August, 2007

Aug 31 2007   11:16AM GMT

WINE 0.9.44 released

Posted by: admin
Wine

This item slipped off my Linux/open source software radar this week, but I figured it’s better to be late than never show up at all.

This is release 0.9.44 of Wine, a free implementation of Windows on Unix.

What’s new in this release:

• Better heuristics for making windows managed.
• Automatic detection of timezone parameters.
• Improvements to the builtin WordPad.
• Better signatures support in crypt32.
• Still more gdiplus functions.
• Lots of bug fixes.

Because of lags created by using mirrors, this message may reach you
before the release is available at the public sites. The sources will
be available from the following locations:

       http://www.winehq.org/?announce=0.9.44

Aug 30 2007   10:21AM GMT

Novell still losing, but OS sales up 77%

Posted by: admin
SUSE/Novell

The Register tells it like it today with some quarterly results from embattled Linux provider Novell.

Novell narrowed losses in the third quarter, bolstered by the SUSE Linux business beginning to pull more weight. For the quarter ended July 31, Novell reports a net loss of $3.42m, a 48 per cent difference compared with a loss of $6.5m in the same quarter the previous year. Excluding one-time items, Novell’s income from operations totaled $16.1m, down from $23.8m year-over-year. Revenue increased to $243.1m from $236.3m the previous year.

Linux led most of the growth at Novell this quarter. During Q3, Novell reported $22 million of revenue from Open Platform Solutions and fully $21 million of that number was from Linux products. This is a 77% revenue increase year-over-year for the platform, Novell executives said in a release.

So they’re still in a hole, it’s just not as deep a hole as it was tis time last year.

Aug 29 2007   3:13PM GMT

Ubuntu Hardy Heron set to drop in April 2008

Posted by: admin
Ubuntu Linux

I’ve only just begun working on an article previewing Gutsy Gibbon for SearchEnterpriseLinux.com, but that hasn’t stopped the crazy cats at Ubuntu from revealing the catchy new name of the next release.

Tis true, Hardy Heron is officially the next next Ubuntu release, version number 8.04.

Jono Bacon, over at his jonobacon@home blog, gives us the details:

I am delighted to have the pleasure of announcing the Hardy Heron (Ubuntu 8.04), the next version of Ubuntu that will succeed Gutsy Gibbon (Ubuntu 7.10, due for release in October 2007). Not only will the Ubuntu community continue to do what it does best, produce an easy-to-use, reliable, free software platform, but this release will proudly wear the badge of Long Term Support (LTS) and be supported with security updates for five years on the server and three years on the desktop. We look forward to releasing the Hardy Heron in April 2008.

I officially cannot keep up anymore. Look for a preview article on Gutsy soon, which will include thoughts on the OS’s role on Dell servers — yes servers, not desktops — sometime soon.

Aug 28 2007   10:02AM GMT

Half a million German students choose SUSE on the desktop

Posted by: admin
desktops, SUSE/Novell, Linux desktops

Quick: If I were to tell you that a German educational institution selected Novell SUSE Linux for its desktop and server needs, would you be terribly surprised?

No? Me neither. The Germans and SUSE (and Linux in general, for that matter) are like peas in a pod, but it’s always cool to see students getting their hands on Linux and open source technology.

From today’s Novell press announcement:

Novell today announced that state universities across the Federal State of North Rhine Westphalia in Germany have selected Novell for their critical IT infrastructure systems. The agreement will give 560,000 students and employees across 33 universities access to enterprise management and Linux services from Novell, including SUSE Linux Enterprise Desktop.

Novell is working closely with each of the universities of North Rhine Westphalia to customize solutions to meet their individual needs. This deal covers a wide range of Linux and enterprise management technologies from Novell, including SUSE Linux Enterprise Server, SUSE Linux Enterprise Desktop, Novell Open Enterprise Server, Novell Identity Manager and Novell ZENworks. To date, 10 universities have already developed plans to implement Identity Manager to manage student, faculty and employee identities. Thirteen universities will use Novell ZENworks to manage their complex heterogeneous IT infrastructures, while nine universities are implementing Novell GroupWise for collaboration. On the Linux front, 15 universities to date have committed to deploying SUSE Linux Enterprise Server and SUSE Linux Enterprise Desktop.

The addition of more than half a million new SUSE users means that 40% of all German university students will have access to Linux and management applications from Novell. Not too shabby.
Now we’ll all just wait until some enterprising young columnist touts this news as the year of the Linux desktop. It will be aaaaaany minute now…

Aug 28 2007   8:51AM GMT

Linux 2.6.23-rc4 — come and get it!

Posted by: admin
Linux kernel, kernel news

RC can mean many things to many people. Some think of the olden days of RC Cola; its blue and red cans glistening in the summer sun, waiting to be enjoyed at a ball game or picnic with friends. Others think of remote control cars feverishly jockeying for position on a homemade backyard race track.

On the Enterprise Linux Log, we think of release candidates and the Linux kernel. It’s what we do. It’s what we enjoy. It’s life, Linus Torvalds style, all the time.

Ok, I lost it, and let two weeks pass between -rc releases. My bad.

As a result, -rc4 is a bit bigger than it would/should have been, but hopefully it’s all good, and we’ve fixed most regressions. There’s some arch updates (MIPS, power, sparc64, s390) and an ACPI update, but the rest of it is mainly lots of small fixes (mostly to various random drivers). With some scheduler and networking noise.

I think the shortlog is _just_ too big to be posted on the kernel mailing list, but since it can mostly be described with the one word “boring”, it’s not a huge loss. As usual, just do

git shortlog v2.6.23-rc3..v2.6.23-rc4

If you have the git trees to get the all the details on extraneous semicolons, missed or duplicate include files, kzalloc conversions, new PCI ID’s etc etc.

Linus

Truly, a great day to be alive. Anyone thirsty?

Aug 28 2007   8:46AM GMT

The server market share battle: Microsoft gains 2%

Posted by: admin
Linux versus Windows

Looking at the Gartner and IDC quarterly server numbers this morning I couldn’t help but think that the sky isn’t falling, but a cloud or two may have. What’s going on with Linux servers these days?!

According to Gartner, Microsoft was up 2%, bringing its total market share to 67.1% of servers shipped during Q2 2007. Of the 2.06 million servers shipped in Q2, about 1.4 million were supplied with Windows. Linux, on the other hand, accounted for 22.8% of server shipments. That was a decrease of from the 23.1% share the OS held at this time in 2006.

Framingham, Mass.-based IDC, which also releases a quarterly server tracking report that’s just positively HUGE with media types like myself, found that Windows worldwide server revenue grew 18.7% to $5 billion in the Q2.

As for revenue, Windows gained 4 percentage points in that area for a total of 38.2% of all server revenue for Q2 2007. Linux-based server revenue, by comparison, comprised $1.8 billion for the quarter, and 19% growth year over year. Linux servers represent 13.6% of all server revenue.

So Linux grew, but Windows did too. There are indications that the growth for Windows could be short lived as server virtualization takes even more of a hold than it has now, but that still remains to be seen.

Aug 28 2007   7:24AM GMT

BIND security update, end of life for version 8.0

Posted by: admin
BIND, Updates and upgrades

There are a couple of BIND notifications and updates this morning that I thought I’d share with you. The first is a security notification from the Internet Systems Consortium, which oversees the BIND project.

I. Description: ISC (Internet Systems Consortium) BIND 8 generates cryptographically weak DNS query IDs which could allow a remote attacker to poison DNS caches.

This bug only affects outgoing queries, generated by BIND 8 to answer questions as a resolver, or when it is looking up data for internal uses, such as when sending NOTIFYs to slave name servers.

From the ISC Bind security page:

“The DNS query id generation is vulnerable to analysis which provides a high chance of guessing the next query id. This can be used to perform cache poisoning by an attacker.”

All users are encouraged to upgrade (see below — jack)

II. Impact: A remote attacker could predict DNS query IDs and respond with arbitrary answers, thus poisoning DNS caches.

III. Solution: Upgrade or Patch

This issue is addressed in ISC BIND 8.4.7-P1, available as patch that can be applied to BIND 8.4.7.

The more definitive solution is to upgrade to BIND 9. BIND 8 is being declared “end of life” by ISC due to multiple architectural issues. Please see ISC’s website at www.isc.org for additional information and tools. Note that BIND 8.x.x is End of Life as of August 2007.

On that lat note, we have an end of life update (re: 2008 ) from ISC about BIND 8.

Due to the continuing level of effort required to support BIND 8, ISC has decided to change the status of BIND 8 to ‘end of life’.

ISC strongly encourages users who depend on BIND 8 to migrate to BIND 9 as soon as possible.

It’s never easy to retire a product. The security issues of BIND 8 are many, and 7 years after the release of BIND 9, ISC must devote our efforts to maintaining and enhancing the current version. BIND 9 was always intended as a replacement for BIND 8, thus there are no more BIND 8 releases planned beyond 8.4.7-P1, being released today.

Please see ISC’s website at http://www.isc.org/sw/bind/bind8-eol.php for additional information and migration tools.

Aug 27 2007   10:19AM GMT

Dell’s pre-installed Linux program and the numbers game

Posted by: admin
Dell, Ubuntu Linux

Blogbeebe took a look at just how many Ubuntu PCs Dell is expected to *really* sell this year and after further review the amount is “not many.”

I’m inclined to agree with that analysis, even in light of SearchEnterpriseLinux.com’s coverage of Dell’s expansion of the pre-installed Linux program into European markets. I’ll try to explain why.

When I headed out to San Fran earlier this month for LinuxWorld, I got the chance to have what was pretty much a one-on-one with Dell execs during a dinner meeting before the show began. A handful of journalists, including SearchDataCenter’s own Matt Stansberry, got to sit toe to to with Dell execs and discuss carte blanche anything and everything they wanted (this included a rather lengthy debate on Grizzly Bear hunting in the wilds of Alaska. Thanks, Matt).

While much of the conversation focused on Dell’s energy saving hardware initiatives (The Next Generation Data Center was being held concurrently with LinuxWorld this year), I took the opportunity to try and get Dell execs to define what “success” means for their pre-installed Ubuntu Linux on Dell hardware program, which was unveiled earlier this year in May.

Why try and define it, especially as the program was being expanded to select European nations?

Well, first off, as I wrote about in my article covering the expansion, the European market *hearts* Linux a bit more than we Yanks in the States, so the move was seen by some as a no-brainer for Dell. Second, and more importantly, Dell refused to give any numbers whatsoever on the program. Instead, when pressed at that dinner, Dell’s director of enterprise marketing Judy Chavis told me that the move to Europe in and of itself was enough proof that the program was working. Perhaps it is, but 20,000 units shipped isn’t even close to the more than 120,000 or so users who demanded that Dell change its ways on the IdeaStorm site.

Multiple sources always help, so here’s Channel Insider’s Scott Ferguson on that same Dell dinner:

So far, it’s hard for Dell to measure the full success of its Linux launch. Judy Chavis, director of enterprise marketing for Dell, said it would take some time for outside analysts and the company to determine the exact number of customers buying and using the company’s Ubuntu PCs. However, judging by the response the company received when the idea was first floated on Dell’s IdeaStorm blog in Feb., the notion of the Linux desktop is catching on with the public.

“A lot has to do with people being comfortable with a Linux desktop,” Chavis said. “What we are seeing are customers who are on their second PC and are looking to give it a try and see what happens. One of the big benefits for us is that the applications are much better on the desktop side then they were several years ago.”

It’s hard to measure because Judy wasn’t telling us :-).

Now, is 120,000 a large number of people? It is by itself, sure, but comparatively speaking it’s kind of pathetic stacked up next to the number of people running Windows XP right now. Its growing, I know. However, it’s also, strangely, much larger than the 20,000 people who have bought an Ubuntu desktop or laptop thus far — as I said earlier, where are the other 100,000?!

Here’s some timely PC news to put that number into context: Taiwan’s leading computer seller Acer will soon take over PC maker Gateway in a $710m deal. According to an article from the BBC, the takeover will create the world’s third largest producer of personal computers, with shipments of more than 20 million PCs and sales of $15 billion. That’s the third largest, and they’re selling 20 MILLION PC’s!

I’ve also seen a fair share of excuses over at sites LinxuToday.com, which is disheartening. It’s disheartening because there’s no conspiracy here, at least on Dell’s part. Theyt aren’t “hiding” the Ubuntu boxes on their web site, and this is certainly not a “project that was designed to fail.” Why? Because the simplest explanation is often the right one. Not supplying Linux woudl have been cheaper than supplying it and then hiding it. People need to get serious here and really look at the reasons why the number sold is only 20,000.

Is it still early, and therefore too early to pass judgment? Maybe. But for all the fervor heaped onto this IdeaStorm coup, there appears to be very little follow up from the Linux community; which had been so passionate in the months preceding Dell’s May announcement.

Maybe they’re all waiting for Hannahkwanzachristmakkah. Maybe 20k is all there is. If so, it doesn’t bode well for Ubuntu’s future on Dell.

Aug 27 2007   8:34AM GMT

GPLv3 growth now at 19%, week over week

Posted by: admin
Legal, licensing issues, GPL issues

What the heck, right? It’s a Monday and I just posted GPLv3 growth info last week, but I’m going to do it again anyway!

August appears to be a watershed month for GPLv3 adoption. Last week I mentioned that the new license saw 14% growth week over week. This week? 19%.

Palamida:

This week has seen a 19% increase over last in the number of projects that have adopted GPL v3. As of 1pm PDT, August 24th, our research indicates that 450 projects have officially adopted GPL v3, as compared to 378 on August 17, 2007. An additional 6 projects have adopted LGPL v3, brining the total to LGPL v3 projects to 27.

Palamida has also been pretty good about informing the masses about which prijects are jumping on board with GPLv3. New project conversions this week include:

GnuPG: GnuPG is the GNU project’s complete and free implementation of the OpenPGP standard as defined by RFC2440 . GnuPG allows to encrypt and sign your data and communication, features a versatile key management system as well as access modules for all kind of public key directories.
GNU CPIO: This project is part of the GNU Project. GNU cpio copies files into or out of a cpio or tar archive. The archive can be another file on disk, a magnetic tape, a pipe, etc.
SIWT: Sudo inventory web-tool (SIWT) is a web interface to view and administer information related to /etc/sudoers files on multiple servers. The database contains data on servers, users, aliases, dates, etc. This tool is helpful for internal audits

August is hot for GPLv3 news, but will it last?

Aug 22 2007   2:20PM GMT

LinuxWorld wrap-up: Demystifying data recovery

Posted by: admin
disaster recovery, LinuxWorld

This gem didn’t have a home on any of our sites, but I didn’t want the reporting to go to waste. So it’s going underground on the Enterprise Linux Log. On that note, enjoy some session coverage from LinuxWorld 2007!

---

SAN FRANCISCO – Everyone in IT uses storage in their data center, therefore everyone will one day have to deal with that storage failing. It could happen at anytime.Even in the moments before your LinuxWorld presentation on demystifying data recovery.

That’s what happened to Chris Bross anyway, roughly five minutes before attendees starting filing into his session on “Demystifying Data Recovery” here at the LinuxWorld Conference and Expo.

Bross is an enterprise recovery engineer with Novato, Calif.-based DriveSavers Data Recovery Inc., and the good news for his presentation was that he had brought along a backup USB thumb drive with a copy of his presentation. All too often however, Bross said IT managers and decision makers are not taking the steps necessary to secure and recover the data.

All storage fails eventually

“All storage is going to fail eventually. All hardware breaks. Are you prepared for the inevitable?” Bross said before conducting an informal poll about who had ever lost data.

A smattering of attendees, Bross included, raised their hand (In addition to losing a USB thumb drive, Bross would later admit that one of his two Ubuntu laptops failed during a shipping snafu).

But the informal poll belied a much bigger problem in data back up and recovery in today’s enterprise; one which Bross set out to diagnose and recover much as he and his staff have done hundreds of times back in Novato with hard disks damaged by fire, water and mechanical defects (the latter being demonstrated with a variety of drive-head-on-platter audio clips from real life recovery efforts at the DriveSavers clean room).

Disaster recovery: the numbers

“For all of the effort [systems administrators] put into assigning employees backup tasks, 60% of all corporate data today resides on unprotected PC desktops and laptops,” Bross said, citing industry research from Rochester, N.Y.-based Harris Research.

And when natural disasters strike – and they will, despite the disagreement over the disaster recovery between business executives and IT staffs — the track records of today’s data centers is poor.

According to a study from the University of Texas, U.S. small and medium-sized businesses have shown that when they lose data in a natural disaster, 50% never reopen and 90% are gone in two years. Bross said the hourly cost to “recreate” these battered data centers can run anywhere from $50,000 per hour to $2 million per job at large eCommerce sites.

The reality of reliability

Bross said common knowledge in data centers is that the mean time before failure (MTBF) – or “mean time to failure” – for a typical hard drive is between 500,000 to 1.5 million hours. In an ideal environment, the annual rate of failure of any given drive is .88%.

But two studies from Google Inc. and Carnegie Mellon disagree. In both studies, real world testing of drive reliability found the actual annual replacement rate was actually 3-8%. On top of that revelation was word that failure rates double after the first year of service. For drives older than one year, Bross gave simple advice: “If you experience a drive error of any kind, pull the drive. It’s better to be safe than sorry,” he said.

Those were just mechanical failures though; like natural disasters and virus corruption. Truth be told, studies have shown that user error is by far the biggest contributor to data loss. Fully 60% of all hardware failure is the result of the user, Bross said, which includes malicious/accidental deletion of code, incorrect RAID configuration, accidental reformatting and bad maintenance.

Data protection and the inevitable

Bross concluded his session with a number of tips and best practices for systems administers to use in specific situations.

Hurricanes and floods – “Remember if want to preserve data, you’ll want to make sure that the drive is kept wet,” Bross said. “Storage needs to remain wet. If it dries out, there’s lots of calcification and mineral deposits that can form and cause havoc.” Bross instructs all of his customers to keep wet drives submerged and cool.

Data has been damaged, now what? – Rule number one: Don’t panic. Evaluate the failure and check the status of you backup, Bross said. “Don’t run repair utilities on it. Don’t reformat the volume. Don’t restore backup to the drive in question. Don’t remove drives from a RAID system or rebuild it. Instead, cool heads will prevail and you should evaluate and check the backup drive first, he said.

RAID is not equal to backup! — RAID, by its definition, is a redundant array of disks. “The reality is that a RAID device is only part of the backup solution,” Bross said. “RAID is good for one thing and it’s not as the primary backup application–it’s fault tolerance,” he said.

DIY data recovery – Doing things on your own is good for corruption, deletion or logical corruption of volumes. However, Bross warned that this approach is bad for hardware damage or complex configurations.

Local service providers – This is a good option for transfers, but not for data recovery (this category also encompasses a local expert).

Professional data recovery services — For mission critical data where risk is not an option. Employ clean room facilities as required by drive manufacturers. Bross said that even in these pristine professional conditions “not every patient makes it though this ‘ER for hard drives’.”

Remote access services — Cannot be used with physical device failures. There is the potential risk to customer data that hardware or logical volumes could degrade during diagnosis. Potential benefits are a quick resolution and recovery of data. And there’s no need to ship hardware to lab, either.

Bross said users can avoid needing these data recovery strategies in the first place by making complete backups regularly. “Have a process and a schedule. Assign responsibility and create a chain of command,” he said. “All storage eventually fails. Run home and backup your data now. Be happy you did and sleep well tonight.”