It has recently been announced that Debian had a serious bug in the OpenSSL code , the most visible affect of this is compromising SSH keys – but it can also affect VPN and HTTPS keys. Erich Schubert was one of the first people to point out the true horror of the problem, only 2^15 [...]
I believe that the Red Hat process which has Fedora for home users (with a rapid release cycle and new versions of software but support for only about one year) and Enterprise Linux (with a ~18 month release cycle, seven years of support, and not always having the latest versions) gives significant benefits for the [...]
Mark Shuttleworth has written an interesting post about Ubuntu release dates . He claims that free software distributions are better able to meet release dates than proprietary OSs because they are not doing upstream development. The evidence that free software distributions generally do a reasonable job of meeting release dates (and Ubuntu does an excellent [...]
An issue that causes ongoing discussion is what is the purpose of a Planet installation such as Planet Debian . The discussion usually seems to take the less effective form of what is “appropriate” content for the Planet or what is considered to be “abuse” of the Planet. Of course it’s impossible to get anything [...]
Recently a Debian Developer resigned from a position of responsibility in the project by writing a blog post. I won’t name the DD or the position he resigned as I think that there are general issues which need discussion and specific examples will get in the way (everyone who is seriously involved will know who [...]
Anthony Towns writes about using an improved version of jigdo to download CD/DVD images . His improvement is basically to pipeline operation for better performance.
Jigdo (the Jigsaw download) is a tool to download a set of files and then use them to create a CD or DVD image . The idea is that most [...]
Patrick Winnertz writes about the demotivating effect of unreasonable delays on joining the Debian project .
While I agree that things need to be improved in terms of getting people in the project in a timely manner (the suggestion of providing assistants seems good), I don’t think that anyone has a good reason for being [...]
Albert writes about software development and how much teamwork is used . He makes an interesting clash of analogies by suggesting that it’s not a “team sport” because “its not like commercial fishing where many hands are used to pull in the net at the same time“.
I think that software development for any non-trivial [...]
Steve Kemp writes about security issues with C programs . It seems obvious that if you are going to do something that is overly tricky (such as anything related to setuid programs) then you should have a good knowledge of what you are doing. Steve goes a little further and suggests that anyone who doesn’t [...]
My Etch back-port repository of SE Linux related packages (which I documented in a previous post) now has a complete set of packages for AMD64. From now on I aim to make AMD64 and i386 be my main supported platforms for SE Linux development. [...]