Language Selection

English French German Italian Portuguese Spanish

Tension between OpenSolaris derivatives

Filed under
OS

There are currently two OpenSolaris distributions: Sun Microsystem's Solaris Express Community Release, and German developer Joerg Schilling's SchilliX. While Sun's version combines the OpenSolaris core with extra proprietary code to build a complete operating system, SchilliX is completely based on open source software.

Schilling made it clear on an OpenSolaris mailing list last week how he felt about differences between the two.

The developer said he had complained to Sun about the fact the OpenSolaris code could not be compiled without first pre-installing Sun proprietary software.

Schilling said technically there was only one OpenSolaris distribution -- his own -- and so it could even be called the reference distribution.
"If you are talking about properties of OpenSolaris," he said, "I encourage you to talk about SchilliX."

The developer further said he thought discussion on the list should not focus on features found only in Sun's version but not in the OpenSolaris code itself.

"Do not confuse OpenSolaris with the Sun Solaris distribution," he wrote. "This is an OpenSolaris mailing list."

"Making conclusions about OpenSolaris from observations done on Sun Solaris is not OK, because Sun Solaris currently differs more from OpenSolaris than SchilliX does."

However Schilling's comments drew immediate fire from Sun developers.

"While I appreciate the work that has gone into SchilliX (and it is quite a feat)," wrote Solaris kernel developer Eric Schrock, "I don't think we should be starting a distribution war on day 11 of OpenSolaris."

Schrock said developers should not equate either of the existing OpenSolaris derivatives with the OpenSolaris code, and that conversation between all versions and about any aspect of OpenSolaris should be encouraged.

"Just because it is not directly applicable to the OpenSolaris code or the advancement of SchilliX does not make it an unproductive conversation for the OpenSolaris community," he said.

A Sun developer, Eric Boutilier, said he strongly felt most people interested in OpenSolaris should be directed to Sun's Solaris Express distribution, as they would want a free and full-featured system with desktop environments like GNOME and KDE. SchilliX is currently unable to provide such functionality.

Source.

More in Tux Machines

Games: Ostriv, Back to Bed, EVERSPACE, Hiveswap: Act 1

Openwashing and Microsoft FUD

BlueBorne Vulnerability Is Patched in All Supported Ubuntu Releases, Update Now

Canonical released today new kernel updates for all of its supported Ubuntu Linux releases, patching recently discovered security vulnerabilities, including the infamous BlueBorne that exposes billions of Bluetooth devices. The BlueBorne vulnerability (CVE-2017-1000251) appears to affect all supported Ubuntu versions, including Ubuntu 17.04 (Zesty Zapus), Ubuntu 16.04 LTS (Xenial Xerus) up to 16.04.3, Ubuntu 14.04 LTS (Trusty Tahr) up to 14.04.5, and Ubuntu 12.04 LTS (Precise Pangolin) up to 12.04.5. Read more

Security: Updates, 2017 Linux Security Summit, Software Updates for Embedded Linux and More

  • Security updates for Tuesday
  • The 2017 Linux Security Summit
    The past Thursday and Friday was the 2017 Linux Security Summit, and once again I think it was a great success. A round of thanks to James Morris for leading the effort, the program committee for selecting a solid set of talks (we saw a big increase in submissions this year), the presenters, the attendees, the Linux Foundation, and our sponsor - thank you all! Unfortunately we don't have recordings of the talks, but I've included my notes on each of the presentations below. I've also included links to the slides, but not all of the slides were available at the time of writing; check the LSS 2017 slide archive for updates.
  • Key Considerations for Software Updates for Embedded Linux and IoT
    The Mirai botnet attack that enslaved poorly secured connected embedded devices is yet another tangible example of the importance of security before bringing your embedded devices online. A new strain of Mirai has caused network outages to about a million Deutsche Telekom customers due to poorly secured routers. Many of these embedded devices run a variant of embedded Linux; typically, the distribution size is around 16MB today. Unfortunately, the Linux kernel, although very widely used, is far from immune to critical security vulnerabilities as well. In fact, in a presentation at Linux Security Summit 2016, Kees Cook highlighted two examples of critical security vulnerabilities in the Linux kernel: one being present in kernel versions from 2.6.1 all the way to 3.15, the other from 3.4 to 3.14. He also showed that a myriad of high severity vulnerabilities are continuously being found and addressed—more than 30 in his data set.
  • APNIC-sponsored proposal could vastly improve DNS resilience against DDoS