Navigation

Language Selection

Search

OpenSource Software Bounty Hunters

Submitted by bigbearomaha on Friday 22nd of May 2009 01:25:51 PM

Let's all pitch in and make a list of the top ten apps/programs that are most needed for Linux/OpenSource and then everyone find a way to drop some cash into the hat. We'll use the cash to offer a 'bounty' for the programmer(s) who submit a working, usable solution for one of the top ten list.

We'll talk to the "Big Boys" out there and try to get them to participate as well. The more cash we put in the hat, the bigger the bounty we can offer.

This is done in science with the "X Prize", why can't we do it with software too?

If "Software Bounty Hunters" could put together even a couple thousand dollars, that might be enough to catch the interest of some of these wayward and bored programmers looking for a little scratch cash.

Heck, once the ball got rolling,the app could be made an OpenSource project in it's own right or maybe taken in by one of the "Big Boys" Like Novell, IBM, RedHat, who knows and added to their 'paid' roles for development. They do it all the time, buy up a little guys project because it beats out anything the Big boys can put out. Why innovate when you have the money to buy it? Right?

The winning entries to claim the cash would have to be tested and proven first. Make sure it meets GPL and all other legal gobbledygook standards.

It could be like "Americas Most Wanted" except it would be "OpenSources Most Wanted", and you can claim the reward for turning in the best software.

How much do we want new software, especially software we all say Linux/OpenSource needs but no one is actively developing it because no one is showing the green?

I would pony up for something like this, think if 200 people put up $10.00 each. We have a viable cash reward of $2,000 off the bat.

If more than 200 people put up $10 or more on an ongoing basis, we could build an ongoing sustained "bounty" base for new and upcoming challengers.

Something to think about anyway huh?

Isn't that Google's Summer of Code?

Submitted by drewgonbite on Friday 22nd of May 2009 02:07:24 PM.

I don't know the details, whether accepted applicants are paid or not, but isn't that along the lines of Google's "Summer of Code" project each year?

Or, I think you are suggesting a challenge such as "make a program that does X" and have a pot of money for the first person to build one (and meets specifications and usability)?

What will happen regarding support afterward? It's easier to build a program that does something, but to build a program that does something AND can be maintained without re-writing each time is slightly different.

I like the idea, though! Might even be able to get the big-boys to pitch in money (no strings attached of course).

~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-
Linux means Freedom, problem is most users don't know what it is, or how to use it.

summer of code

Submitted by bigbearomaha on Friday 22nd of May 2009 04:40:20 PM.

is a time limited session for development.

This is a year round thing that will be open to anyone who wants to code.

As for what happens afterward, well, if it's a solid apps and it works well in a niche that people respond well to, then I can see it being picked up by a big boy or a project of people coming to support it as many others have done in the past.

re: Bounty

Submitted by vonskippy on Friday 22nd of May 2009 06:18:11 PM.

Bounties never work. Mainly because the bounties never add up to more then pocket change - therefore you're always getting the equivalent to the lowest bidder working on the cheapest solution.

I agree, that does happen alot.

Submitted by bigbearomaha on Saturday 23rd of May 2009 02:04:22 AM.

But, I have seen things come together when no one expected them to also.

I just think it's worth a shot with a well organized group and a coordinated effort.

re: Optimists

Submitted by vonskippy on Saturday 23rd of May 2009 02:18:26 AM.

Optimists - they're like the guy who keeps trying to pound in the finishing nail with a 20 lb sledge (cause ya know, it will just take a "tap" that way) - it will never happen - but boy does it feel so good when they finally stop.

So good luck on the bounty project - I'm sure it's just a case of 5,392,843rd times the charm.

optimism - idealism

Submitted by bigbearomaha on Saturday 23rd of May 2009 04:15:41 AM.

it's what OpenSource and Linux are partly about.

Doing things the way they 'could' be, 'should' be done.

It's about setting goals and looking for the best in others.

Sure, there are a lot of pessimistic people who have had life kick them in the rear one too many times to be comfortable with looking on the bright side of things, but that doesn't mean people should stop trying to do better.

it just means we have to accept that there are some folks who who too self absorbed to be concerned about the group as a whole and people like that will have to be accounted for in the whole works.

and, really, thanks for the good wish, now all we need are the good people who believe it can happen if they put their minds to it.

More in Tux Machines

today's howtos

Graphics: VC4 and AMDVLK Driver

VC4 display, VC5 kernel submitted

For VC5, I renamed the kernel driver to “v3d” and submitted it to the kernel. Daniel Vetter came back right away with a bunch of useful feedback, and next week I’m resolving that feedback and continuing to work on the GMP support. On the vc4 front, I did the investigation of the HDL to determine that the OLED matrix applies before the gamma tables, so we can expose it in the DRM for Android’s color correction. Stefan was also interested in reworking his fencing patches to use syncobjs, so hopefully we can merge those and get DRM HWC support in mainline soon. I also pushed Gustavo’s patch for using the new core DRM infrastructure for async cursor updates. This doesn’t simplify our code much yet, but Boris has a series he’s working on that gets rid of a lot of custom vc4 display code by switching more code over to the new async support.
V3D DRM Driver Revised As It Works To Get Into The Mainline Kernel

Eric Anholt of Broadcom has sent out his revised patches for the "V3D" DRM driver, which up until last week was known as the VC5 DRM driver. As explained last week, the VC5 driver components are being renamed to V3D since it ends up supporting more than just VC5 with Broadcom VC6 hardware already being supported too. Eric is making preparations to get this VideoCore driver into the mainline Linux kernel and he will then also rename the VC5 Gallium3D driver to V3D Gallium3D.
AMDVLK Driver Gets Fixed For Rise of the Tomb Raider Using Application Profiles

With last week's release of Rise of the Tomb Raider on Linux ported by Feral Interactive, when it came to Radeon GPU support for this Vulkan-only Linux game port the Mesa RADV driver was supported while the official AMDVLK driver would lead to GPU hangs. That's now been fixed. With the latest AMDVLK/XGL source code as of today, the GPU hang issue for Rise of the Tomb Raider should now be resolved.

AMD Ryzen 7 2700X Linux Performance Boosted By Updated BIOS/AGESA

With last week's initial launch-day Linux benchmarks of the Ryzen 5 2600X / Ryzen 7 2700X some found the Linux performance to be lower than Windows. While the root cause is undetermined, a BIOS/AGESA update does appear to help the Linux performance significantly at least with the motherboard where I've been doing most of my tests with the Ryzen 7 2700X. Here are the latest benchmark numbers.

GNU: The GNU C Library 2.28 and Guix on Android

Glibc 2.28 Upstream Will Build/Run Cleanly On GNU Hurd

While Linux distributions are still migrating to Glibc 2.27, in the two months since the release changes have continued building up for what will eventually become the GNU C Library 2.28. The Glibc 2.28 work queued thus far isn't nearly as exciting as all the performance optimizations and more introduced with Glibc 2.27, but it's a start. Most notable at this point for Glibc 2.28 is that it will now build and run cleanly on GNU/Hurd without requiring any out-of-tree patches. There has been a ton of Hurd-related commits to Glibc over the past month.
Guix on Android!

Last year I thought to myself: since my phone is just a computer running an operating system called Android (or Replicant!), and that Android is based on a Linux kernel, it's just another foreign distribution I could install GNU Guix on, right? It turned out it was absolutely the case. Today I was reminded on IRC of my attempt last year at installing GNU Guix on my phone. Hence this blog post. I'll try to give you all the knowledge and commands required to install it on your own Android device.
GNU Guix Wrangled To Run On Android

The GNU Guix transactional package manager can be made to run on Android smartphones/tablets, but not without lots of hoops to jump through first.

Latest News

Cinnamon 3.8 Desktop Environment Released with Python 3 Support, Improvements

Scheduled to ship with the upcoming Linux Mint 19 "Tara" operating system series this summer, the Cinnamon 3.8 desktop environment is now available for download and it's a major release that brings numerous improvements, new features, and lots of Python 3 ports for a bunch of components. Among the components that got ported to Python 3 in the Cinnamon 3.8 release, we can mention cinnamon-settings, cinnamon-menu-editor, cinnamon-desktop-editor, cinnamon-settings-users, melange, background slideshow, the switch editor and screensaver lock dialogs, desktop file generation scripts, as well as all the utilities.

Canonical Releases Kernel Security Updates for Ubuntu 17.10 and Ubuntu 16.04 LTS

For Ubuntu 17.10 (Artful Aardvark) users, today's security update addresses a bug (CVE-2018-8043) in Linux kernel's Broadcom UniMAC MDIO bus controller driver, which improperly validated device resources, allowing a local attacker to crash the vulnerable system by causing a denial of service (DoS attack). For Ubuntu 16.04 LTS (Xenial Xerus) users, the security patch fixes a buffer overread vulnerability (CVE-2017-13305) in Linux kernel's keyring subsystem and an information disclosure vulnerability (CVE-2018-5750) in the SMBus driver for ACPI Embedded Controllers. Both issues could allow a local attacker to expose sensitive information.

Security: Updates, Reproducible Builds, Match.com and More

Security updates for Tuesday
Reproducible Builds: Weekly report #156
A Match.com glitch reactivated a bunch of old profiles, raising concerns about user data

A Match Group spokesperson confirmed that a “limited number” of old accounts had been accidentally reactivated recently and that any account affected received a password reset. Match.com’s current privacy statement, which was last updated in 2016, says that the company can “retain certain information associated with your account” even after you close it. But that Match Group spokesperson also told The Verge that the company plans to roll out a new privacy policy “in the next month or so,” in order to comply with the EU’s General Data Protection Regulation (GDPR); under the new policy, all those years-old accounts will be deleted. The Verge has requested clarification on which accounts will qualify for deletion, and what “deletion” will specifically entail, but has not received a response as of press time.
New hacks siphon private cryptocurrency keys from airgapped wallets

Like most of the other attacks developed by Ben-Gurion University professor Mordechai Guri and his colleagues, the currency wallet exploits start with the already significant assumption that a device has already been thoroughly compromised by malware. Still, the research is significant because it shows that even when devices are airgapped—meaning they aren't connected to any other devices to prevent the leaking of highly sensitive data—attackers may still successfully exfiltrate the information. Past papers have defeated airgaps using a wide array of techniques, including electromagnetic emissions from USB devices, radio signals from a computer's video card, infrared capabilities in surveillance cameras, and sounds produced by hard drives.
New hacker group targets US health-care industry, researchers say

The group, which Symantec has named “Orangeworm,” has been installing backdoors in large international corporations based in the U.S., Europe and Asia that operate in the health-care sector.

Among its victims are health-care providers and pharmaceutical companies, as well as IT companies and equipment manufacturers that work for health organizations.

Syndication & Social Media

Follow the site via RSS/Twitter.

Full RSS:

RSS feeds for particular topics are also available

Twitter:

Content (where original) is available under CC-BY-SA, copyrighted by original author/s.

Tux Machines is proud to be hosted by

Support Tux Machines

Help Support TM
Wall of Appreciation

Linux Gizmos

Linux Today

LinuxSecurity.com Advisories

More on Tux Machines: About ● Gallery ● Forum ● Blogs ● Search ● News ● RSS Feed

Part of Bytes Media ● Sister sites below.

Linux.com

DW Latest Releases

Phoronix

Content available under CC-BY-SA