Language Selection

English French German Italian Portuguese Spanish

Apache: Self Assessment and Security

Filed under
Server
OSS
  • The Apache® Software Foundation Announces Annual Report for 2019 Fiscal Year

    The Apache® Software Foundation (ASF), the all-volunteer developers, stewards, and incubators of more than 350 Open Source projects and initiatives, announced today the availability of the annual report for its 2019 fiscal year, which ended 30 April 2019.

  • Open Source at the ASF: A Year in Numbers

    332 active projects, 71 million lines of code changed, 7,000+ committers…

    The Apache Software Foundation has published its annual report for fiscal 2019. The hub of a sprawling, influential open source community, the ASF remains in rude good health, despite challenges this year including the need for “an outsized amount of effort” dealing with trademark infringements, and “some in the tech industry trying to exploit the goodwill earned by the larger Open Source community.”

    [...]

    The ASF names 10 “platinum” sponsors: AWS, Cloudera, Comcast, Facebook, Google, LeaseWeb, Microsoft, the Pineapple Fund, Tencent Cloud, and Verizon Media

  • Apache Software Foundation Is Worth $20 Billion

    Yes, Apache is worth $20 billion by its own valuation of the software it offers for free. But what price can you realistically put on open source code?

    If you only know the name Apache in connection with the web server then you are missing out on some interesting software. The Apache Software Foundation ASF, grew out of the Apache HTTP Server project in 1999 with the aim of furthering open source software. It provides a licence, the Apache licence, a decentralized governance and requires projects to be licensed to the ASF so that it can protect the intellectual property rights.

  • Apache Security Advisories Red Flag Wrong Versions in Patching Gaffe

    Researchers have pinpointed errors in two dozen Apache Struts security advisories, which warn users of vulnerabilities in the popular open-source web app development framework. They say that the security advisories listed incorrect versions impacted by the vulnerabilities.

    The concern from this research is that security administrators in companies using the actual impacted versions would incorrectly think that their versions weren’t affected – and would thus refrain from applying patches, said researchers with Synopsys who made the discovery, Thursday.

    “The real question here from this research is whether there remain unpatched versions of the newly disclosed versions in production scenarios,” Tim Mackey, principal security strategist for the Cybersecurity Research Center at Synopsys, told Threatpost. “In all cases, the Struts community had already issued patches for the vulnerabilities so the patches exist, it’s just a question of applying them.”

More in Tux Machines

A Simple Review of GNOME 3.34

That's all for now. As always, I love how simple and beautiful GNOME release announcement was. After testing in 3 days, I immediately like this version more than the previous one for the speed improvement and I hope Ubuntu and other distros adopt it soon. Ah, I forgot, regarding Ubuntu, good news for us: next October's Ubuntu Eoan Ermine will feature 3.34! Regarding GNOME, I don't know if this is coincidence or what, but this year's KDE Plasma is faster and smoother and so is GNOME. I think next GNOME 3.36 will be faster and better as well. Finally I would love to say thank you GNOME developers! You all did well in last 6 month. How do you think about 3.34? Let me know in the comment section! Read more Also: Internet Speed Indicator for GNOME 3.34

PulseAudio 13 Released with Dolby TrueHD and DTS-HD Master Audio Support, More

Released three months after the PulseAudio 12 series, PulseAudio 13 is here with support for Dolby TrueHD and DTS-HD Master Audio, support for the SteelSeries Arctis 5 USB headset, improved initial card profile selection for ALSA cards, as well as S/PDIF improvements for CMEDIA USB2.0 High-Speed True HD Audio. The PulseAudio 13 series also adds several new module arguments, including "max_latency_msec" for module-loopback, "stream_name" for module-rtp-send, and "avoid_resampling" for module-udev-detect and module-alsa-card, and no longer uses persistent Bluetooth card profile choices by default, recommending users to use A2DP by default. Read more

GNOME Firmware App Launches Officially to Make Updating Firmware Easier on Linux

Promising to make firmware updates easier to deploy, GNOME Firmware is a graphical application for power users that lets them check for new firmware for their devices, update or downgrade current firmware, as well as to install new firmware. GNOME Firmware is designed as an optional utility for GNOME users, as well as users of other desktop environments. "GNOME Firmware is designed to be a not-installed-by-default power-user tool to investigate, upgrade, downgrade and re install firmware," said Richard Hughes in a blog post. "GNOME Software will continue to be used for updates as before. Vendor helpdesks can ask users to install GNOME Firmware rather than getting them to look at command line output." Read more

Chuwi AeroBook review: Testing 5 Linux distributions

Chuwi is likely not a brand familiar to many, though the Chinese firm has established its abilities in producing budget-focused notebooks and tablets—essentially, attempting to provide a full Windows experience at a price point of an average Chromebook. Chuwi's upmarket Chuwi Aerobook could be the right price for an Ultrabook form factor at a $500 price point. Support for Linux on fundamentally consumer hardware has improved considerably over the last decade, largely preventing the need to perform extensive manual configuration. In 2019, minor compatibility issues—tiny papercut-like problems that are harder to actually solve—can pop up for specific hardware configurations. Depending on the return policies of your preferred marketplace, it might be impossible or cost-prohibitive to return a product like this if it doesn't work with Linux. Read more