Slashdot Mirror

MxTxL writes "EWeek is reporting here about a plugin for Visual Studio.Net, called Grasshopper, that allows web applications that once only ran on IIS to be run on Tomcat or other J2EE platforms. The Mainsoft Developer Zone has more details on how it works but basically it converts the MS Intermediate Language into Java bytecode. The developer is also a supporter of the Mono Project."

boarder8925 writes "eWeek reports: 'Like day follows night, a bogus cumulative update with a malicious attachment has followed Microsoft's patch day. In what has become a monthly staple, virus writers are taking advantage of the heightened public interest around Microsoft's patching cycle to trick users into executing a malicious attachment. The latest social engineering trick arrives via e-mail with an attachment that purports to be a 'cumulative patch' for May 2005.'"

kmilani2134 writes "America Online is moving into the Web-based e-mail market on Wednesday by tying e-mail into its popular AOL Instant Messenger service. Called AIM Mail, the service marks AOL's latest attempt to reposition itself as a broad portal rather than a subscriber-based service. It also will compete more directly against Yahoo Inc, Microsoft Corp.'s MSN division and Google Inc., all of which have battled over Webmail storage and features over the past year. This was covered by both eWeek and InternetNews.com. Of note, they seem to have incorporated the Mailblocks spam filtering and tracker addresses into their service. It will be interesting to see how long before these new 2 GB accounts are inundated with spam."

Starwax writes "Here's a very interesting strategy by Microsoft. After years of complaining about irresponsible disclosure of security alerts by grey hats, Microsoft will now confirm and discuss the vulnerabilities in a new pilot project launching on Tuesday. Advisories will be issued within one business day of a publicly reported security hole along with guidance and mitigation."

rmallico wrote in to mention a story currently running on Eweek about technical difficulties sites running Tiger are experiencing. From the article: "A number of sites running Apple's new 'Tiger' operating system are experiencing problems with SMB file sharing and authentication with Microsoft's Active Directory, Ziff Davis Internet News has learned. Although Apple Computer Inc.'s Tiger increases support for Server Message Block file sharing and Active Directory, several sources say that the Finder fails to log on to Windows and Linux Samba file servers."

bonch writes "Microsoft is reaching out to the OSS community and wanting a sit-down to discuss how to better to interoperate with them. At a conference sponsored by the Association for Competitive Technology (ACT) in Cambridge, Md., Microsoft's Brad Smith extended an olive branch to its competitors, including the OSS community. 'We're going to have to figure out how to build some bridges between the various parts of our industry,' he said. Eric Raymond responds, saying the first steps Microsoft could do are to open their file formats and support open standards."

loid_void writes "The software and services used to read XML-based news feeds are continuing to branch out as the syndication method gains popularity on the Web." From the article: "More and more companies are starting to use internal content distributed in the form of RSS...Having this content delivered internally in a secure manner is really kind of the sweet spot for [enterprises] right now."

Saeed al-Sahaf writes "Is the Linux kernel becoming fat and unstable? Computer Associates seems to think so. Sam Greenblatt, a senior vice president at Computer Associates, said the kernel is 'getting fatter. We are not interested in the game drivers and music drivers that are being added to the kernel. We are interested in a more stable kernel.' There continues to be a huge debate over what technology to fold into the Linux kernel, and Andrew Morton, the current maintainer of the Linux 2.6 kernel, expands on these subjects in this article at eWeek."

Memorize writes "It turns out that OpenOffice.org can't read MS Office documents safely, either. A buffer overflow in OpenOffice.org has been confirmed and would allow an attacker to write a specially-constructed .doc file that will take control over an OpenOffice.org user's machine. This vulnerability is exploitable and it exists on every computer with OpenOffice 1.14 or 2.0b installed. OpenOffice.org will have a fix ready within days, but how quickly will Linux users patch? This paves the way for Linux users to be vulnerable to a virus that spreads by sending itself as email attachments which unsuspecting users then open. Could the first real Linux virus be drawing near?" Not from the sound of it: the article says that users would still have to be convinced "to open a malicious document with an unpatched application."

Rollie Hawk writes "Open Source Initiative (OSI) and Computer Associates (CA) may agree that some housework is needed with open source licensing, but they may not be able to reconcile their views on the best solution. CA has a couple of possible solutions in mind for its proposed Template License. This license will likely be based on either Sun's Common Development and Distribution License (CDDL) its own Trusted Open Source License. OSI, which does not favor corporate-centered licensing, opposes such moves on a number of grounds. Specifically, they point out that CDDL is not GPL-compatible. While acknowledging the problems with license proliferation, OSI prefers a solution involving stricter criteria (including that approved licenses must me non-duplicative, clear and understandable, and reusable) and is proposing a "three-tier system in which licenses are classified as preferred, approved or deprecated." While there is no legal requirement for any open-source license to be approved by OSI, it is currently common practice for developers to get their license blessing from it."

Rollie Hawk writes "Open Source Initiative (OSI) and Computer Associates (CA) may agree that some housework is needed with open source licensing, but they may not be able to reconcile their views on the best solution. CA has a couple of possible solutions in mind for its proposed Template License. This license will likely be based on either Sun's Common Development and Distribution License (CDDL) its own Trusted Open Source License. OSI, which does not favor corporate-centered licensing, opposes such moves on a number of grounds. Specifically, they point out that CDDL is not GPL-compatible. While acknowledging the problems with license proliferation, OSI prefers a solution involving stricter criteria (including that approved licenses must me non-duplicative, clear and understandable, and reusable) and is proposing a "three-tier system in which licenses are classified as preferred, approved or deprecated." While there is no legal requirement for any open-source license to be approved by OSI, it is currently common practice for developers to get their license blessing from it."

Rollie Hawk writes "Open Source Initiative (OSI) and Computer Associates (CA) may agree that some housework is needed with open source licensing, but they may not be able to reconcile their views on the best solution. CA has a couple of possible solutions in mind for its proposed Template License. This license will likely be based on either Sun's Common Development and Distribution License (CDDL) its own Trusted Open Source License. OSI, which does not favor corporate-centered licensing, opposes such moves on a number of grounds. Specifically, they point out that CDDL is not GPL-compatible. While acknowledging the problems with license proliferation, OSI prefers a solution involving stricter criteria (including that approved licenses must me non-duplicative, clear and understandable, and reusable) and is proposing a "three-tier system in which licenses are classified as preferred, approved or deprecated." While there is no legal requirement for any open-source license to be approved by OSI, it is currently common practice for developers to get their license blessing from it."

Rollie Hawk writes "Open Source Initiative (OSI) and Computer Associates (CA) may agree that some housework is needed with open source licensing, but they may not be able to reconcile their views on the best solution. CA has a couple of possible solutions in mind for its proposed Template License. This license will likely be based on either Sun's Common Development and Distribution License (CDDL) its own Trusted Open Source License. OSI, which does not favor corporate-centered licensing, opposes such moves on a number of grounds. Specifically, they point out that CDDL is not GPL-compatible. While acknowledging the problems with license proliferation, OSI prefers a solution involving stricter criteria (including that approved licenses must me non-duplicative, clear and understandable, and reusable) and is proposing a "three-tier system in which licenses are classified as preferred, approved or deprecated." While there is no legal requirement for any open-source license to be approved by OSI, it is currently common practice for developers to get their license blessing from it."

LukePieStalker writes "eWeek is running a piece about a research report which concludes that Linux is not even on the radar screen for midsize businesses. The survey involved over 1,400 executives of companies with annual revenue around $250 to $500 million. It seems that, while smaller companies may see the licensing savings as being significant, and larger companies have the expertise to manage it, bringing Linux into a midsize Windows shop creates a multiplatform organization which is prohibitively complicated and expensive to manage. Unfortunately, companies of this size comprise the bulk of American business. Quote: "Linux is free, but the support for it is not.""

dilbertspace writes "Anyone who has ever developed a website knows that cross-browser and cross-platform compatibility is a nightmare, mainly due to Microsoft's willful non-compliance with the CSS2 standard. As this eWeek article points out, it seems Microsoft will continue their poor support for CSS2 even in the IE 7.0 release. This may have worked when IE was the only game in town, but now that Firefox is a serious player, it won't help them keep market share as they think it will."

gpmac writes "AOL has responded to the recent slashdot attention. America Online Inc. plans to make three small but significant modifications to the terms of service for its AIM instant messaging product to head off a firestorm of privacy-related criticisms. The tweaks to the terms of service will be made in the section titled "Content You Post" and will explicitly exclude user-to-user chat sessions from the privacy rights an AIM user gives up to AOL."

cfelde writes "eWeek reports that Novell launched a major new release of its ZENworks Linux Management software at CeBIT on Friday, with the aim of bringing management of Linux desktops and servers on par with that of Windows desktops and servers. ZENworks 7 Linux Management adds remote control, imaging, hardware and software inventory, a Web console, and ZENworks' automated policy management to make it a full life-cycle management suite."

amyrick writes "eWeek is carrying a story about Google's response to March 8th's cloaking accusations. Rather than justify the shady practices as some exception to their rules, Google removed the pages from their indices, and are requiring the pages' maintainers to revise the pages and reapply for indexing. Though the existence of the cloaked pages at all is somewhat questionable, at least Google has responded with integrity and consistency."

Mark Stone writes with a thoughtful look back at the year 2004 in open source, pointing out both major gains and inevitable uncertainties. He writes "2004 stands out as a year in which open source consolidated its position as a valuable and accepted approach to business and technology policy. A less obvious but significant trend underlies all of this: even as open source business models join the mainstream, the open source development model remains a mysterious process on which large technology companies struggle to capitalize. Key issues and developments have played out in four areas: legal, policy, business, and technology." Read on for the rest. Legal

The biggest non-story of the year was SCO's legal efforts. So far SCO has not been able to make substantial headway with a single one of its legal claims, and indeed has suffered a number of significant setbacks in court.

This is certainly good news for Linux and open source. Going back five or six years, clearly one of the major obstacles to widespread adoption of open source software was the uncertain legal status of both the software and the licenses. While this aspect of open source is still an unfinished saga -- more on that shortly -- the inability of SCO, through either legal or PR channels, to undermine Linux gives reason for confidence about the future.

The real story about SCO in 2004 has in fact been the telling of that story. While mainstream media coverage of SCO has varied widely -- sometimes accurate, sometimes resembling coverage of the OJ Simpson trial -- Groklaw has emerged as a steady voice of reason and objectivity adeptly defusing all attempts at "FUD" PR around the case.

2004 has been, especially as an election year, a controversial year for the phenomenon of blogging. Whether blogging will provide a sustainable alternate voice in journalism is very much an open question. A few blog sites, however, have shown what a handful of dedicated individuals can do in the face of much larger, and better funded PR machines. Groklaw is an outstanding example of the positive journalism effect that blogging can have.

The legal front brought other good news for the open source community. Norway's Supreme Court acquitted Jon Johansen, and the Norwegian Economic Crime Unit opted not to appeal the decision. In the United States the Digital Millenium Copyright Act still remains the law of the land, but the Recording Industry Association of America has made little progress in forcing ISPs to disclose the identities of alleged file swappers.

A more troubling legal trend is the shift in debate about the intellectual property status of open source software. The principles behind the "copyleft" approach have gained continued acceptance, and have even been leveraged as an integral part of some business models. The debate now, however, centers more around patents that copyright.

IBM has been out in front of the patent issue. Their open source license was the first to explicitly address patent licensing as an issue above and beyond copyright, and they've taken steps, even recent steps, to see that open source development is unencumbered by patent concerns. IBM is not the only company putting patents in the open source domain. Sun Microsystems recently announced they will make patents available under their recently approved Common Development and Distribution open source license (CDDL).

All of this would seem to be good news for the open source community, especially given that Poland's objections have put a temporary halt to the Europan Union software patent initiative. Appearances can be deceiving, however. IBM is a supporter of software patents. Sun's gesture is in fact intended to create a competitive advantage for OpenSolaris over Linux, since the patent protection Sun offers applies only to work licensed under the CDDL -- in other words, not Linux. In a recent News.com commentary, Bruce Parens said, "So while claiming to make the patents available to open-source developers, Sun can sue folks who work on Linux rather than Solaris."

The biggest patent concern comes from Microsoft. In a speech in Australia, Microsoft CEO Steve Ballmer claimed that Linux violated more than 200 patents. While this may be more hype -- or hope -- than fact, it does tip Microsoft's hand in terms of what tactics they are willing to use to meet the Linux competitive threat.

Policy

All other things being equal, customers prefer an open system to a closed one, and vendor choice over vendor lock-in. In the IT world in general, and between Windows and Linux in particular, all other things are not equal, which makes platform choice complicated. More and more, however, organizations are seeing Linux as a viable platform choice that

• Lowers up-front licensing fees
• Has the support and backing of significant technology vendors, whether small, medium (Red Hat), or large (IBM, Novell)
• Avoids vendor lock-in at both the platform and application level

These claims are independent of the more controversial claims about improving security and lowering total cost of ownership. 2004 has added an interesting additional element to the mix: the desire of government organizations outside the United States to not be dependent on a large, American technology company whose revenues exceed the gross national product of most nations.

This software declaration of independence has taken several forms. Sometimes it seems simply to be a negotiating tactic to force Microsoft to lower prices. India may be an example.

Sometimes, however, price is not the issue. Munich, for example, committed to making the switch to Linux despite direct lobbying efforts by Microsoft CEO Steve Ballmer. In the case of a high tech country like Germany, this decision is probably influenced by the reluctance to be dependent on an American company guilty of monopoly practices.

The situation in the developing world is somewhat different. Unshackled by significant requirements of backward compatibility, emerging economies like Venezuela's have a chance to make a clean start and avoid what they perceive as the pitfalls and inefficiencies in older IT infrastructures.

The policy approach in China is even more alarming to traditional technology vendors. China clearly does not want to build an economy dependent on outside production or services, whether it's factories or satellite launches. In the software world China has made it clear that it can and will build its own platform and application stack leveraging open source components, if that is what it has to do to maintain control of its software destiny.

Business

The North American market for computer technology has, in many ways, reached the saturation point. A Pentium 4, to say nothing of a 64-bit processor, is already overkill for most office desktop applications. Older versions of the Microsoft Office suite, and older versions of Microsoft Windows, are often quite adequate for business productivity needs. The problem for traditional technology vendors is aggravated by the fact that Linux, Open Office, and other open source software may now be good enough.

On the one hand this accounts for why policy issues and the international technology market have become so important: this is where technology vendors see the biggest opportunity to grow new business. On the other hand, open source is forcing some significant changes in the software market domestically.

The most visible effect of open source has been the commoditization effect. Microsoft, as we've seen, has been forced to acknowledge the competitive impact Linux is having, and to cut prices overseas in response to this competition. Yet even companies like BEA acknowledge that open source will have an increasing commoditizing effect, meaning that they will cede lower levels of the application stack to freely available open source software and seek to add value further up the stack.

The most dramatic concession to commoditization in 2004 has been the announcement that Sun is open sourcing Solaris. Said one Sun executive who asked to remain anonymous, "Do you think we'd be open sourcing Solaris if we had any other way to compete with Linux on price? Of course not."

If anything, the opening of Solaris reinforces that Sun has been unable to find a business model built around Linux. Given that competitors like IBM and HP have, with varying degrees of success, been able to integrate Linux into their business models, one suspects that there are deeper problems at Sun than the opening of Solaris can solve.

The bottom line is that Sun is still trying to compete with, rather than embrace Linux. The CDDL doesn't extend patent protection to anyone working under a different open source License, and the CDDL is incompatible with the GPL, meaning none of the Solaris code can be used to benefit Linux.

This move, of using a license as a competitive tool, is one of the more subtle but more important business trends to emerge from open source in 2004.

The most common approach is a dual-licensing scheme, utilized by Trolltech (for Qt), Sleepycat (for Berkeley DB), MySQL, and newcomer db4objects, among others.

In each case the company makes its core product available under the GPL, or else under a similar viral-type license. Since each of these software products is intended to be embedded within or combined with other software to create a derivative product, companies are forced to make their own product available as open source, or to approach the originating company about separate licensing under proprietary terms.

The result is a very low-cost distribution mechanism for the open source companies, as well as a cheap in-bound sales channel of pre-qualified leads.

Of course, to be able to dual-license, you must have created all the code in question, or have full rights granted to you for all the code in question. Thus this very successful open source business model is incompatible with the open source development model; each of the companies using the dual-license approach does all, or nearly all of their software development in-house.

Technology

What then of the open source development model? Has it enjoyed the growth and widespread acceptance that open source business models have?

Certainly 2004 saw a number of significant releases for open source projects. GIMP 2.0 was finally released, as was Gnome 2.6. Large companies as well as individual projects made strides. IBM announced the release of its Java database, Cloudscape, as open source. Novell released SUSE Enterprise Server 9.

The year's most significant releases were the 2.6 series of Linux kernels, and the 1.0 release of Mono. With 2.6, Linux now has many of the features needed to compete as an enterprise-class server: better multiprocessor support, failover and hot-swap support, better journaling file system support.

Mono is absolutely critical if the open source community is to compete in the application development market. C# and .Net will be important application building blocks for the forseeable future, and Linux and open source need to be viable approaches.

The Debian Project has undergone an interesting evolution in the last year. Long-time Debian users have often complained about the slow pace at which Debian moves, favoring security and stability over feature growth. The result is a very solid server system, but one that, for the end user, often lacks support for advanced hardware.

The solution, which seems so obvious now, is independent distributions that leverage Debian as a base but target the end user with ease-of-use features and hardware-support features that have yet to make it into Debian. Two successful projects heading down this path are Ubuntu, which follows the Gnome approach to usability, and Mepis, which follows the KDE approach to usability. Either distribution will give you an easy install, access to Debian packages and apt-based network updates, but with more advanced hardware support and an improved UI over stock Debian.

By far the biggest development story of the year, however, has been Firefox, the browser component of the Mozilla project.

Timing is everything. Security, privacy, and spyware have become major concerns in 2004. Microsoft has refused to significantly update Internet Explorer (IE) until Longhorn is released, which could be in 2006 (as in "Santa Claus could be real"). The Mozilla Foundation capitalized on this opportunity with a major fundraising blitz for the foundation and PR blitz around Firefox; this included a full-page New York Times ad.

In November, Firefox 1.0 was released, and to date downloads exceed 10 million. Mozilla has raised over $250,000 in its fundraising campaign. While IE's market share still hovers around 90%, Firefox has rapidly grown to 5% market share, and put a dent in IE's market share for the first time in years. Industry analyst Gartner Group has looked at the results of 2004 and declared the browser war open again.

Looking ahead to 2005, it's interesting to ponder the tech sector's differing response to open source business and open source development models. The business models are reasonably well understood and generally accepted now. Not everyone is leveraging open source as a business play, but everyone understands it is one viable strategy to pursue.

On the development side, however, the results of open source continue to confound the establishment. Why did no one see the Firefox phenomenon coming? Equally important, why isn't anyone (AOL) attempting to leverage Firefox's market success and technology advantages?

With Solaris, it's interesting to note that even supporters of OpenSolaris admit it sees no real development savings to opening Solaris; the benefits are all on the marketing side. Ben Rockwood blogs "It's going to take Sun more work to maintain it open source than it will to just leave it closed."

Yes, open source has become mainstream. But that mainstream presence needs to be more than a commodity benefit to companies willing to leverage the results of open source. Will mainstream technology companies figure out how to anticipate and collaborate with open source development as a deep part of their technology strategy? That's a big question that 2005 may answer.

Mark Stone is an open source consultant and freelance writer living in the Sierra Nevada region of Northern California. He can be reached at mark.stone@gmail.com.

Mark Stone writes with a thoughtful look back at the year 2004 in open source, pointing out both major gains and inevitable uncertainties. He writes "2004 stands out as a year in which open source consolidated its position as a valuable and accepted approach to business and technology policy. A less obvious but significant trend underlies all of this: even as open source business models join the mainstream, the open source development model remains a mysterious process on which large technology companies struggle to capitalize. Key issues and developments have played out in four areas: legal, policy, business, and technology." Read on for the rest. Legal

The biggest non-story of the year was SCO's legal efforts. So far SCO has not been able to make substantial headway with a single one of its legal claims, and indeed has suffered a number of significant setbacks in court.

This is certainly good news for Linux and open source. Going back five or six years, clearly one of the major obstacles to widespread adoption of open source software was the uncertain legal status of both the software and the licenses. While this aspect of open source is still an unfinished saga -- more on that shortly -- the inability of SCO, through either legal or PR channels, to undermine Linux gives reason for confidence about the future.

The real story about SCO in 2004 has in fact been the telling of that story. While mainstream media coverage of SCO has varied widely -- sometimes accurate, sometimes resembling coverage of the OJ Simpson trial -- Groklaw has emerged as a steady voice of reason and objectivity adeptly defusing all attempts at "FUD" PR around the case.

2004 has been, especially as an election year, a controversial year for the phenomenon of blogging. Whether blogging will provide a sustainable alternate voice in journalism is very much an open question. A few blog sites, however, have shown what a handful of dedicated individuals can do in the face of much larger, and better funded PR machines. Groklaw is an outstanding example of the positive journalism effect that blogging can have.

The legal front brought other good news for the open source community. Norway's Supreme Court acquitted Jon Johansen, and the Norwegian Economic Crime Unit opted not to appeal the decision. In the United States the Digital Millenium Copyright Act still remains the law of the land, but the Recording Industry Association of America has made little progress in forcing ISPs to disclose the identities of alleged file swappers.

A more troubling legal trend is the shift in debate about the intellectual property status of open source software. The principles behind the "copyleft" approach have gained continued acceptance, and have even been leveraged as an integral part of some business models. The debate now, however, centers more around patents that copyright.

IBM has been out in front of the patent issue. Their open source license was the first to explicitly address patent licensing as an issue above and beyond copyright, and they've taken steps, even recent steps, to see that open source development is unencumbered by patent concerns. IBM is not the only company putting patents in the open source domain. Sun Microsystems recently announced they will make patents available under their recently approved Common Development and Distribution open source license (CDDL).

All of this would seem to be good news for the open source community, especially given that Poland's objections have put a temporary halt to the Europan Union software patent initiative. Appearances can be deceiving, however. IBM is a supporter of software patents. Sun's gesture is in fact intended to create a competitive advantage for OpenSolaris over Linux, since the patent protection Sun offers applies only to work licensed under the CDDL -- in other words, not Linux. In a recent News.com commentary, Bruce Parens said, "So while claiming to make the patents available to open-source developers, Sun can sue folks who work on Linux rather than Solaris."

The biggest patent concern comes from Microsoft. In a speech in Australia, Microsoft CEO Steve Ballmer claimed that Linux violated more than 200 patents. While this may be more hype -- or hope -- than fact, it does tip Microsoft's hand in terms of what tactics they are willing to use to meet the Linux competitive threat.

Policy

All other things being equal, customers prefer an open system to a closed one, and vendor choice over vendor lock-in. In the IT world in general, and between Windows and Linux in particular, all other things are not equal, which makes platform choice complicated. More and more, however, organizations are seeing Linux as a viable platform choice that

• Lowers up-front licensing fees
• Has the support and backing of significant technology vendors, whether small, medium (Red Hat), or large (IBM, Novell)
• Avoids vendor lock-in at both the platform and application level

These claims are independent of the more controversial claims about improving security and lowering total cost of ownership. 2004 has added an interesting additional element to the mix: the desire of government organizations outside the United States to not be dependent on a large, American technology company whose revenues exceed the gross national product of most nations.

This software declaration of independence has taken several forms. Sometimes it seems simply to be a negotiating tactic to force Microsoft to lower prices. India may be an example.

Sometimes, however, price is not the issue. Munich, for example, committed to making the switch to Linux despite direct lobbying efforts by Microsoft CEO Steve Ballmer. In the case of a high tech country like Germany, this decision is probably influenced by the reluctance to be dependent on an American company guilty of monopoly practices.

The situation in the developing world is somewhat different. Unshackled by significant requirements of backward compatibility, emerging economies like Venezuela's have a chance to make a clean start and avoid what they perceive as the pitfalls and inefficiencies in older IT infrastructures.

The policy approach in China is even more alarming to traditional technology vendors. China clearly does not want to build an economy dependent on outside production or services, whether it's factories or satellite launches. In the software world China has made it clear that it can and will build its own platform and application stack leveraging open source components, if that is what it has to do to maintain control of its software destiny.

Business

The North American market for computer technology has, in many ways, reached the saturation point. A Pentium 4, to say nothing of a 64-bit processor, is already overkill for most office desktop applications. Older versions of the Microsoft Office suite, and older versions of Microsoft Windows, are often quite adequate for business productivity needs. The problem for traditional technology vendors is aggravated by the fact that Linux, Open Office, and other open source software may now be good enough.

On the one hand this accounts for why policy issues and the international technology market have become so important: this is where technology vendors see the biggest opportunity to grow new business. On the other hand, open source is forcing some significant changes in the software market domestically.

The most visible effect of open source has been the commoditization effect. Microsoft, as we've seen, has been forced to acknowledge the competitive impact Linux is having, and to cut prices overseas in response to this competition. Yet even companies like BEA acknowledge that open source will have an increasing commoditizing effect, meaning that they will cede lower levels of the application stack to freely available open source software and seek to add value further up the stack.

The most dramatic concession to commoditization in 2004 has been the announcement that Sun is open sourcing Solaris. Said one Sun executive who asked to remain anonymous, "Do you think we'd be open sourcing Solaris if we had any other way to compete with Linux on price? Of course not."

If anything, the opening of Solaris reinforces that Sun has been unable to find a business model built around Linux. Given that competitors like IBM and HP have, with varying degrees of success, been able to integrate Linux into their business models, one suspects that there are deeper problems at Sun than the opening of Solaris can solve.

The bottom line is that Sun is still trying to compete with, rather than embrace Linux. The CDDL doesn't extend patent protection to anyone working under a different open source License, and the CDDL is incompatible with the GPL, meaning none of the Solaris code can be used to benefit Linux.

This move, of using a license as a competitive tool, is one of the more subtle but more important business trends to emerge from open source in 2004.

The most common approach is a dual-licensing scheme, utilized by Trolltech (for Qt), Sleepycat (for Berkeley DB), MySQL, and newcomer db4objects, among others.

In each case the company makes its core product available under the GPL, or else under a similar viral-type license. Since each of these software products is intended to be embedded within or combined with other software to create a derivative product, companies are forced to make their own product available as open source, or to approach the originating company about separate licensing under proprietary terms.

The result is a very low-cost distribution mechanism for the open source companies, as well as a cheap in-bound sales channel of pre-qualified leads.

Of course, to be able to dual-license, you must have created all the code in question, or have full rights granted to you for all the code in question. Thus this very successful open source business model is incompatible with the open source development model; each of the companies using the dual-license approach does all, or nearly all of their software development in-house.

Technology

What then of the open source development model? Has it enjoyed the growth and widespread acceptance that open source business models have?

Certainly 2004 saw a number of significant releases for open source projects. GIMP 2.0 was finally released, as was Gnome 2.6. Large companies as well as individual projects made strides. IBM announced the release of its Java database, Cloudscape, as open source. Novell released SUSE Enterprise Server 9.

The year's most significant releases were the 2.6 series of Linux kernels, and the 1.0 release of Mono. With 2.6, Linux now has many of the features needed to compete as an enterprise-class server: better multiprocessor support, failover and hot-swap support, better journaling file system support.

Mono is absolutely critical if the open source community is to compete in the application development market. C# and .Net will be important application building blocks for the forseeable future, and Linux and open source need to be viable approaches.

The Debian Project has undergone an interesting evolution in the last year. Long-time Debian users have often complained about the slow pace at which Debian moves, favoring security and stability over feature growth. The result is a very solid server system, but one that, for the end user, often lacks support for advanced hardware.

The solution, which seems so obvious now, is independent distributions that leverage Debian as a base but target the end user with ease-of-use features and hardware-support features that have yet to make it into Debian. Two successful projects heading down this path are Ubuntu, which follows the Gnome approach to usability, and Mepis, which follows the KDE approach to usability. Either distribution will give you an easy install, access to Debian packages and apt-based network updates, but with more advanced hardware support and an improved UI over stock Debian.

By far the biggest development story of the year, however, has been Firefox, the browser component of the Mozilla project.

Timing is everything. Security, privacy, and spyware have become major concerns in 2004. Microsoft has refused to significantly update Internet Explorer (IE) until Longhorn is released, which could be in 2006 (as in "Santa Claus could be real"). The Mozilla Foundation capitalized on this opportunity with a major fundraising blitz for the foundation and PR blitz around Firefox; this included a full-page New York Times ad.

In November, Firefox 1.0 was released, and to date downloads exceed 10 million. Mozilla has raised over $250,000 in its fundraising campaign. While IE's market share still hovers around 90%, Firefox has rapidly grown to 5% market share, and put a dent in IE's market share for the first time in years. Industry analyst Gartner Group has looked at the results of 2004 and declared the browser war open again.

Looking ahead to 2005, it's interesting to ponder the tech sector's differing response to open source business and open source development models. The business models are reasonably well understood and generally accepted now. Not everyone is leveraging open source as a business play, but everyone understands it is one viable strategy to pursue.

On the development side, however, the results of open source continue to confound the establishment. Why did no one see the Firefox phenomenon coming? Equally important, why isn't anyone (AOL) attempting to leverage Firefox's market success and technology advantages?

With Solaris, it's interesting to note that even supporters of OpenSolaris admit it sees no real development savings to opening Solaris; the benefits are all on the marketing side. Ben Rockwood blogs "It's going to take Sun more work to maintain it open source than it will to just leave it closed."

Yes, open source has become mainstream. But that mainstream presence needs to be more than a commodity benefit to companies willing to leverage the results of open source. Will mainstream technology companies figure out how to anticipate and collaborate with open source development as a deep part of their technology strategy? That's a big question that 2005 may answer.

Mark Stone is an open source consultant and freelance writer living in the Sierra Nevada region of Northern California. He can be reached at mark.stone@gmail.com.

An anonymous reader writes " According to the patent application--filed in mid-November by Paul Vick, lead architect for Visual Basic .Net at Microsoft; Amanda Silver, a program manager on the Visual Basic team; and an individual in Bellevue, Wash., named Costica Barsan--the IsNot operator is described as a single operator that allows a comparison of two variables to determine if the two point to the same location in memory." This article continues the tale started last november, and here is an eWeek story on the same subject.

sscottsci writes "A new article at eWeek indicates that Virus writers are using .RAR files to bypass Filters and Anti-Virus systems to infect computers. Most anti-virus software cannot scan a .RAR file, and most firewalls do not block the extension yet."

sscottsci writes "A new article at eWeek indicates that Virus writers are using .RAR files to bypass Filters and Anti-Virus systems to infect computers. Most anti-virus software cannot scan a .RAR file, and most firewalls do not block the extension yet."

Roland Piquepaille writes "In this short article, eWEEK writes that the next generation of biosensors will consist of small holograms costing only fractions of a cent. Prototypes developed by a U.K. company, aptly named Smart Holograms, include contact lenses that monitor glucose levels or thin badges that detect alcohol levels. Not only these holograms used as sensors will be cheap to produce, they'll also require less training for nurses or police officers. This is because these holograms can be designed to show results graphically, such as morphing into an image of a green car if someone subjected to breath analysis is sober and can drive. Read this overview for other details and an illustration showing how to create a sensor hologram."

XeRXeS-TCN writes "Benoît Müller of the BSA has written an open letter to the EU, criticising their focus on open standards for interoperability, as this would exclude things like DHCP, 802.1X and GSM. He also says that framework "shouldn't imply a link between open source and open standards"."

ido writes "Apple has agreed to hold off on serving subpoenas related to their John Doe civil suits against some free press journalists to reveal sources releasing Apple's "trade secrets." This is related to a previous article." The original story has some more background info as well. While Apple is notorious for its secrecy before MacWorlds, Apple probably figured out that dragging people into court usually does little for one's popularity.

fubar1971 writes "During his keynote speech at the at the RSA Security Conference Bill Gates announced that the MS antispyware will be offered for free. From his speech: 'We've looked hard at the nature of this problem, and made a decision that this anti-spyware capability will become something that's available at no additional charge for Windows users -- both the blocking capability, and the scanning and removal capabilities.' Additional information at Government Computer News." Update: 02/16 16:57 GMT by Z : Microsoft was previously considering charging extra for this service.

gpmac writes "Google executives attempted to demystify the search company's product decisions during presentations with Wall Street analysts on Wednesday. As Google Inc. has moved beyond Web search and into product areas as diverse as e-mail, photo-organizing software and mapping tools, one of the common questions for the company is how it decides where to devote resources. Looks like they are being a little more serious about it than their pigeon story would indicate."

gpmac writes "Google executives attempted to demystify the search company's product decisions during presentations with Wall Street analysts on Wednesday. As Google Inc. has moved beyond Web search and into product areas as diverse as e-mail, photo-organizing software and mapping tools, one of the common questions for the company is how it decides where to devote resources. Looks like they are being a little more serious about it than their pigeon story would indicate."

psicode writes "John Davies has announced AMQ, an effort at JPMorgan Chase & Co. to create an open-source message queuing system that can compete with proprietary message systems like IBM MQSeries and Tibco/RV. The announcement was made at the annual conference Web Services on Wall Street during Davies' presentation on February 1. eWeek has an article today with more details and some funny statements about Red Hat, SuSE and Sun possibly integrating AMQ into their "kernel". If JPMorgan Chase & Co. follows through with their announcement and they come up with a suitable open-source license, AMQ could become the Apache of messaging systems."

Glenn Fleishman writes "A report issued today by the New Millennium Research Council (NMRC) and The Heartland Institute says that municipalities shouldn't build wireless networks because it's anti-competitive and will waste taxypayer dollars. The report has some interesting points (mostly about building fiber networks), but eWeek (second page) uncovered that NMRC is a subsidiary of Issue Dynamics, which is a lobbying firm that represents most US telcos and cable operators. It's astroturf. The Heartland Institute won't reveal its funders. I wrote a long account trying to track down the connections between the sock puppets involved in publicizing the report."

Nick Irelan writes "Although it most certainly won't be easy, Eben Moglen is attempting to upgrade the GPL. He sees an opportunity to create a version of the GPL that will be able to adequately suit the needs of modern programmers. If they are implemented, his ideas will be the first major change the GPL has experienced since Richard Stallman wrote the original version. Eweek has an amazing article about Moglen's work. Linus Torvalds discussed what he believes should happen to the GPL with Eweek as well."

Nick Irelan writes "Although it most certainly won't be easy, Eben Moglen is attempting to upgrade the GPL. He sees an opportunity to create a version of the GPL that will be able to adequately suit the needs of modern programmers. If they are implemented, his ideas will be the first major change the GPL has experienced since Richard Stallman wrote the original version. Eweek has an amazing article about Moglen's work. Linus Torvalds discussed what he believes should happen to the GPL with Eweek as well."

An anonymous reader writes "The LSB will begin providing certain standards as optional modules to the core LSB standard that will enable standards flexibility and allow for a wider variety of standards, eWeek is reporing Free Standards Group officials said at the OSDL Enterprise Linux Summit today. The article goes on to say that the FSG is also looking at possibly franchising out the application certification component of the LSB to the distribution providers themselves."

isn't my name writes "We all know that OSRM has come out to offer insurance against intellectual property claims for open source software. Recently, we've seen IBM open up 500 patents and SUN up the ante with 1600. But all of these moves are targeted at F/OSS software. There's an article at IPW that looks at the state of patent insurance for non-F/OSS."

isn't my name writes "We all know that OSRM has come out to offer insurance against intellectual property claims for open source software. Recently, we've seen IBM open up 500 patents and SUN up the ante with 1600. But all of these moves are targeted at F/OSS software. There's an article at IPW that looks at the state of patent insurance for non-F/OSS."

Saint Aardvark writes "eWeek reports on the latest trick of spammers: getting around DNS-based lookups. By registering a domain *after* the spam goes out advertising it, they can get around blacklists. However, that causes all sorts of problems for ISPs and anti-spam services. Paul Judge, CTO at Ciphertrust, says "Even in large enterprises, it's becoming very common to see a large spam load cripple the DNS infrastructure.""

jamshedji writes "Crackers are using the newest DRM technology in Microsoft's Windows Media Player to install spyware, adware, dialers and computer viruses on unsuspecting PC users."

robyannetta writes "Eweek has an interesting article quoting IDC analyst Al Gillen saying "Linux is no longer a fringe player. Linux is now mainstream." He made that observation because IDC's research predicts that Linux's overall revenue for desktops, servers and packaged software running on Linux will exceed $35 billion by 2008."

ReeprFlame writes "eWeek has reported overhearing Microsoft's plans to finally get into the distributed computing market. Considering that the Windows platform has never had the ability to parallel compute in the past, it leaves great potential to the company's operating system development. From current *nix systems we have today, such a grid proves very useful, especially in the serving arena. However, we are unsure of Microsoft's target for the software. Would it be an addition to home users computers as well as the server versions of Windows? As of now it is unclear, but Microsoft probably will bring this situation to life in the near future since it does hold alot of power for them over other platforms."

nomrniceguy writes "Researchers are developing technology for ambulances to improve communications and perhaps more importantly, place virtual doctors inside in transit. A patient's vital signs and other data are beamed in real-time to the closest trauma center, where doctors can not only instruct paramedics in the field, but also prep a room to treat the critically injured once they arrive."

UltimaGuy writes "AOL plans to offer a free webmail service to compete directly with Yahoo, Hotmail and Gmail. Does this mean AOL is trying to become something which it is not?"

phoric writes "In what is believed the be the largest federal judgement in history against spammers, an ISP from eastern Iowa was awarded a $1 billion dollar judgement against three mass-mailing companies, which were said to be sending up to 10 million e-mail messages per day to the small internet provider."

shokk writes "EWeek is reporting that IBM is working on a concept called Ice Cube Storage Bricks that uses a conductive ceramic or mylar plate to transmit data between bricks across an air gap. Research center staff member Robert Gardner says that the idea is 'to walk up to the system, attach the storage and then walk away.' No mention is made of what happens when a brick in the middle of the cube needs to be replaced and the whole thing needs to be disassembled. To be really effective, this would need to be teamed up with some sort of a backplane, but the tech is new and neat."

sushant_bhatia_progr writes "eWeek has an article on how Microsoft Corp. is readying a Tablet PC game software development kit and a new Tablet-PC-specific game, both meant to attract new developers and users for Tablet PCs." From the article: "The Redmond, Wash., software maker is co-developing both the SDK and the new game, called Arcs of Fire, in conjunction with software partner 3 Leaf Development. 3 Leaf officials did not respond to a request for comment. Microsoft expects to release a first beta of both the new game and the SDK in early January."

dshaw858 writes "According to a story on eWeek, AOL has mistakenly suspended a very large number of AOL Instant Messenger (one of the most widely used IM programs) accounts, by mistake. I don't know about you guys, but this happened to me and a large percentage of friends and coworkers. AOL says that a fix should be ready by Monday."

mithridate writes "Microsoft has posted the Windows 2003 Service Pack 1 Release Candidate. eWeek has a short review of the service pack. My favorite quote from the article is, 'The company argues that the improvements are important enough that applications should be changed to accommodate them.' I know I still have not installed SP2 because of the problems it causes with SQL Server, I can't wait to see what kind of havoc it causes on the servers..."

davidwr writes "Eweek reports that Lycos is scrapping it's anti-spam campaign: 'On Friday, Lycos Europe gave up the ghost, posting a 'Stay Tuned' note on the MakeLoveNotSpam.com Web site it was using to distribute the screensaver. The Lycos Europe home page, which heavily promoted the screensaver all week, was also scrubbed clean of any references to the screensaver.' See previous Slashdot coverage from Nov. 26, Dec. 1, and Dec. 2."

phoric writes "According to eWeek, Apple has released security patches to fix 16 'highly critical' holes, one-third of which deal with the open-source Apache web server. Several of the fixes address exploits such as the bypassing of security restrictions, spoofing, and potential DoS attacks."

davidwr writes "Eweek reports Apple co-founder Steve Wozniak has a new way to prevent theft of company secrets on stolen laptops: 'Wozniak offered a peek into his vision for the company on Ziff Davis Media's Security Virtual Tradeshow, where he introduced "wOz Location-Based Encryption," an application that uses GPS tracking within a wireless hub to encrypt and decrypt sensitive data for large businesses.' Today's encryption is good enough but I do like the tracking capability. Imagine your laptop screaming 'I'm being stolen! I'm being stolen!' and paging security as the janitor walks out the door with it."