Language Selection

English French German Italian Portuguese Spanish

OSS

Nest/OpenThread

Filed under
OSS

Why the enterprise fell in love with open source

Filed under
OSS

Open source is becoming one of the most important sectors in IT. Not only does it underpin some of the most successful technology on the planet, it's increasingly bleeding into other areas of the enterprise, both in and out of the IT department.

GitHub's contribution to the rise of the open source revolution is in providing a platform for people to upload code for others to share and adapt freely. Its vice-president of product management, Kakul Srivastava, spoke to IT Pro to find out more about how open source is finding a home in the enterprise.

Read more

CVE-2016-3710: QEMU: out-of-bounds memory access issue

Filed under
Red Hat
OSS

Quick Emulator (aka QEMU) is an open source systems emulator. It emulates various processors and their accompanying hardware peripherals like disc, serial ports, NIC et al. A serious vulnerability of out-of-bounds r/w access through the Video Graphics Array (VGA) emulator was discovered and reported by Mr Wei Xiao and Qinghao Tang of Marvel Team at 360.cn Inc. This vulnerability is formally known as Dark Portal. In this post we'll see how Dark Portal works and its mitigation.

VGA is a hardware component primarily responsible for drawing content on a display device. This content could be text or images at various resolutions. The VGA controller comes with its own processor (GPU) and its own RAM. Size of this RAM varies from device to device. The VGA emulator in QEMU comes with the default memory of 16 MB. The systems' CPU maps this memory, or parts of it, to supply graphical data to the GPU.

Read more

Leftovers: OSS

Filed under
OSS
  • I am your user. Why do you hate me?

    Leslie is a developer engagement strategist who works at Red Hat and sits on several key nonprofit boards. In addition to running her own company, Donna also sits on many boards and does much of the thankless work to put on excellent open source events in Australia. They each bring over a decade of experience with open source to their work, and their upcoming talk at OSCON titled, I am your user—why do you hate me?

  • DIY : Open Source Software for your very own IoT
  • Nominations for the 2016 New Zealand Open Source Awards open

    Nominations for the 2016 New Zealand Open Source Awards are now open.

  • Four Ways for Developers To Open Source Their Next Big Idea

    The open source movement is transforming technology in many respects, and its fundamental stance toward collaboration can be used to transform the inspiration process for developers as well.

  • Amazon open-sources its own deep learning software, DSSTNE

    Amazon has suddenly made a remarkable entrance into the world of open-source software for deep learning, a type of artificial intelligence. Yesterday the e-commerce company unceremoniously released a library called DSSTNE on GitHub under an open-source Apache license.

    Deep learning involves training artificial neural networks on lots of data and then getting them to make inferences about new data. Several technology companies are doing it — heck, it even got some air time recently in “Silicon Valley.” And there are already several other deep learning frameworks to choose from, including Google’s TensorFlow.

  • CoreOS Fest: Runway Provides a New Model Distributed Systems Design

    Ongaro explained that Runway is a new tool for distributed systems design. He noted that distributed systems are hard, they are hard to understand and hard to communicate about.

  • Watch Live Keynote From Mark Shuttleworth at Apache Big Data Today

    ApacheCon is the annual conference of The Apache Software Foundation. The Apache and open source community will gather May 11-13 to learn about and collaborate on the technologies and projects driving the future of open source, web technologies and cloud computing.

  • You Can Help Build the Future of Firefox with the New Test Pilot Program

    When building features for hundreds of millions of Firefox users worldwide, it’s important to get them right. To help figure out which features should ship and how they should work, we created the new Test Pilot program. Test Pilot is a way for you to try out experimental features and let us know what you think. You can turn them on and off at any time, and you’ll always know what information you’re sharing to help us understand how these features are used. Of course, you can also use Test Pilot to provide feedback and suggestions to the teams behind each new feature.

    As you’re experimenting with new features, you might experience some bugs or lose some of the polish from the general Firefox release, so Test Pilot allows you to easily enable or disable features at any time.

    Feedback and data from Test Pilot will help determine which features ultimately end up in a Firefox release for all to enjoy.

  • Intel Debuts CIAO for OpenStack Cloud Orchestration [VIDEO]

    The new Go based project is s called CIAO, Cloud Integrated Advanced Orchestrator and is a potential replacement or optional component for existing orchestration in OpenStack

  • Tech spending priorities to shift with DevOps transition

    IT organizations should get ready to cede some budgetary control to business units, as software -- and software developers -- become key agents of commerce.

  • On the Rise: Six Unsung Apache Big Data Projects

    Countless organizations around the world are now working with data sets so large and complex that traditional data processing applications can no longer drive optimized analytics and insights. That’s the problem that the new wave of Big Data applications aims to solve, and the Apache Software Foundation (ASF) has recently graduated a slew of interesting open source Big Data projects to Top-Level status. That means that they will get active development and strong community support.

  • An introduction to data processing with Cassandra and Spark

    So, what is Apache Cassandra? A distributed OLTP database built for high availability and linear scalability. When people ask what Cassandra is used for, think about the type of system you want close to the customer. This is ultimately the system that our users interact with. Applications that must always be available: product catalogs, IoT, medical systems, and mobile applications. In these categories downtime can mean loss of revenue or even more dire outcomes depending on your specific use case. Netflix was one of the earliest adopters of this project, which was open sourced in 2008, and their contributions, along with successes, put it on the radar of the masses.

  • Italian Military to Save Up to 29 Million Euro by Migrating to LibreOffice

    Following on last year's bold announcement that they will attempt to migrate from proprietary Microsoft Office products to an open-source alternative like LibreOffice, Italy's Ministry of Defense now expects to save up to 29 million Euro with this move.

  • How BSD was built, and how it lost the lead to Linux

    BSD has been eclipsed by the popularity of Linux over the years. But how did BSD get started? And why did Linux overtake and surpass it? Salon has a detailed article that charts the creation of BSD, and why it eventually lost out to Linux.

Openwashing

Filed under
OSS

Estonian finance ministry seeks OSS service provider

Filed under
OSS

The Estonian Ministry of Finance is looking for a service provider to host, maintain and support its open-source-based portal infrastructure. The framework contract runs for three years and has an estimated value of 300,000 Euro.

Read more

OSS in the Back End

Filed under
Server
OSS
  • On the Multi-Cloud Future

    Do you run multiple operating systems? It's not uncommon for the answer to that question to be yes. You may run Linux on a laptop and Android on a phone, for example. In the same fashion, many experts surveying the cloud computing scene predict that the growing trend toward hybrid cloud deployments will make it extremely popular for enterprises to run many cloud platforms and tools concurrently.

  • The Open Cloud, Demystified

    In this post, you'll find several of the best free guides to popular cloud-centric tools, ranging from ownCloud to OpenStack, that can help boost your efficiency. We have updated this collection of documentation with a valuable overall guide to the open cloud platforms that you can choose from, and some brand new guides.

  • Bexar, Mitaka, Newton: Behind OpenStack release names

    Mitaka is not only the latest release of the OpenStack cloud infrastructure service, it’s also a city in Japan.

  • OpenStack Mitaka aims to make open source easy-peasy

    The newest release of the OpenStack cloud infrastructure is designed to be easier to install, easier to use and easier to manage.

    That could be big news for CIOs. The cloud platform is delivering flexibility and processing power at lower cost to big-name companies such as AT&T and eBay. But calling for lots of installation, maintenance and development support, OpenStack has come to be known almost as much for its DIY-style complexity as it has for its innovative potential.

  • OpenStack, SDN, and Container Networking Power Enterprise Cloud at PayPal

    This architecture has four layers. The Infrastructure & Operations layer at the bottom provides computer, storage, and network and is powered by OpenStack. On top of that is the Platform-as-a-Service (PaaS) layer -- the core technology and analytics platform that provides services like messaging, logging, monitoring, analytics, etc. to be leveraged across all PayPal applications. On top of that is the Payments Operating System (POS), which is the foundation for all payments-related microservices and which serves all customer-facing experience through mobile and web apps. Finally, the top layer comprises customer-facing applications.

  • Lenovo's Highly-Available OpenStack Enterprise Cloud Platform Practice with EasyStack

    In 2015, the Chinese IT superpower Lenovo chose EasyStack to build an OpenStack-based enterprise cloud platform to carry out their "Internet Strategy". In six months, this platform has evolved into an enterprise-level OpenStack production environment of over 3000 cores with data growth peaking at 10TB/day. It is expected that by the end of 2016, 20% of the IT system will be migrated onto the Cloud.

  • SDN, NFV Can Make You Money
  • NEC/NetCracker’s NFV Platform Dives Into DevOps

    In a world of plentiful OpenStack offerings and NFV orchestrators, NEC/Netcracker looks to differentiate by “filling the gaps” in NFV, for example by providing integration with operations support systems (OSSs) and business support systems (BSSs). The platform also promises to deliver tools that enable technology vendors and service providers to collaborate on application and service design using a DevOps model.

Milestones in Free and Open Source Software History, 1969-2015

Filed under
GNU
Linux
OSS

In the fall of 1983 Richard Stallman, a veteran of MIT's AI Lab who was unhappy with the increasingly closed nature of software source code, announced the GNU project. His goal was to build a clone of Unix using only code that could be freely shared and would always be publicly available. Many parts of the GNU operating system, which Stallman began building in early 1984, remain central to the free and open source software ecosystem today.

Read more

Leftovers: OSS

Filed under
OSS
  • Open source skills in high demand but finding talented staff not easy

    Demand for open source skills is growing, according to the 2016 Open Source Jobs Report based on research conducted by the Linux Foundation and tech career recruiter Dice.

    Hiring managers at various companies revealed that 59 per cent will recruit people with open source skills in the next six months as demand increases for those with the technical know-how to get digital projects up and running.

  • Zillow Eschews Open Source for Proprietary Splunk

    As homeowners and realtors track the dynamic U.S. housing market, platforms like the online real estate database Zillow are seeing surges in traffic as buyers and sellers keep tabs on which properties are moving and when a seller might be ready to drop the asking price.

    To keep up with demand for its services and gauge customer preferences, Zillow Group Inc. (NASDAQ: Z) said this week it is standardizing on Splunk Inc.’s real-time “operational intelligence” platform. Seattle-based Zillow said the ongoing shift to Splunk (NASDAQ: SPLK) includes its mobile as well as web-based real-estate services.

  • Goldman Sachs Talks Open Source

    As you might expect for someone who is constantly surrounded by bankers, Don Duet uses the term “intellectual property” a lot — but it’s good to know that Wall Street is investing in sharing.

    Goldman Sachs doesn’t get a lot of positive press these days (for good reason), but check out what Don Duet, co-head of the Technology Division there, had to say about open source in this video that was posted last June.

  • Redis launches modules to add extensibility to the open source database

    Redis, a type of open source NoSQL database known as a key-value store, is getting an important but long delayed addition. Today at the 2016 RedisConf conference in San Francisco, Redis creator Salvatore Sanfilippo is announcing the launch of modules, a way to extend the functionality of the software.

  • Which CMS Is Right For You? [Open Source vs Proprietary]
  • SugarCRM has big analytics and mobile plans, but not open source

    SugarCRM Inc. is setting the table for what it says will be a major series of announcements at its SugarCon 2016 conference in San Francisco next month with an updated version of its CRM platform that improves information access for customer-facing employees, enhances search functionality, provides better facilities for writing and sharing articles internally and expands lead conversion tools.

  • SugarCRM Unveils Informative CRM Features in Sugar 7.7
  • GCC 6.1 vs. LLVM Clang 3.9 Compiler Performance

    After carrying out the recent GCC 4.9 vs. 5.3 vs. 6.1 compiler benchmarks for looking at the GNU Compiler Collection performance over the past three years on the same Linux x86_64 system, I then loaded up a development snapshot of the LLVM 3.9 SVN compiler to see how these two dominant compilers are competing on the performance front for C/C++ programs.

  • The Rise of Open Source Hardware

    "You've heard of open source software," said Templeton, who in 1998 founded ClariNet Communications Corp. -- an early dot-com success. "The software that's running in your phone, in most of your laptops, except for Windows, [and] the Web service you're going to, where everyone builds software and contributes it back to the world. This idea is actually spreading now into hardware."

Leftovers: OSS

Filed under
OSS
  • Journal of Open Source Software helps researchers write and publish papers on software

    With so many public software repositories and places for documentation, it can be difficult for developers to write and publish credible papers that others can reference. The newly announced Journal of Open Source Software (JOSS) wants to tackle this problem of software papers and help authors gain the credibility they deserve.

  • On Open Source Laws and Licensing
  • Talk about contributing to FLOSS
  • Google Pushes A Ton More Chromebook Device Code Into Coreboot

    Over night Google engineers landed a bunch more code in Coreboot for supporting new Chromebook devices.

    Elm was added as a derivative of Oak. This family is for devices with a MediaTek SoC.

  • The Cloud Foundry Way: Open Source, Pair Programming and Well Defined Processes

    Cloud Foundry is a unique open source software project. Actually, it’s a collection of projects that all together make a product that helps organizations run applications on an industry standard, multi-cloud infrastructure. A whole bunch of developers and product managers, who believe it should be easier to develop, deploy and maintain apps in the enterprise, have gotten together to make this possible. Cloud Foundry helps organizations run applications across languages and clouds.

  • Opening up networks to choice, at last

    To wit, Networks Function Virtualization (NFV) was merely a concept just three years ago. But in those three years, the networking world has seen a remarkable evolution, and choice has never been more available. Software is now king, and its first order of business is to open up the networks and break down the limitations of proprietary and box-centric software to give network operators the opportunity to make the network more flexible through programmability.

  • SDN and NFV for Network Automation – Promises of Network Transformation
  • This Week In Servo 62
  • Servo Continues Making Progress For Shipping Components In Gecko, Browser.html

    Mozilla's next-generation, written-in-Rust Servo browser layout continues making progress as well as on the browser.html front-end and their goal of shipping at least one or more Rust/Servo components within the Gecko engine currently powering Firefox.

  • Roadmaps, reflections, and more OpenStack news
  • An Early Look At Some Of The New Features Of LibreOffice 5.2

    While LibreOffice 5.2 isn't scheduled to be released until later this summer, here's an early look at some of the most interesting features coming to this multi-platform, open-source office suite.

  • Want the best employees? Let them hire themselves

    Drupal is a mature open source project that a non-profit organization, called the Drupal Association, steers. The project's use of Gratipay was a skunkworks initiative by two core contributors, who intended to eventually hand the reins to the Association. These two contributors defined criteria for adding and removing others from revenue sharing on Gratipay, and then they recruited fellow Drupal community members to the pilot program. Roughly 200 people were eligible to participate.

    Like most successful open source projects, Drupal already has clearly documented onboarding procedures. Anyone may start contributing to the project, without asking permission or going through a hiring process first. From there, establishing criteria for someone's work to grant them revenue-sharing privileges is a natural step.

    [...]

    With Drupal, we caught a glimpse of open source evolving into open hiring. To truly see take-what-you-want compensation in action, we will have to look elsewhere: to Gratipay itself.

  • Search Engine DuckDuckGo is Financing Worthwhile Open Source Projects
  • Why open data matters today

    The main factor in any change first begins with observation. The data we collect allows us to analyze complex human patterns and behavior. Without data, there's nothing to be observed.

    For some time, the government has been gathering large amounts of data. But now, they're officially making that data accessible to the citizen. When President Obama recently announced the launch of The Opportunity Project, it set off a new initiative that seeks to improve economic mobility for all citizens with the use of digital tools and data sets.

  • What can you do with open data?

    Play a word association game and the word "open" will almost surely be followed by "source." And open source is certainly an important force for preserving user freedoms and access to computing. However, code isn't the only form of openness that's important.

  • What Are Microservices and Why Should You Use Them?

    Traditionally, software developers created large, monolithic applications. The single monolith would encompass all the business activities for a single application. As the requirements of the application grew, so did the monolith.

    In this model, implementing an improved piece of business functionality required developers to make changes within the single application, often with many other developers attempting to make changes to the same single application at the same time. In that environment, developers could easily step on each other’s toes and make conflicting changes that resulted in problems and outages.

  • Progress announces NativeScript 2.0 for native mobile app dev with Angular 2

    Progress announces the latest releast of NativeScript enabling developers to build native mobile apps in JavaScript running on all major mobile platforms.

  • Security advisories for Monday
Syndicate content

More in Tux Machines

Security: Updates, Europol/DDOS, ZTE, F-Secure

  • Security updates for Thursday
  • EU cyber cops shut down 'world's biggest' DDoS-for-hire service

    The website's servers were seized at 11.30am in the Netherlands, the US and Germany, Europol said, effectively shutting down the service that had 136,000 registered users and enabled individuals with little or no technical knowledge to launch crippling cyber-attacks across the world for just $14.99.

  • ZTE router flaw put 400,000 Hyperoptic customers at hacking [sic] risk

    But security firm Context IS discovered that the devices contained "the combination of a hardcoded root account and a DNS rebinding vulnerability", which could have allowed an "internet-based attacker to compromise all customer routers of UK ISP Hyperoptic via a malicious webpage".

  • Researchers Spent 10 Years Creating This “Master Key” To Unlock Millions Of Hotel Rooms
    A team of security researchers at F-secure have created a device running custom software that can create a master key “out of thin air.” They’ve exploited vulnerabilities in the door lock software Vision by VingCard, developed by the Swedish company Assa Abloy. Their electronic door locking system is used in millions of hotel rooms across the globe.
  • F-Secure Researchers: Master Keys to Hotels Can be Created ‘Out of Thin Air’
    F-Secure researchers have found that global hotel chains and hotels worldwide are using an electronic lock system that could be exploited by an attacker to gain access to any room in the facility. The design flaws discovered in the lock system’s software, which is known as Vision by VingCard and used to secure millions of hotel rooms worldwide, have prompted the world’s largest lock manufacturer, Assa Abloy, to issue software updates with security fixes to mitigate the issue.
  • Hackers built a 'master key' for millions of hotel rooms
    Security researchers have built a master key that exploits a design flaw in a popular and widely used hotel electronic lock system, allowing unfettered access to every room in the building. The electronic lock system, known as Vision by VingCard and built by Swedish lock manufacturer Assa Abloy, is used in more than 42,000 properties in 166 countries, amounting to millions of hotel rooms -- as well as garages and storage units.

Mozilla: Localization, VR, WebAssembly and More

  • Localization Workshop in Kolkata (November 2017)
    Last November, Jeff, Peiying and I (flod) headed to Kolkata for the last of our planned localization workshops. The group of languages represented at the event included Bengali (both Bangladesh and India), Gujarati, Hindi, Kannada, Marathi, Nepali, Odia, Tamil and Telugu. If you’re surprised by the number of languages, consider that India alone has 22 languages listed in the Indian Constitution, but that’s only the tip of the iceberg, with a much larger variety of languages spoken, and sometime officially recognized at the State level.
  • Making a Web Thing on the ESP8266
    Today I’m going to walk you through creating a simple Web Thing using an inexpensive off-the-shelf ESP8266 board. The power of web things comes from their ability to connect the digital world of web pages with the physical world of things. We recently released the Things Framework, a collection of software intended to make it easy to create new web things. The relevant library for this example is the webthing-esp8266 library, which makes easy it to connect Arduino-programmed ESP8266 boards with the Web of Things. We hope that this lowers the barrier to creating compelling experiences with our gateway and the Web Thing API.
  • Introducing Hubs: A new way to get together
    Today, we’re excited to share a preview release of Hubs by Mozilla, a new way to get together online within Mixed Reality, right in your browser. Hubs is the first experiment we’re releasing as part of our Social Mixed Reality efforts, and we think it showcases the potential for the web to become the best, most accessible platform to bring people together around the world in this new medium.
  • Enabling Social Experiences Using Mixed Reality and the Open Web
    Today, Mozilla is sharing an early preview of an experiment we are calling “Hubs by Mozilla”. Hubs is an immersive social experience that is delivered through the browser. You simply click on a web link to begin interacting with others inside virtual reality.
  • How does dynamic dispatch work in WebAssembly?
    WebAssembly is a stack-based virtual machine and instruction set, designed such that implementations can be fast and safe. It is a portable target for the compilation of languages like C, C++, and Rust. [...] But C, C++, and Rust all have some capability for dynamic dispatch: function pointers, virtual methods, and trait objects. On native targets like x86, all these forms compile down into a jump to a dynamic address. What do these forms compile down into when targeting WebAssembly?
  • BlinkOn 9: Working on the Web Platform from a cooperative
    Last week, I attended BlinkOn 9. I was very happy to spend some time with my colleagues working on Chromium, including a new developer who will join my team next week (to be announced soon!). This edition had the usual format with presentations, brainstorming, lightning talks and informal chats with Chromium developers. I attended several interesting presentations on web platform standardization, implementation and testing. It was also great to talk to Googlers in order to coordinate on some of Igalia’s projects such as the collaboration with AMP or MathML in Chromium.

Games: GOG, Cities: Skylines - Parklife and More

  • Comedy adventure game HIVESWAP: Act 1 is now on GOG
    For those who love comedy adventure games, you might want to take a look at HIVESWAP: Act 1 as it's now on GOG.
  • Cities: Skylines - Parklife now has a very short gameplay teaser
    Cities: Skylines - Parklife, the new expansion coming next month now has a rather short gameplay teaser. For those who didn't see the previous announcement, Parklife will further expand the city-builder from developer Colossal Order and publisher Paradox Interactive to include: amusement parks, nature reserves, city parks and zoos, and giving new life to your empty land with custom parks and gardens.
  • GOG now have the Linux version of retro-inspired FPS STRAFE: Millennium Edition
    For those of you GOG fans itching for some FPS action, you might want to check out STRAFE: Millennium Edition as GOG now have the Linux build too. Really good to see GOG add some many Linux builds lately, really pleasing to see! Naturally, the GOG build comes with the latest version of the game including a few of the Linux issues that came up being squashed. It's also 64bit, so no lib hunting required.

10 Great LXDE Themes

When it comes to Linux desktop environment aesthetics, the LXDE desktop environment is probably the weakest. The default skin it comes with, to be frank, is kind of dated and bland. Not to worry! Since this desktop environment is on Linux, you can tear it apart and make it look however you’d like! So why not make a list dedicated to great themes you can install right now into your LXDE session? I should mention, since this is LXDE, you’ll be able to use both XFCE4 themes as well as GTK2+ themes. (And the panel even has support for images if you want.) Read more