in most cases.

The drop_item() method will be called when an item (or group) is deleted from the group. The commit_item() method is there to support transactional access to group members; that functionality is not implemented in the current configfs patch.

The top level of the hierarchy is a configfs_subsystem structure, which is just a special group:

    struct configfs_subsystem {
	struct config_group	su_group;
	struct semaphore	su_sem;
    };

Code creating a subsystem must first initialize the embedded group in the usual manner, then register the subsystem with:

    int configfs_register_subsystem(struct configfs_subsystem *subsys);

There is a configfs_unregister_subsystem() function as well.

The above whirlwind tour is, hopefully, enough to give a feel for how to work with configfs. Those wanting more information may wish to consult the extensive documentation file and the example module distributed with the configfs patch.

Comments (none posted)

Roundup of Upcoming Distribution Releases

For many Linux distributions and BSD projects, the end of summer in the Northern Hemisphere traditionally signals the beginning of an intensive new testing and release process. What can we look forward to in the upcoming months?

Let's start with SUSE Linux. The third beta release of SUSE 10.0 should be out by the time you read this, with the final release expected around the middle of September. After years of being developed behind closed doors, SUSE is about to become one of the most open Linux projects, complete with public participation and available as a free download as soon as the testing process is finished. The response by the Linux community has been overwhelmingly positive so far and SUSE's newly established Bugzilla and mailing lists are buzzing with interest. Judging by the first two betas, SUSE 10.0 will be a solid release, perhaps lacking major new features, but it should come with many updated packages, a more consumer-friendly installer and plenty of eye candy. The 'apt' package management utility will be included for the first time. And its Xen virtualization technology and Beagle desktop search tool are likely to be a lot more mature than in SUSE 9.3.

Mandriva Linux 2006 has been in beta testing since the end of July and the final release should be out before September is over. As has become tradition in the Mandriva development labs, the beta releases are published behind schedule, but the company has been hard at work replacing all references to Mandrake with Mandriva and revamping most of the their web sites. Mandriva 2006 will be the first release under the company's new annual release cycle. Many users hoped that it would incorporate some of the technologies from its recent acquisitions of Conectiva and Lycoris, but there have been few signs of those in the three betas released so far, with 'urpmi' still remaining the distribution's preferred package management tool. One interesting update is that Mandriva's latest beta is the first distribution shipping with a cvs version of the upcoming X.Org 7.0.

The developers of Ubuntu Linux have had their hands full with a new version 5.10, code name "Breezy Badger", scheduled for release on October 13th. As with previous versions, there will be a preview release immediately after GNOME 2.12 is declared stable on September 7th, followed by a release candidate a week before the final Ubuntu 5.10. Breezy will ship with a large number of new features, including a graphical installer, improved support for laptops through LaptopMission, thin client integration, application launch pads, complete sound infrastructure including audio CD burning, and the usual updates to artwork, sound events and branding. The release will be accompanied by Kubuntu (Ubuntu with KDE) and also Edubuntu, a distribution specifically designed for classroom use. Besides all the coding, much effort has been put into promotion of Ubuntu (and Linux in general) - a 12-day Ubuntu conference will be held in early October in Montreal, Canada and Ubuntu is also part of a task force to formulate South Africa's national strategy on open source - an initiative that Ubuntu's Mark Shuttleworth believes could foster international cooperation and increased adoption of open source software by governments and the private sector across the globe.

September should also see the final release of FreeBSD 6.0. It has been delayed by more than a month due to several show stopper bugs in the core system resulting in instability and kernel panics. At the time of writing, the FreeBSD 6.0 development page lists six critical bugs and one required feature that has yet to be completed. It is not yet clear whether FreeBSD 6.0 will be considered "production quality" or just an "early adopter's preview", as was the case with FreeBSD 5.0. On a related note, new versions of both OpenBSD (version 3.8, currently in beta) and NetBSD (version 3.0) are scheduled for release in October.

Slackware Linux is another project that will release a new version of its distribution within the next couple of months. Patrick Volkerding has already indicated that version 10.2 will enter a beta testing phase shortly and since its "current" tree looks in a reasonably good shape, the testing process will probably be very short. Slackware 10.2 will remain on the conservative side of things, with the maintainer still giving clear preference to the tried and tested Linux 2.4 as the distribution's default kernel. And although many packages in Slackware's "current" branch have been updated to their latest versions, Slackware 10.2 will ship without GNOME - for the first time since Slackware 4.0!

Also for the first time in years, the fans and beta testers of Fedora Core (and Red Hat Linux before) will be deprived of the adrenaline that used to accompany the highly intensive testing process of their favorite distribution. That's because the developers of Fedora Core have agreed to extend the distribution's release cycle from six to nine months, with the expected release of Fedora Core 5 now scheduled for the middle of February 2006. That said, the first two test releases should appear before Christmas, so there will be some beta testing to deal with, but the usual rush to complete testing before a certain pre-Christmas deadline will be absent this year. The extended release cycle should be a welcome relief for the Fedora developers, especially since Core 5 will likely form the basis of the all-important Red Hat Enterprise Linux 5, possibly coming out in the second half of 2006.

Among other major distributions, the Gentoo Linux project has recently completed its second release of the year and there won't be any new one until early 2006. Debian GNU/Linux is currently in a major transition course towards X.Org, glibc 2.3.5, GCC 4.0 and apt 0.6 so it will take time before there is any talk about releasing "etch" (Debian's next version). Similarly, the many Debian derivatives that have been, until recently, happy to base their releases on the more up-to-date unstable ("sid") branch of the pre-sarge period are now forced to postpone any new releases until "sid" completes its current transition. In the meantime, the developers of MEPIS Linux have been concentrating on building various specialist editions of MEPIS Linux, all based on Debian "sarge" and, if tradition is kept alive at Xandros, we might perhaps see a new release of Xandros Desktop before the end of the year.

Comments (2 posted)

Ubuntu Breezy Badger "Colony 3" now available

The Ubuntu developers have announced the release of the "Colony CD 3", the third test release of the upcoming "Breezy Badger" release. A number of improvements have been added since the previous "Colony"; see the announcement for the details.

Full Story (comments: 20)

Dissertation: Three ethical moments in Debian

Biella Coleman is an anthropology graduate student who has been working for years with the Debian community as part of her dissertation work. That dissertation has now been accepted, and one chapter of it, entitled "Three ethical moments in Debian: the making of an ethical hacker part III" has been posted on the net. Click below for Biella's announcement and description of the work; the (80-page) chapter is available as a 2MB PDF file. (Thanks to Adam Heath).

Full Story (comments: 3)

GNU Classpath distro DevJam

The GNU Classpath DevJam is a developer and packager meeting around coordinating and improving the state of packaging of large scale applications written in the java programming language using the GNU Classpath, gcj and other free java-like VMs tool chain for the various GNU/Linux distributions. "We hope to get together a group of (20 till 30) people wanting to do some hands on hacking to show the state of the art in packaging. Resulting in the availability of several new packages, improvements to the free tool chains and cross-distribution packaging conventions quickly after the meeting."

Full Story (comments: none)

Fedora news

The Fedora Project is recruiting documentation authors, with a current focus on the FC5 release notes.

The Fedora Project has announced an updated Guide to Managing Software with Yum. This documentation is for Fedora Core 3 and Fedora Core 4.

Comments (none posted)

Freespire

Freespire is made from the freely available source code of the Linspire operating system, and other Linux distributions. All the proprietary components and trademarks have been removed. The initial release is a live CD / proof of concept, for i386 and AMD64.

Comments (none posted)

Underground Desktop

Underground Desktop is a GNU/Linux distribution targeted to the desktop user, featuring a graphical installation (using Anaconda for Debian by Progeny). It is based on Debian 'unstable', optimized for i686, with a KDE desktop.

You can find reviews of Underground Desktop on NewsForge and Linux.com.

Comments (none posted)

Debian Weekly News

The Debian Weekly News for August 23, 2005 is out. This week: the DPL delegates the authority to make a decision regarding the use of the Debian trademark to Don Armstrong, a howto on installing Debian on the Sun Blade 150, a look at kernel version dependency, using LSB init scripts, and several other topics.

Full Story (comments: none)

Fedora Weekly News Issue 10

The latest issue of the Fedora Weekly News has the meeting minutes for Fedora Documentation, meeting minutes for Fedora Marketing, more speakers needed for FUDCon London 2005, and several other topics.

Comments (none posted)

Gentoo Weekly Newsletter

The Gentoo Weekly Newsletter for the week of August 22, 2005 is out, with a report from Linux World Expo San Francisco, a look at some user projects like car console and MythTV, and more.

Comments (none posted)

Mandriva Linux Community Newsletter #107

The Mandriva Linux Community Newsletter for August 22, 2005 looks at the new Mandriva Club site, the changing domain names and other topics.

Full Story (comments: none)

Red Hat Magazine Issue 10

The latest issue of Red Hat Magazine is online, with a look at debugging code with strace, CVS is out, Subversion is in, Fedora Extras Focus, Red Hat Summit 2006: Goin' country, creating vector graphics with Inkscape, building the Fedora Foundation: Goals established, and more.

Comments (none posted)

DistroWatch Weekly, Issue 114

The DistroWatch Weekly for August 22, 2005 is out. "The long awaited KNOPPIX 4.0 live DVD was finally released last week - with a large collection of great software, but also with a few nasty bugs. In the meanwhile, the openSUSE project continues its fast-paced beta testing process of SUSE Linux 10.0 with more great software and an easy way to upgrade to the latest version. Our featured project of the week is aLinux - a distribution with amazing eye candy, unparallelled multimedia support, and many bleeding edge software packages."

Comments (none posted)

New Quantian torrent at tlm-project

The Quantian project has lost a server, but gained a torrent at the Linux Mirror Project. "As I mentioned recently on quantian-general and in my blog, the machine hosting Quantian at University of Washington is no more. I am indebted to Tony, Eric and U W for the service and bandwidth they have provided. It really helped."

Full Story (comments: none)

Ports: Fedora Core support on the way for GNU-Darwin

The GNU-Darwin project will be adding Fedora Core support to the ports tree. "For the purists, Debian support was added to CVS last year. In other news, sales and donations continue to provide for the growth and development of the Distribution. We are providing internet services, email, webpages, Office discs, Package discs, and bootable OS installer discs; all bone fide free software. We are clearly the most free, active, and lucrative Darwin-based project."

Full Story (comments: none)

Fedora updates

Fedora Core 4 updates: system-config-netboot (bug fixes), doxygen (update to 1.4.4), kdbg (update to 2.0.0), system-config-bind (bug fixes), tar (silence newer option), gstreamer-plugins (bug fixes), vnc (bug fix), metacity (bug fix), pygtk2 (update to bugfix version 2.6.2), shadow-utils (bug fixes), evolution (update to 1.6.5), MyODBC (bug fix), xpdf (update to 3.01), libgal2 (bug fix), dhcpv6 (bug fixes), system-config-netboot (bug fixes), diskdumputils (updated source), bind (bug fixes), glibc (bug fixes and rebuilt with gcc-4.0.1-4.fc4), eject (update 2.1.1).

Fedora Core 3 updates: kdbg (update to 2.0.0), system-config-bind (bug fixes), pcre (add symlinks for header files), MyODBC (bug fix), doxygen (update to 1.4.4), xpdf (update to 3.01), dhcpv6 (bug fixes), system-config-netboot (bug fixes), kdebase (Bluecurve theme for KDM), hwdata (fix MegaRAID controller mapping), eject (update to 2.1.1).

Comments (none posted)

Mandriva MDKA-2005:039

Mandriva has updated indexhtml with the new URLs for the various Mandriva domain names.

Full Story (comments: none)

Linux wireless freedom with OpenWrt (NewsForge)

NewsForge reviews OpenWrt. "You can turn your blue Linksys router into a Linux box with OpenWrt, an embedded Linux distribution for Linksys WRT54G and WRT54GS routers. This tiny distribution exceeds the default firmware functionality in many useful ways. Instead of having only a Web-controlled wireless access point, OpenWrt provides you with a fully interactive Linux system. Some notable features are the ability to telnet/SSH to your router, install software such as Snort, Mini-Sendmail, and Asterisk, and create and control VLANs for every Ethernet port on the device."

Comments (15 posted)

Suse Linux Professional 9.3 64bit (Personal Computer World)

Personal Computer World has a review of SUSE Linux. "It turns out that Suse Linux is an excellent platform for 64bit computing. On our Intel EM64T system, everything worked more or less immediately, including USB, Intel Hi-definition audio, and the Nvidia Geforce 5900 PCI Express graphics. We could compile and run 64bit applications, while 32bit applications such as Open Office ran fine as well."

Comments (none posted)

The Sylpheed Email Client

Sylpheed is a GTK+ based lightweight email client that is authored by Hiroyuki Yamamoto. According to the project FAQ, Sylpheed aims to be fast, graceful, intuitive, easy to configure, reliable and full of features. The name comes from the wind spirits, the Sylphs, representing the lightweight nature of the application.

Sylpheed features include:

• An easy to use intuitive user interface.
• Works with a minimal amount of configuration.
• Supports Mutt-style MIME type checking.
• Supports the following protocols: POP3, IMAP4 rev 1, SMTP.
• Supports NNTP for News reading.
• Includes GPG encryption with the SSL/TLSv1 protocol.
• Works with IPv6 networking.
• Includes spam filtering capabilities via bogofilter.
• Uses the MH (1 file per message) mail file format.
• Is designed to work with massively populated mail folders.
• Features name completion using the built-in address book.
• Supports threaded mail reading for grouping by common topics.
• Has the ability to compose emails using an external editor.
• Can execute external commands.
• Supports a wide variety of character encodings.
• Has high-level Japanese language processing capabilities.
• Features translations for 29 languages.

The User's Manual explains the operation of the software in more detail. A few obligatory screen shots show Sylpheed in action.

Version 2.0.0 of Sylpheed was announced this week, it features a switch to GTK2, usability improvements, inline viewing of attached images, and more.

The software was a breeze to configure, build, and install on a Fedora Core 3 system. Pre-compiled packages are available for several popular Linux distributions. Operation was simple and intuitive, as advertised. Your author is seriously considering a switch from the old reliable (and somewhat clunky by today's standards) exmh mail client to Sylpheed.

Comments (15 posted)

Alsa 1.0.10rc1 packages are available

Version 1.0.10rc1 of the ALSA sound driver packages are available for testing: "all packages except alsa-firmare were released - version name is 1.0.10rc1. Please, test the packages and report the bugs (especially packaging and compilation problems) to the ALSA bug-tracking-system." See the change log file for details.

Full Story (comments: none)

Open MPI code base now available

The Open MPI Project has released their high-performance message passing library code under the BSD license. "Open MPI is a project combining technologies and resources from several other projects (FT-MPI, LA-MPI, LAM/MPI, and PACX-MPI) in order to build the best MPI library available. A completely new MPI-2 compliant implementation, Open MPI offers advantages for system and software vendors, application developers and computer science researchers."

Full Story (comments: none)

Firebird 1.5.3 Release Candidate 1

Release Candidate 1 of the Firebird 1.5.3 database is available. "The Firebird Project is pleased to announce a release candidate for the forthcoming Firebird 1.5.3 release, for testing. Download kits are available for Windows and Linux."

Comments (none posted)

PhpPgAdmin 3.5.5 Released

Version 3.5.5 of PhpPgAdmin has been announced, it features several bug fixes.

Comments (none posted)

PostgreSQL Weekly News

The August 21, 2005 edition of the PostgreSQL Weekly News is out. Take a look for the latest PostgreSQL stories.

Full Story (comments: none)

BusyBox 1.01 released

Stable version 1.01 of BusyBox, a condensed collection of command-line utilities, is out. "A new stable release (BusyBox 1.01) is now available for download, containing over a hundred small fixes that have have cropped up since the 1.00 release."

Comments (none posted)

Samba 3.0.20 is Available

Version 3.0.20 of Samba has been announced. "This is the latest stable release of Samba. This is the version that production Samba servers should be running for all current bug-fixes. This is a substantial upgrade from previous Samba 3.0.x releases."

Full Story (comments: 1)

LAT 0.7 Released

Version 0.7 of LAT, the LDAP Administration Tool, is out with a number of new features.

Full Story (comments: none)

Gotmail 0.8.6 Released

Version 0.8.6 of Gotmail is available. "The Gotmail project, a perl script which downloads mail from hotmail.com without user interaction, released version 0.8.6 today. This version adds support for running the script on the various Windows platforms. Additionally, thanks to new developer, Jos De Laender, Gotmail now has support for multiple languages. There are many new commandline options as well as several improvements with the packaging for the project."

Full Story (comments: none)

aircrack 2.23 released

Stable version 2.23 of aircrack, a set of tools for auditing wireless networks, is out with bug fixes.

Comments (none posted)

CherryPy for CGI programmers (IBM developerWorks)

Leonard Richardson introduces CherryPy on IBM developerWorks. "The CherryPy application framework for Python makes Web applications easier to write than plain Common Gateway Interface (CGI). At the same time, it's simple -- not full of little-used features -- and easy to learn. This introduction shows everything needed to write Web applications with CherryPy."

Comments (none posted)

Qwicap 1.3 Released (SourceForge)

Version 1.3 of Qwicap has been announced. "Qwicap ("Quick Web Interface for Conventional Applications") is a Java web application development API based on Servlet, XHTML, and CSS2 technologies. It greatly simplifies development by dispensing with the usual hit-run-exit model of web applications, automates a variety of best-, or pretty-good-, practice behaviors, and provides a powerful XML "templating" engine to avoid mixing code and content. After more than two years of development, Qwicap has simultaneously reached version 1.3, and has been open-sourced under the LGPL." See the changes file for more information on this release.

Comments (none posted)

scgi 1.7 released

Version 1.7 of scgi has been released. A bug fix for Apache2 mod_scgi and other changes are included.

Full Story (comments: none)

Ecasound 2.4.3 released

Version 2.4.3 of Ecasound, a multi-track command line audio processing utility, is out. Here are the changes: "Support for the ALSA sequencer API has been added. A few bugs related to .ewf file processing have been fixed. A serious problem in the disk i/o subsystem, which caused system freezes in some conditions, has been fixed. Disk subsystem performance has also improved slighly in this release."

Full Story (comments: none)

snd-ls 0.9.5.1 released

Version 0.9.5.1 of Snd-ls is out with many changes. "Snd-ls is a distribution of the sound editor Snd. Its target is people that don't know scheme very well, and don't want to spend too much time configuring Snd. It can also serve as a quick introduction to Snd and how it can be set up."

Full Story (comments: none)

Sweep 0.8.4 Released

Version 0.8.4 of Sweep, an audio editor and playback tool, is out. Changes include ALSA 1.0 support, translation work, and more.

Full Story (comments: none)

pcal 4.9.0 released

Version 4.9.0 of `pcal', a program which generates PostScript- or HTML-format monthly/yearly calendars, has been announced. Changes include support for several new languages (and improved support for existing languages), ability to delete specific events, improved EPS image support, a Perl script for HTML/CGI access, additional sample calendar event files, additional sample character encoding/font test files, and various bug fixes. (Thanks to Bill Marr.)

Comments (none posted)

GNOME's Project Ridley

The GTK+ developers have announced a new initiative called "Project Ridley." The idea is to get rid of a number of the small libraries which follow GNOME applications around, merging their functionality into the core GTK+ toolkit. The end result will likely be the GTK+-3.0 release. More information can be found in the announcement (click below) or on the Project Ridley wiki page.

Full Story (comments: 38)

The story of two SVG libraries (GnomeDesktop)

GnomeDesktop.org covers the merging of the librsvg and libsvg SVG library projects. "The teams working on librsvg and libsvg have decided to join forces around the CVS version of librsvg. Thanks to the work of the librsvg team, mostly Caleb Moore, librsvg now can support multiple rendering backends, with libart and Cairo backends implemented."

Comments (none posted)

GNOME Software Announcements

The following new GNOME software has been announced this week:

• duty-roaster 0.0.80 (new features and bug fixes)
• Epiphany 1.4.9 (bug fixes)
• Epiphany 1.7.5 (bug fixes)
• Gajim 0.8 (new features and translation work)
• GARNOME Snapshot 20050819 (bug fixes)
• gcalctool 5.6.28 (new features, bug fixes, and translation work)
• GDM2 2.8.0.3 (new features and bug fixes)
• GLib 2.8.1 (bug fixes, documentation and translation work)
• gnome-games 2.11.5 (final release candidate)
• GNOME Nettool 1.3.92 (translation work)
• gnome-terminal 2.11.3 (bug fixes and translation work)
• gnubiff 2.1.5 (bug fixes)
• GTK+ 2.6.10 (bug fixes and translation work)
• GTK+ 2.8.1 (bug fixes)
• GTK+ 2.8.2 (bug fixes)
• gtkmm 2.7.4 and glibmm 2.7.3 (new features and documentation work)
• libbonobo/libbonoboui 2.10.0/2.10.1 (new features and bug fixes)
• libgda/libgnomedb 1.3.91 (bug fixes)
• libgnomeui/libgnome 2.11.3 (new features and bug fixes)
• metacity 2.11.3 (bug fixes and translation work)
• VTE 0.11.15 (bug fixes)

You can find more new GNOME software releases at gnomefiles.org.

Comments (none posted)

KDE Software Announcements

The following new KDE software has been announced this week:

• abakus 0.90 (new features and bug fixes)
• digiKam and DigikamImagePlugins 0.7.4 (translation work)
• digiKam and DigikamImagePlugins 0.8.0-beta1 (new features and bug fixes)
• gambas 1.0.10 (bug fixes)
• kallcenter 1.0 (bug fixes)
• Kat 0.6.2 (bug fixes)
• KCheckGmail 0.5.4 (new features and bug fixes)
• kdar 2.0.6 (bug fixes)
• KDE DVD Authoring Wizard 0.93 (new features)
• KsirK 1.3beta2 (new features and bug fixes)
• Luma 2.2 (new features and bug fixes)
• MateEdit 0.2 (new features)

You can find more new KDE software releases at kde-apps.org.

Comments (none posted)

GerbMerge 1.0 released (OpenCollector)

Version 1.0 of GerbMerge, a panelizer for Gerber RS274X and Excellon files, has been announced. "New features include handling simple aperture macros, more than 99 apertures in input files, trimming Gerber/Excellon data to the board extents, configurable output filenames, better documentation, and panel margins to allow for extra space for tooling."

Comments (none posted)

Trolltech Releases Qt 4.0.1 (KDE.News)

KDE.News covers the release of Qt 4.0.1. "Among the over 450 bug fixes and optimizations are numerous improvements to raster engine, X11 engine and QPainterPath, significantly speeding a range of drawing processes and introduction of top-level window transparency on X11."

Comments (none posted)

Mondrian Project announced

The Mondrian Project has been launched by Peter Brinkmann. "I would like to announce the Mondrian Project. Mondrian is an attempt to create a text-based setting for writing and performing music." Mondrian includes plugins for vi and emacs that turn your favorite text editor into a musical instrument.

Full Story (comments: none)

Mozilla SVG Presentation at SVG Open 2005 (MozillaZine)

MozillaZine covers a talk on Mozilla SVG developments. "The Mozilla Scalable Vector Graphics Project team gave a presentation entitled Past, Present, and Future of Mozilla SVG at the SVG Open 2005 conference in the Netherlands today. As well as detailing the current status of SVG in Mozilla, the talk also discussed the history of the Mozilla SVG project and some of the implementation problems the team faced. Future plans were also covered and the presentation included a demonstration of the SVG-powered MozMapEditor application."

Comments (none posted)

AbiWord 2.3.5 released (GnomeDesktop)

AbiWord v2.3.5, aka AbiWord 2.4 beta 2, has been released. "This release is virtually identical to what will become AbiWord 2.4, but still contains some bugs that might the speed up the greenhouse effect or cause your house to fall over."

Comments (none posted)

PenguinTV 0.75 Released (GnomeDesktop)

Version 0.75 of PenguinTV has been announced. "PenguinTV is a full-featured RSS, podcast, and video blog reading tool written in Python. It can be used by itself to download and view media, or you can copy the media files and a ready-made playlist to a portable mp3 player."

Comments (none posted)

Caml Weekly News

The August 16-23, 2005 edition of the Caml Weekly News is online with the latest Caml language articles.

Full Story (comments: none)

Haskell Weekly News

The August 23, 2005 edition of the Haskell Weekly News is online with the latest Haskell news. Topics covered this week include the new ghc-src project, Oracle on Haskell, The Monad.Reader, and how Linus/git impact darcs.

Comments (none posted)

Introduction to the ASM 2.0 Bytecode Framework (O'ReillyNet)

Eugene Kuleshov introduces the ASM 2.0 Bytecode Framework on O'Reilly. "J2SE 5.0 made major changes to the language, and version 2.0 of the ASM bytecode manipulation toolkit is well-suited to handle them. In this article, Eugene Kuleshov shows how ASM 2.0 makes working with bytecode easier, and even offers an example of how to map the external dependencies in an arbitrary .jar file."

Comments (none posted)

HiveMind Utilities 0.4.5 released (SourceForge)

Version 0.4.5 of HiveMind Utilities, a set of modules for the HiveMind lightweight container, is available. "The HiveMind Utilities project team announces the release of "HiveMind Utilities 0.4.5", which mainly is improving poor performance of gzip related features introduced in version 0.4.4."

Comments (none posted)

Internationalization, Part 1 (O'Reilly)

David Flanagan discusses Java internationalization issues in an O'Reilly book excerpt. "In this excerpt from Chapter 8 of Java Examples in a Nutshell, 3rd Edition, author David Flanagan offers real-world programming examples covering the three steps to internationalization in Java. This week, he covers how to use Unicode character encoding and how to handle local customs. Next week's excerpt will cover the third step: localizing user-visible messages."

Comments (none posted)

JPasswords 0-1-0 Released (SourceForge)

Version 0-1-0 of JPasswords has been released. "JPasswords offers a compact but proficient and user-friendly, Java Swing based application to store and manage passwords on encrypted files. - I am happy to announce the first edition of JPasswords. It brings a complete security password management tool in advanced maturity state. The program makes full compatible use of Password Safe files (CounterPane). Among its striking features are its platform-independence and the astounding compactness of only 188 KB."

Comments (none posted)

OVal 0.1.0 alpha released (SourceForge)

Version 0.1.0 alpha of OVal has been announced. "OVal is a generic Java 5 based object validation framework that uses annotations to express constraints and AspectJ to handle automatic validation. It supports validation of class fields as well as constructor and method parameters."

Comments (none posted)

First public release of ContextL

The initial release of ContextL, a Common Lisp CLOS extension for Context-oriented programming, is out.

Full Story (comments: none)

wxCL 1.0.0 Alpha released

wxCL 1.0.0 Alpha is available. "The first public release of wxCL, version 1.0.0 Alpha, has been announced. wxCL is a portable Common Lisp GUI library based on the C++ wxWidgets library."

Full Story (comments: none)

This Week in Perl 6 (O'Reilly)

The August 18 edition of O'Reilly's This Week in Perl 6 is out with the week's Perl 6 development news.

Comments (none posted)

Dr. Dobb's Python-URL!

The August 18, 2005 edition of Dr. Dobb's Python-URL! is online with the latest Python language article links.

Full Story (comments: none)

python-dev Summary

The July 16-31, 2005 edition of the python-dev Summary is online with coverage of the python-dev mailing list activity.

Full Story (comments: none)

Ruby Weekly News

The August 21, 2005 edition of the Ruby Weekly News summarizes the latest discussions on the ruby-talk mailing list.

Comments (none posted)

Schemer's Gazette

Issue #8 of the Schemer's Gazette is online with the latest Scheme language discussions.

Full Story (comments: none)

Dr. Dobb's Tcl-URL!

The August 19, 2005 edition of Dr. Dobb's Tcl-URL! is online with the weekly collection of Tcl/Tk articles.

Full Story (comments: none)

Mercurial v0.6c released!

Version 0.6c of Mercurial, a source code management system, is out with numerous new capabilities.

Full Story (comments: none)

Deskzilla Desktop Bugzilla Client Beta (MozillaZine)

MozillaZine looks at Deskzilla, a Java-based Bugzilla client application. "Deskzilla is an alternative, desktop client application for the Bugzilla bug-tracking system, created by an independent software vendor. Deskzilla is free for open-source projects. "Deskzilla introduces several new features and helps to do routine bug tracking, yet it cannot be viewed as a full replacement for the vast Bugzilla web interface. The goal of the Deskzilla project is to explore possibilities for unique bug-tracking features that are open for a desktop application.""

Comments (none posted)

The worm that didn't turn up (Guardian)

Here's a column in the Guardian from a writer who had no trouble with the latest worm episode. "How have I achieved this blissful freedom? Simple: by using only computers running Apple or Linux software. No special geeky skills required - just common sense and a desire to avoid pain. For six years, I have enjoyed all the benefits of networked computing without experiencing any of the downsides."

Comments (9 posted)

Tim Berners-Lee Sends a Letter to the US Copyright Office (Groklaw)

Groklaw reports that Tim Berners-Lee, director of the W3C and inventor of the Web, has responded to a call for comments from the US Copyright Office. "He mentions security issues , which can and have arisen in connection with all browsers. As it happens, there was one yesterday involving IE, and some responded to the fact that there is currently no patch for it by suggesting that you use a different browser at least temporarily."

Comments (none posted)

Apache hopes to encourage female coders (News.com)

News.com has a short article on the Apache Foundation's efforts to encourage participation from women. "Debian, the free Linux distribution, set up a group last year to encourage the participation of women. Helen Faulkner, a member of Debian Women, told ZDNet UK last year that the group offers advice to women on a variety of topics from how to install Debian to how to write a bug report. It is also encouraging Debian to become more welcoming to women by flagging instances of sexism."

Comments (none posted)

Open-source Mambo project faces rift (News.com)

News.com reports on a split in the Mambo project. "On one side of the clash is Miro International and the Mambo Foundation. Miro is the company that originally released Mambo as open-source software, and it helped establish the foundation earlier this month to govern the software as an open-source project. On the other side is the entire team of Mambo developers."

Comments (none posted)

Asia to show Linux-based system (CNN)

Here's a brief CNN article on the upcoming release of Asianux 2.0, a distribution put together by Miracle Linux (mostly owned by Oracle), Red Flag Software, and Haansoft. "Miracle Linux President Takeshi Sato said in January 2004 that the group hoped Asianux will be prevalent in server systems for regional businesses and governments within three years."

Comments (none posted)

Sun launches open-source digital rights plan (ZDNet)

According to this ZDNet article, Sun is pushing into the digital restrictions management (DRM) area. "Sun also believes it can bypass corporate powers though use of open-source software. 'Now it's no longer simply about engaging a few corporate interests. The open-source community is all about engaging the planet,' Schwartz said, including individuals who might want to sell their own digital content over peer-to-peer networks."

Comments (6 posted)

Can Linux Put PalmSource Back On Top? (InformationWeek)

InformationWeek examines the increasing use of Linux on PDA and cell phone platforms. "These vendors cite a variety of advantages to adopting an open source platform over a proprietary one. Interestingly, the lack of licensing royalties appears to be the least important advantage to most of them. Motorola, for example, which continues to ship Windows and Symbian phones but divested its ownership stake in Symbian two years ago, notes the advantage of choosing launch dates based on the company's own preferences rather than being tied to the OS developer's next major OS release. Korean Linux phone pioneer E28 points to another benefit: the fact that closed, monolithic platforms often impose proprietary standards that restrict a company's freedom to differentiate itself from its competitors."

Comments (2 posted)

Looking at Real Time for Linux, PowerPC, and Cell (developerWorks)

developerWorks talks with Paul McKenney about processors, computer history, time slices, games, physics, and Linux. "Paul E. McKenney is a Distinguished Engineer at the IBM Linux Technology Center. He has worked on SMP, NUMA, and RCU algorithms since he came to IBM in the early 1990s. Prior to that, he worked on locking and parallel operating-system algorithms at Sequent Computer Systems. He has also worked on packet-radio and Internet protocols (even before the Internet became popular), system administration, real-time systems, and business applications."

Comments (12 posted)

Interview with Aaron Seigo (Linux Magazine)

Linux Magazine interviews Aaron Seigo about his Trolltech sponsored work on KDE. "We also sat back and went, "you know it'd be really nice if we could really show what X, the X modern protocol, especially from X.org, is capable of these days. Cause it's got a bad reputation or has a crude one largely because development was so stagnant for so many years, but X.org has really picked up again and we're starting to see some exciting capabilities on the X.11 platform. We also have Q4 coming out from Trolltech, that's got, I was playing around with the new painting facilities that were there yesterday, and was really happy with how much more progressed Q4 is over Q3 for what we can do eye-candy wise."

Comments (6 posted)

Interview with Roberto Cappuccio (Tuxmachines)

Tuxmachines talks with Roberto Cappuccio about KAT. "Kat Desktop Search Environment is an open source framework designed to allow KDE applications to index and retrieve files; loosely speaking, a search tool. Tuxmachines has had the rare opportunity to speak with Roberto Cappuccio, wonderfully talented developer of KAT." (Found on KDE.News)

Comments (none posted)

3 Questions: Patent Commons Protection (ITBusinessEdge)

ITBusinessEdge talks with OSDL general counsel Diane Peters about the patent commons project. "With increasing frequency, institutions, companies and inventors want to formally signal to open source developers, distributors and users that software patents they hold are not a threat or inhibitor to the development or use of open source. The patent commons gives them a forum in which to do so. As for patent holders who assign their patents to OSDL, they are relieved of the administrative burdens associated with licensing their patents to various players in the open source community."

Comments (none posted)

Open Source Power management - Gnome Power Manager (MYOSS)

MYOSS magazine is running an article on the Gnome Power Manager by lead developer Richard Hughes. "Power management in Linux sucks. Depending if you are running a PPC or i386 PC the different power management facilities are vastly different. To get your machine to suspend on lid press is already possible, but is difficult to know what config files to modify. To get your LCD screen brightness set to 50% when you remove the AC Adapter of your laptop is probably possible with a clever little Perl script, but is not something that comes ready configured on a standard Linux distro. Any of these things need the user to become the super-user to do the action. This needs to change before Linux is accepted as a contender for the corporate desktop."

Comments (none posted)

A Video Card Upgrade HOWTO (Linux Journal)

Colin McGregor walks through the process of upgrading a video card on a Linux system. "Given the many dozens of video cards on the market, how to choose? The first step is to take a look at your motherboard manual to answer the question "what video cards could my computer support?" All other things being equal, you want the fastest data transfer between the computer and the video card. The upper limit as to how fast data can transfer from the computer to the video card is the bus connector between the card and the motherboard. In decreasing order of performance, the video card bus arrangements are PCIexpress, AGP 8x, AGP 4x, AGP 2x, AGP and PCI."

Comments (17 posted)

The Eclipse Voice Tools Project (developerWorks)

This developerWorks article introduces the Eclipse Voice Tools Project. "The Voice Tools Project (VTP) was formed to take advantage of the Web Tools Project by extending its base of Web-development tools into the voice-recognition world. This allows the Voice Tools Project to provide a great Web-development experience for voice applications out of the box and allows users to development their voice applications using the same tools they would use to develop their visual applications. For companies that use the Voice Tools Project as a base for their own tools, it means that all the tasks users come to expect from a modern Web-oriented Integrated Development Environment (IDE) are provided without any additional effort."

Comments (none posted)

amaroK 1.3 'Airborne' takes off (KDE.News)

KDE.News reviews version 1.3 of the amaroK audio player. "amaroK is one of the first applications to integrate live information from the free encyclopedia, providing useful facts about the music you are currently listening to. Discography of an artist, biography and even photos are just a mouseclick away with the new Wikipedia tab."

Comments (none posted)

FreeBSD 6.0 to target wireless devices (News.com)

News.com looks at FreeBSD 6.0. "FreeBSD developer Scott Long said on Thursday that the next version of the open-source BSD-based operating system, planned for release in September, includes support for "a lot more" wireless cards and for wireless security standards such as the Wi-Fi Protected Access (WPA)."

Comments (2 posted)

Kino makes video editing simple (NewsForge)

Ben McGrath likes Kino for video editing, on NewsForge. "Kino takes video to the disk in AVI and raw DV format. When you finish editing a video, Kino lets you export it in a number of formats, such as MPEG and MP3. Kino also features incredible support for IEEE-1394, otherwise known as FireWire, which allows it to communicate with different video hardware, and also supports most USB drive input. Kino has easy tools for filters, general effects, and video transition, ranging from kaleidescope to a general background generator. Kino also comes equipped with audio tools, such as filters and audio transitions, which include useful "fade in/out" and "mix" features."

Comments (7 posted)

A Comparison of Linux Performance Tuning Books (Linux Journal)

Linux Journal has a mini-review of two performance tuning books. "I've recently had the opportunity to read two books on the topic: Optimizing Linux Performance, written by Phillip G. Ezolt and part of the HP Professional Books imprint, and Performance Tuning for Linux Servers, edited by Sandra K. Johnson and published by IBM Press. As both of these titles came out of large companies that are throwing a lot of support behind Linux, I thought it would be worthwhile to compare the two books."

Comments (5 posted)

Linux for Video Production (O'ReillyNet)

Jono Bacon examines the present and future of video production with Linux and open source software, on O'ReillyNet. "At the GNOME User And Developers European Conference (GUADEC) in Stuttgart, Germany, PiTiVi was one of the most promising applications demonstrated. Currently being developed by French-born Edward Hervey, PiTiVi offers a refreshing outlook for video production on Linux. Hervey's goals for PiTiVi have been clear from the beginning. His intention was to create a simple, intuitive, and powerful editor that can be useful for both home and professional needs."

Comments (10 posted)

A couple of Linux trademark notes

Some parts of the net have recently discovered that changes have been made to how the "Linux" trademark is managed. We can't resist pointing out that LWN subscribers read about the whole thing last June. The current discussion, however, has drawn a response from Linus Torvalds as well: "Finally, just to make it clear: not only do I not get a cent of the trademark money, but even LMI (who actually administers the mark) has so far historically always lost money on it. That's not a way to sustain a trademark, so they're trying to at least become self-sufficient, but so far I can tell that lawyers fees to _give_ that protection that commercial companies want have been higher than the license fees."

Software patent opponent Florian Mueller has issued a statement supporting the Linux trademark. Mr. Mueller is concerned that opposition to trademarks could hurt the legitimacy of the anti-patent campaign; he also criticizes those who are defending the bnetd developers.

Comments (13 posted)

Formulating a national government strategy on Free Software

Mark Shuttleworth has sent out a call for help to the Ubuntu community. "This is a mail to the global Ubuntu community, to ask for your help in formulating a national government strategy on Free Software for South Africa. We hope this work will also be used as a model for many countries world wide. We are participating in a task force that is considering how South Africa should lead the adoption of Free Software in government, in the private sector and in civil society. It is a unique gathering of people who would like to create the most effective possible strategy for the country, building on the great ideas that have already been implemented elsewhere."

Full Story (comments: none)

Astaro Protects Customers From Worms

Astaro Corporation has sent out a press release regarding worm protection from its gateway appliances. "Astaro Security Gateway appliances and other systems running its Astaro Security Linux V6 software are now protecting customers from worms that exploit a flaw in Windows 2000 systems. The worms can steal information, cause severe performance degradation on infected systems, delete files, and launch denial of service attacks against web servers."

Comments (none posted)

Eclipse Foundation Announces CDT 3.0

The Eclipse Foundation has announced the next generation of the Eclipse CDT platform, a platform for building C/C++ development tools. "Developed under the leadership of QNX Software, CDT 3.0 delivers improved scalability, performance, and extensibility to developers targeting embedded systems and Linux environments. CDT has been adopted as the C/C++ tools platform for major embedded and Linux vendors, including IBM, Intel, MontaVista, Novell SUSE, PalmSource, QNX, Tensilica, Texas Instruments, and TimeSys."

Comments (1 posted)

H-ITT releases version 1.8 of classroom response system

H-ITT has announced version 1.8 of their cross-platform classroom response system. "Hyper-Interactive Teaching Technology (H-ITT), a leader in hand-held remote technology for the classroom, today announced the release of version 1.8 of their Windows, Mac OSX, and Linux software for use with their classroom response system. Numerous new features and enhancements have been added to both the Acquisition program which collects responses from the students in class and the Analyzer which grades the responses after class."

Comments (none posted)

IBM Launches New Initiative to Help Developers Build Skills and Open Standards Solutions

IBM has announced a new initiative to help start-up companies in emerging markets -- China, India, Russia, Brazil -- more quickly and easily develop solutions based on open standards technology.

Full Story (comments: none)

Novell Announces Novell ZENworks 7 Suite

Novell, Inc. has announced the ZENworks 7 Suite. "Novell today announced the worldwide availability of Novell(R) ZENworks(R) 7 Suite, the first systems management solution that automates the complete lifecycle of Linux* systems and allows organizations to manage their Windows* workstations from a Linux platform. Novell ZENworks automates and enforces business and IT management processes across the lifecycle of desktops, laptops, servers and handheld devices. As a result, organizations can control costs, ensure security and compliance and get the most from their IT asset investments."

Comments (none posted)

SOA Vendors Lead Synapse Project for Apache Software Foundation

WSO2 has announced (click below) the creation of Synapse, a new project tasked with creating a Web service mediation framework. The project proposal has been submitted to the Apache Software Foundation "incubator" under the Web Services project. Additional detail are included in the proposal.

Full Story (comments: none)

Linux in a Nutshell, Fifth Edition - O'Reilly's Latest Release

O'Reilly has published the book Linux in a Nutshell, Fifth Edition by Ellen Siever, Aaron Weber, Stephen Figgins, Robert Love, and Arnold Robbins.

Full Story (comments: none)

Prentice Hall PTR publishes "Peter van der Linden's Guide to Linux"

Prentice Hall PTR has published the book Peter van der Linden's Guide to Linux by Peter van der Linden.

Full Story (comments: none)

Prentice Hall PTR Publishes Samba-3 Books

Prentice Hall PTR has published the second editions of the books The Official Samba-3 HOWTO and Reference Guide and Samba-3 by Example: Practical Exercises to Successful Deployment.

Full Story (comments: none)

GNOME 2.12 Splash Screen Contest (GnomeDesktop)

GnomeDesktop.org has an announcement for a new GNOME Splash Screen Contest. "With the imminent release of the GNOME 2.12, the time has come to find the ideal splash screen to go with it. Now is your chance to join the ranks of the precious few who have had their artwork associated with a major release of GNOME!" Submissions are due by September 4.

Comments (none posted)

Linux Installfest workshops in Davis, CA

The Linux Users' Group of Davis has announced the next "Linux Installfest" workshop, the event will be held in Davis, California on Saturday, August 27, 2005.

Full Story (comments: none)

CMP Media Announces Embedded Systems Conference

CMP Media has announced the next Embedded Systems Conference. The event will take place in Boston, Mass. on September 12-15, 2005.

Comments (none posted)

FSF Seminar on The GPL and Legal Aspects of Free Software Development (Groklaw)

Groklaw has announced a seminar on: "The GPL and Legal Aspects of Free Software Development". "I've written often of my experience at the GPL seminar I attended a couple of years ago, and I've always been very glad I went. For those of you in the New York area, there will be a one-day course at Columbia Law School on September 28, "The GPL and Legal Aspects of Free Software Development": The course will comprise an exploration of the most widely used free software copyright license, the GNU GPL, and will give lawyers, software developers, managers and business people the knowledge necessary to use the GPL (and GPL'ed software) successfully, with safety and predictability, both in businesses new to free software and in existing enterprises."

Comments (none posted)

The Ubuntu Below Zero Conference

There is another big Ubuntu developers' gathering in the works. This one is happening in Montreal from October 30 to November 10. See the announcement (click below) for the details.

Full Story (comments: 1)

Events: August 25 - October 20, 2005

Date	Event	Location
August 27 - September 4, 2005	aKademy 2005	(University of Málaga)Málaga Spain
August 31 - September 2, 2005	YAPC::EU::2005	(University of Minho)Braga, Portugal
September 1 - 2, 2005	Symposium on Security for Asia Network(SyScAN'05)	(The Dusit Thani Hotel)Bangkok, Thailand
September 1 - 4, 2005	GOTO10 ASP digital sound workshop	Rotterdam, the Netherlands
September 5 - 9, 2005	International Computer Music Conference(ICMC 2005)	Barcelona, Spain
September 12 - 15, 2005	Embedded Systems Conference	(Hynes Convention Center)Boston, Mass
September 14 - 16, 2005	php|works	(Holiday Inn Yorkdale)Toronto, Canada
September 16 - 18, 2005	ToorCon 7	(San Diego Convention Center)San Diego, CA
September 17 - 18, 2005	Freedel	New Delhi, India
September 19 - 21, 2005	Plone Conference 2005	(Semper Depot, Lehargasse)Vienna, Austria
September 20 - 23, 2005	New Security Paradigms Workshop(NSPW)	(UCLA Conference Center)Lake Arrowhead, California
September 23 - 24, 2005	Sixth Symposium on Trends in Functional Programming(TFP 2005)	Tallinn, Estonia
September 26 - 29, 2005	Hack in the Box Security Conference(HITBSecConf2005)	Kuala Lumpur, Malaysia
September 28 - 30, 2005	OpenOffice.org Conference 2005(OO.oCon)	Koper (Capodistria), Slovenia
September 30 - October 2, 2005	Linucon	Austin, Texas
October 1, 2005	Ohio LinuxFest 2005	Columbus, OH
October 2 - 5, 2005	Gelato October 2005 Meeting for Linux on Itanium	Porto Alegre, Brazil
October 5 - 6, 2005	LinuxWorld London	Olympia, London, UK
October 6, 2005	Fedora Users and Developers Conference(FUDCon London)	(LinuxWorld Conference and Expo UK)London, UK
October 7 - 9, 2005	Indie Games Con 2005(IGC)	Eugene, Oregon
October 8 - 10, 2005	GNOME Boston Summit	(Gates Building)Cambridge, MA
October 8, 2005	LinuxForum BOF-dag	Denmark
October 12 - 13, 2005	IT Underground(ITU)	Warsaw, Poland
October 13 - 14, 2005	Open Source Desktop Workshops	San Diego, CA
October 14 - 15, 2005	HackLu 2005	(Chambre des Metiers)Kirchberg, Luxembourg
October 14 - 16, 2005	Blender Conference 2005	(De Waag)Amsterdam, the Netherland
October 16 - 23, 2005	piksel05	Bergen, Norway
October 17 - 20, 2005	O'Reilly European Open Source Convention 2005(EuroOSCON)	Amsterdam, The Netherlands
October 18 - 21, 2005	Zend/PHP Conference and Expo 2005	(Hyatt Regency SF Airport Hotel)Burlingame, CA
October 18, 2005	Dynamic Languages Symposium 2005(DLS05)	San Diego, CA
October 19 - 21, 2005	Australian Unix Users Group Conference 2005(AUUG)	Sydney, Australia

Comments (none posted)

KDE Previews 3.5 Release at LinuxWorldExpo (KDE.News)

KDE.News covers the action at the KDE booth during the recent LinuxWorld Conference and Expo. "The K Desktop Environment was pleased to see its users recently at the LinuxWorld Conference and Expo. Users were excited to learn about KDE 4.0, some of the hot new stuff in KDE 3.5, and thousands of Linux users got out of the house for a change! Guests to our booth had questions like "So, when is KDE 4.0 going to be released?" Some also wondered what kind of new features it would have."

Comments (none posted)

LQ ISO Linux Download Site Reaches One Million Downloads

LinuxQuestions.org has announced the one Million ISO image download milestone. ""We're glad to be able to help users easily find a fast local mirror to download their favorite Linux distro from. Being able to hit 1,000,000 downloads in only a year was a great milestone", said LinuxQuestions.org founder Jeremy Garcia."

Full Story (comments: none)

Letter to Editor: Response to Florian Mueller's Release re: "Anti-IP"

From:		Jason Schultz <jason-AT-eff.org>
To:		lwn-AT-lwn.net
Subject:		Letter to Editor: Response to Florian Mueller's Release re: "Anti-IP"
Date:		Tue, 23 Aug 2005 13:36:07 -0700

On August 22, 2005, Florian Mueller distributed a press release (Linux trademark issue: EU anti-swpat campaigner supports Linus, is concerned over anti-IP positioning of open source) on behalf of nosoftwarepatents.com critiquing what he considered to be "anti-intellectual property positions" in the open source/free software movement. Among those criticized was EFF's defense of the BNETD project, which was sued in U.S. courts by Blizzard entertainment for creating an open source interoperable server that worked with Blizzard games. Mr. Mueller chides the EFF for rushing to the aid of "piracy-enablers" and making it look like software patent critics are "against copyright."

In the interest of correcting the record and full disclosure, we'd like to note two things. First, the Blizzard v. BNETD case is anything but "against copyright." The defense of the case is based entirely on the right to reverse engineer and create interoperable software embodied in the Fair Use Doctrine of U.S. copyright law under Title 17, Section 107 and Section 1201(f) of the Copyright Act. It is hard to understand how one could be "against copyright" when one is relying on the Copyright Act as the defense to Blizzard lawsuit.

Second, it is also worth noting that Mr. Mueller is anything but a disinterested party in this fight. In fact, he has extensive ties to Blizzard Entertainment and is listed as a contributor to numerous Blizzard games including Starcraft, Diablo, and WarCraft II: Tides of Darkness. While EFF applauds Mr. Mueller's work on software patent policy, his failure to disclose these facts and failure to accurately describe the Blizzard v. BNETD case must call into question his credibility on this issue.

Sincerely,

Jason Schultz
Staff Attorney
Electronic Frontier Foundation

Comments (27 posted)