Linux News for Jul 26, 2001
The Not-so-Great Debate over Open Source (Jul 26, 2001, 23:27)
According to Dan Gillmor, the "brawl to settle it all" with
Craig Mundie at the O'Reilly Open Source Convention may not have
settled much, and may have made him look more reasonable. Doc
Searls also followed along, preferring to transcribe as events
unfolded, and provides a more spotty but detailed account,
expressing a little surprise that the awaited GPL hatchet job never
seemed to materialize.
Kernel Cousin KDE #18 by Aaron J. Seigo (Jul 26, 2001, 21:30)
KDE is a powerful Open Source graphical desktop environment for
Unix workstations. It combines ease of use, contemporary
functionality, and outstanding graphical design with the
technological superiority of the Unix operating system.
Business Week: Yankee, We Want You. Yankee, Go Home (Jul 26, 2001, 20:40)
Business Week dissects some of the problems at MandrakeSoft from
an Linux outsider's perspective, and providing Henri Poole's side
of his recent break from the company.
PCWorld: Russian Programmer Remains Behind Bars (Jul 26, 2001, 17:50)
By way of followup, here's an article explaining in some detail
the outstanding issues in Dmitriy Sklyarov's case and why there may
be politics at work with regard to how the US Attorney is choosing
to handle the case.
Alan Cox: Linux 2.4.7-ac1 (Jul 26, 2001, 16:48)
A large collection of fixes kick off the -ac series of kernel
patches to the latest stable release.
WIRED: Open Sourcers Shy From Criticism (Jul 26, 2001, 15:21)
A WIRED reporter says open source advocates don't like to hear
people who disagree with them, and uses an example from the
O'Reilly Open Source Convention to make his point. Regular reader
Anthony Awtrey provided us with the link and a brief response.
Linux Weekly News for July 26, 2001 (Jul 26, 2001, 12:00)
Leading items and editorials: Dmitry Skylarov: geeks learn
Conectiva Linux Security Announcement - imp (Jul 26, 2001, 08:54)
"imp" is a webmail system that uses the "horde" framework. The
authors have released new versions of IMP and HORDE that address
security vulnerabilities disclosed by giancarlo pinerolo
(email@example.com) and Nick Cleaton (firstname.lastname@example.org), as
well as one problem found during an internal audit."
Mandrake Linux Security Update Advisory: elm (Jul 26, 2001, 08:51)
"A buffer overflow exists in the elm email client when handling
very long message-ids. This would overwrite other header fields and
could potentially cause further damage."
Mandrake Linux Security Update Advisory: squid update
(Jul 26, 2001, 08:48)
"The Squid proxy server has a serious security flaw in versions
2.3.STABLE2 through 2.3.STABLE4. This problem surfaces when Squid
is used in httpd_accel mode. If you configure httpaccelwith_proxy
off then any request to Squid is allowed. Malicious users may use
your proxy to portscan remote systems, forge email, and other
Generalized "Copyleft" License Brings Open Source Beyond Software
(Jul 26, 2001, 01:00)
In conjunction with the release of a new book, a new general
copyleft-style license is being introduced. The "Design Science
License" attempts to introduce copyleft to "any work recognized by
copyright law, including songs, books, software, and photographs."
The author of the license says "The future is in openness and
freedom, and in every individual's right to cut and paste and copy
and modify any work they like, for any reason they like." We've
included the license within.
Conectiva Linux Security Announcement - imp (Sep 24, 2000, 18:45)
"There are several vulnerabilities in the horde and imp packages
shipped with Conectiva Linux that allow an user to execute remote
commands on the server as the user "nobody."