Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).

×
Open Source

Linux 4.0 Getting No-Reboot Patching 125

Posted by Soulskill
from the post-your-uptimes dept.
An anonymous reader writes: ZDNet reports that the latest changes to the Linux kernel include the ability to apply patches without requiring a reboot. From the article: "Red Hat and SUSE both started working on their own purely open-source means of giving Linux the ability to keep running even while critical patches were being installed. Red Hat's program was named kpatch, while SUSE' is named kGraft. ... At the Linux Plumbers Conference in October 2014, the two groups got together and started work on a way to patch Linux without rebooting that combines the best of both programs. Essentially, what they ended up doing was putting both kpatch and kGraft in the 4.0 Linux kernel." Note: "Simply having the code in there is just the start. Your Linux distribution will have to support it with patches that can make use of it."
Programming

Ask Slashdot: Is There a Web Development Linux Distro? 136

Posted by timothy
from the best-of-brood dept.
Qbertino writes I've been a linux user for more than 15 years now and in the last ten I've done basically all my non-trivial web development on Linux. SuSE in the early days, after that either Debian or, more recently, Ubuntu, if I want something to click on. What really bugs me is, that every time I make a new setup, either as a virtual machine, on concrete hardware or a remote host, I go through 1-2 hours of getting the basics of a web-centric system up and running. That includes setting PHP config options to usable things, setting up vhosts on Apache (always an adventure), configging mod_rewrite, installing extra CLI stuff like Emacs (yeah, I'm from that camp) walking through the basic 10-15 steps of setting up MySQL or some other DB, etc. ... You get the picture.

What has me wondering is this: Since Linux is deeply entrenched in the field of server-side web, with LAMP being it's powerhouse, I was wondering if there aren't any distros that cover exactly this sort of thing. You know, automatic allocation of memory in the runtime settings, ready-made Apache http/https/sftp/ftp setup, PHP all ready to go, etc. What are your experiences and is there something that covers this? Would you think there's a need for this sort of thing and would you base it of Debian or something else? If you do web-dev, how do you do it? Prepareted scripts for setup? Anything else? ... Ideas, unkown LAMP distros and opinions please."
Open Source

Big Names Dominate Open Source Funding 32

Posted by Soulskill
from the all-about-the-open-source-benjamins dept.
jones_supa writes: Network World's analysis of publicly listed sponsors of 36 prominent open-source non-profits and foundations reveals that the lion's share of financial support for open-source groups comes from a familiar set of names. Google was the biggest supporter, appearing on the sponsor lists of eight of the 36 groups analyzed. Four companies – Canonical, SUSE, HP and VMware – supported five groups each, and seven others (Nokia, Oracle, Cisco, IBM, Dell, Intel and NEC) supported four. For its part, Red Hat supports three groups (Linux Foundation, Creative Commons and the Open Virtualization Alliance).

It's tough to get more than a general sense of how much money gets contributed to which foundations by which companies – however, the numbers aren't large by the standards of the big contributors. The average annual revenue for the open-source organizations considered in the analysis was $4.36 million, and that number was skewed by the $27 million taken in by the Wikimedia Foundation (whose interests range far beyond OSS development) and the $17 million posted by Linux Foundation.
SuSE

A Brilliant Mind: SUSE's Kernel Guru Speaks 61

Posted by timothy
from the celebrities-are-the-ones-you-celebrate dept.
An anonymous reader writes The man who in every sense sits at the nerve centre of SUSE Linux has no airs about him. At 38, Vojtch Pavlík is disarmingly frank and often seems a bit embarrassed to talk about his achievements, which are many and varied. He is every bit a nerd, but can be candid, though precise. As director of SUSE Labs, it would be no exaggeration to call him the company's kernel guru. Both recent innovations that have come from SUSE — patching a live kernel, technology called kGraft, and creating a means for booting openSUSE on machines locked down with secure boot, have been his babies.
Open Source

OpenSUSE 13.2 Released 42

Posted by timothy
from the lizards-everywhere-it's-chaos dept.
MasterPatricko writes The latest version of the openSUSE distribution, 13.2, has been officially released. Key features include integrated support for filesystem snapshots, enabled by a switch to btrfs as the default file system, a new network manager (Wicked), as well as the usual version updates. This release includes seven supported desktop environments (KDE 4.14, GNOME 3.14, Xfce, LXDE, Enlightenment 19, Mate and Awesome) and even preview packages of Plasma 5.1, all presented with a unified openSUSE theme. Download LiveUSB and DVD images now from software.opensuse.org/132.
Open Source

OpenSUSE Factory To Merge With Tumbleweed 24

Posted by samzenpus
from the two-in-one dept.
sfcrazy writes Factory and Tumbleweed will merge to become a single release. The release will follow the development cycle of Factory but take the more appealing name, Tumbleweed. Commenting on the new development Greg Kroah-Hartman said, “The changes to the Factory release model have changed it from being an unstable development codebase into the type of rolling release I set out to create when starting openSUSE Tumbleweed. I’m very happy to see these two rolling releases coming together under the name Tumbleweed, and am looking forward to watching how it develops in the future.” Factory won't disappear; It will become a "development project" for creating the "user-ready" Tumbleweed."
Businesses

New Global Plan Would Crack Down On Corporate Tax Avoidance 324

Posted by Soulskill
from the bring-our-benjamins-home dept.
HughPickens.com writes: Reuters reports that plans for a major rewriting of international tax rules have been unveiled by the Organisation for Economic Co-operation and Development (OECD) that could eliminate structures that have allowed companies like Google and Amazon to shave billions of dollars off their tax bills. For more than 50 years, the OECD's work on international taxation has been focused on ensuring companies are not taxed twice on the same profits (and thereby hampering trade and limit global growth). But companies have been using such treaties to ensure profits are not taxed anywhere. A Reuters investigation last year found that three quarters of the 50 biggest U.S. technology companies channeled revenues from European sales into low tax jurisdictions like Ireland and Switzerland, rather than reporting them nationally.

For example, search giant Google takes advantage of tax treaties to channel more than $8 billion in untaxed profits out of Europe and Asia each year and into a subsidiary that is tax resident in Bermuda, which has no income tax. "We are putting an end to double non-taxation," says OECD head of tax Pascal Saint-Amans.For the recommendations to actually become binding, countries will have to encode them in their domestic laws or amend their bilateral tax treaties. Even if they do pass, these changes are likely 5-10 years away from going into effect.
Speaking of international corporate business: U.K. mainframe company Micro Focus announced it will buy Attachmate, which includes Novell and SUSE.
Security

Heartbleed Disclosure Timeline Revealed 62

Posted by samzenpus
from the when-did-you-know dept.
bennyboy64 (1437419) writes "Ever since the Heartbleed flaw in OpenSSL was made public there have been various questions about who knew what and when. The Sydney Morning Herald has done some analysis of public mailing lists and talked to those involved with disclosing the bug to get the bottom of it. The newspaper finds that Google discovered Heartbleed on or before March 21 and notified OpenSSL on April 1. Other key dates include Finnish security testing firm Codenomicon discovering the flaw independently of Google at 23:30 PDT, April 3. SuSE, Debian, FreeBSD and AltLinux all got a heads up from Red Hat about the flaw in the early hours of April 7 — a few hours before it was made public. Ubuntu, Gentoo and Chromium attempted to get a heads up by responding to an email with few details about it but didn't, as the guy at Red Hat sending the disclosure messages out in India went to bed. By the time he woke up, Codenomicon had reported the bug to OpenSSL."
Security

OpenSSL Bug Allows Attackers To Read Memory In 64k Chunks 303

Posted by Unknown Lamer
from the check-your-bounds dept.
Bismillah (993337) writes "A potentially very serious bug in OpenSSL 1.0.1 and 1.0.2 beta has been discovered that can leak just about any information, from keys to content. Better yet, it appears to have been introduced in 2011, and known since March 2012." Quoting the security advisory: "A missing bounds check in the handling of the TLS heartbeat extension can be used to reveal up to 64k of memory to a connected client or server." The attack may be repeated and it appears trivial to acquire the host's private key. If you were running a vulnerable release, it is even suggested that you go as far as revoking all of your keys. Distributions using OpenSSL 0.9.8 are not vulnerable (Debian Squeeze vintage). Debian Wheezy, Ubuntu 12.04.4, Centos 6.5, Fedora 18, SuSE 12.2, OpenBSD 5.4, FreeBSD 8.4, and NetBSD 5.0.2 and all following releases are vulnerable. OpenSSL released 1.0.1g today addressing the vulnerability. Debian's fix is in incoming and should hit mirrors soon, Fedora is having some trouble applying their patches, but a workaround patch to the package .spec (disabling heartbeats) is available for immediate application.
Open Source

Linus Torvalds Suspends Key Linux Developer 641

Posted by Soulskill
from the arguing-about-penguins dept.
alphadogg writes: "An argument between developers of some of the most basic parts of Linux turned heated this week, resulting in a prominent Red Hat employee and code contributor being banned from working on the Linux kernel. Kay Sievers, a well-known open-source software engineer, is a key developer of systemd, a system management framework for Linux-based operating systems. Systemd is currently used by several prominent Linux distributions, including two of the most prominent enterprise distros, Red Hat and SUSE. It was recently announced that Ubuntu would adopt systemd in future versions as well. Sievers was banned by kernel maintainer Linus Torvalds on Wednesday for failing to address an issue that caused systemd to interact with the Linux kernel in negative ways."
Google

Google Cuts Prices On Enterprise Cloud Services 43

Posted by Unknown Lamer
from the first-one-to-zero-...-wins dept.
itwbennett (1594911) writes "Google has made sizable price cuts across its storage, compute and BigQuery analysis services (e.g., Google BigQuery on-demand prices have been reduced by up to 85%). Google has also introduced a number of new services, including managed virtual machines, an extension of BigQuery for live data and the ability to run copies of the enterprise-ready Red Hat Enterprise Linux, Suse Linux and Windows Server 2008 R2. Collectively, these announcements show that Google may be coming to understand that 'they really need to step it up' in the market for cloud computing services, said John Rymer, Forrester Research's principal analyst covering application development and delivery."
Businesses

Former Second Largest Linux Distributor Red Flag Software Has Shut Down 92

Posted by Unknown Lamer
from the linux-defeats-linux dept.
cold fjord writes with news that Red Flag Software, makers of China's Red Hat derivative Red Flag Linux, has halted operations. From the article: "Once the world's second-largest Linux distributor, Red Flag Software has shuttered reportedly due to mismanagement and after owing employees months in unpaid wages. China's state-funded answer to global software giants like Microsoft ... filed for liquidation over the weekend and terminated all employee contracts. Set up in late-1999 amid the dot-com boom, Red Flag was touted as an alternative to Windows ... It thrived in the early days, inking deals with partners such as Oracle and Dell which products were certified to support and shipped with Red Flag Software. The Beijing-based vendor was primarily funded by the Chinese Academy of Sciences' Institute of Software Research, and later received additional funding from state-owned Shanghai NewMargin Venture Capital and the Ministry of Information Industry's VC arm ... 'A lack of brand awareness and sustained investments, coupled with the rise of rivals including Red Hat Enterprise Linux and SuSE Linux Enterprise, led to its downfall,' Eric Peng, Beijing-based research manager with IDC, said ... Peng noted that, during its hey days, Red Flag had enjoyed high adoption among government agencies, state-owned organizations, and schools.""
SuSE

OpenSUSE Forums Defaced, Email Addresses Leaked 82

Posted by Unknown Lamer
from the should've-used-slash dept.
sfcrazy writes "The openSUSE Forums were hijacked yesterday. An alleged Pakistani hacker who goes by handle H4x0r HuSsY reportedly exploited a vulnerability in the vBulletin 4.2.1 software SuSE uses to host the forum. vBulletin is a proprietary forum software. The openSUSE team notes that user passwords were not compromised. 'Credentials for your openSUSE login are not saved in our application databases as we use a single-sign-on system (Access Manager from NetIQ) for all our services. This is a completely separate system and it has not been compromised by this crack. What the cracker reported as compromised passwords where indeed random, automatically set strings that are in no way connected to your real password.' It's shocking to learn that SUSE/openSUSE are using proprietary forum software vBulleting as well as proprietary single sign on solution." SuSE was using vBulletin 4.x which has no known fix for the security hole, and they are leaving the forums offline for now. It seems likely they'll be upgrading to the 5.x series.
Media

Run Netflix On OpenSUSE 128

Posted by timothy
from the pulling-pixels dept.
sfcrazy writes "Ironically while Netflix's infrastructure runs on Linux and Open Source technologies, the service doesn't support Linux, the platform. Netflix is available for Mac, Windows, iOS, Android and Chrome OS but not for desktop Linux. One of the reasons could be that Netflix still uses Microsoft's Silverlight which is not supported on Linux. However Linux users have managed to get it to work on their distros. Now openSUSE users can also run Netflix using Pipelight."
Software

Docker 0.7 Runs On All Linux Distributions 88

Posted by Soulskill
from the go-big-or-go-home dept.
rjmarvin writes "Docker 0.7 was released today, with 7 major new features including support to run on all Linux distributions. No longer capable solely on running on Debian and Ubuntu Linux, Docker 0.7 adds support for distributions such as Red Hat, SUSE, Gentoo and Arch. From the announcement: 'A key feature of Docker is the ability to create many copies of the same base filesystem almost instantly. Under the hood Docker makes heavy use of AUFS by Junjiro R. Okajima as a copy-on-write storage mechanism. AUFS is an amazing piece of software and at this point it’s safe to say that it has safely copied billions of containers over the last few years, a great many of them in critical production environments. Unfortunately, AUFS is not part of the standard linux kernel and it’s unclear when it will be merged. This has prevented docker from being available on all Linux systems. Docker 0.7 solves this problem by introducing a storage driver API, and shipping with several drivers. Currently 3 drivers are available: AUFS, VFS (which uses simple directories and copy) and DEVICEMAPPER, developed in collaboration with Alex Larsson and the talented team at Red Hat, which uses an advanced variation of LVM snapshots to implement copy-on-write. An experimental BTRFS driver is also being developed, with even more coming soon: ZFS, Gluster, Ceph, etc. When the docker daemon is started it will automatically select a suitable driver depending on its capabilities.'"
Data Storage

OpenSUSE May Be First Major Distro To Adopt Btrfs By Default 104

Posted by timothy
from the slippery dept.
An anonymous reader writes "The openSUSE Linux distribution looks like it may be the first major Linux distribution to ship the Btrfs file-system by default. The openSUSE 13.1 release is due out in November and is still using EXT4 by default, but after that the developers are looking at having openSUSE using Btrfs by default on new installations. The Btrfs features to be enabled would be the ones the developers feel are data-safe."
Linux

The Linux Foundation Releases Annual Linux Development Report 101

Posted by samzenpus
from the naming-names dept.
darthcamaro writes "The Linux Foundation's Who Writes Linux report (sign up required) is now out and after 22 yrs leading Linux, Linux creator Linus Torvalds has fallen out of the list of top 100 developers in terms of code contributions. He currently ranks 101st for number of patches generated from the Linux 3.3 to the Linux 3.10 kernel releases." Read below for a few highlights from the report.
SuSE

SUSE's LibreOffice Core Team Moves To Collabora 72

Posted by Soulskill
from the meet-the-new-support-same-as-the-old-support dept.
An anonymous reader writes "Michael Meeks has announced that the core of SUSE's LibreOffice team is moving over to Collabora, which will now be providing commercial LibreOffice support. 'It seems to me that the ability to say "no" to profitable but peripheral business in order to strategically focus the company is a really important management task. In the final analysis I'm convinced that this is the right business decision for SUSE. It will allow Collabora's Productivity division to focus exclusively on driving LibreOffice into Windows, Mac and Consulting markets that are peripheral to SUSE. It will also retain the core of the existing skill base for the benefit of SUSE's customers, and the wider LibreOffice community, of which openSUSE is an important part.'"
Cloud

Linux Vendors Push For Open-Source In Hybrid Datacenter Clouds 30

Posted by Soulskill
from the works-better-than-pushing-fresh-mangoes dept.
Nerval's Lobster writes "Linux vendors Red Hat and SUSE are pushing to make sure Linux-based virtual machines are an important part of datacenter-based hybrid clouds. The two are taking significantly different tacks toward the same destination, however. SUSE is using the visibility and cloud hype of VMware by extending its partnership with the virtualization provider to promote its SUSE Linux Enterprise Server for VMware as an alternative operating system for virtual machines running on VMware's vCloud Hybrid Service. Red Hat is happy to include VMware in its plans, but isn't limiting itself either to VMware-based clouds or, in fact, the idea that a Linux vendor has to tag along with a cloud- or virtualization developer to find its place in mixed infrastructures. 'We do not buy into the premise that a private or a hybrid platform based on one vendor's technologies and products is the answer,' wrote Bryan Che, general manager of Red Hat's Cloud Business Unit. More than 25 percent of customers want clouds or datacenter infrastructures using virtualization products from more than one vendor, according to a buyers' guide published in August by market researcher IDC."
Linux Business

Red Hat CEO: Bring On the Clones 182

Posted by timothy
from the canonical-source-of-red-hat dept.
An anonymous reader writes "Best Buy and Barnes and Noble have a problem with showrooming — shoppers checking out the merchandise in their stores and then proceeding to order the goods at a discounted prices online. And Red Hat might have a similar problem with people (not just college kids and software professionals boning up on their skills at home, either) using the free-as-in-beer CentOS rather than licensing Red Hat Enterprise Linux and paying support fees. But according to CEO Jim Whitehurst, Red Hat's competitive position may actually be helped by CentOS in the same way that counterfeit Windows products sold on the streets in the Far East may have helped Microsoft — by cementing their position as the technology standard, in a marketplace that also includes entrants from SuSE, Debian, Oracle, and Ubuntu, just among Linux-based entrants. Who does Whitehurst consider to be Red Hat's most direct threat? VMWare."