opengroup.org · Domains · Slashdot Mirror

Re:The REAL tragady of P2P by synthespian · 2005-07-17 05:17 · Score: 1 · on 56.2% of Software Developers use Open Source

Software standards such as Apache or Linux

Linux is not a "standard." POSIX is a standard, which Unixes (Linux too) follow.

Article improperly credits Project Athena for PAM by Otterley · 2005-07-13 05:43 · Score: 4, Informative · on How Linux Beats Windows in ID Management Ease

The article incorrectly states that PAM (Pluggable Authentication Modules) came out of Project Athena.

However, it was actually invented by Sun, and was eventually adopted as RFC 86.0 by the Open Software Foundation in 1995.

Jericho Forum by AYeomans · 2005-07-09 09:28 · Score: 1 · on Tear Down the Firewall

Check out the Jericho Forum - a group of major companies who also recognise that the role of the network perimeter firewall is becoming less relevant and an obstacle to business demands:

The Jericho Forum is an international forum of IT customer and vendor organisations who recognize that over the next few years, as technology and business continue to align closer to an open, Internet-driven world, the current security mechanisms that protect business information will not match the increasing demands for protection of business transactions and data in the future. Existing perimeters are full of holes. The 'walls' are crumbling. Managing the problems using today's security solutions is increasingly expensive and time-consuming.

A new approach is needed, to move from the traditional network perimeter down to the individual networked servers and devices - and ultimately to the level of the data being sent over the networks. The Jericho Forum aims to drive and influence development of security solutions, based on open standards, that will meet future business needs for secure interoperation of information systems to support collaboration and commerce over open networks, within and between organisations, based on a security architecture and design approach which the Forum calls de-perimeterisation.

Next major meeting is in Sydney on September 8th - join in the debate!

Re:Convenient... by synthespian · 2005-06-02 03:42 · Score: 1 · on Microsoft Ends Era Of Closed File Formats

Sure, OpenOffice is great, but commercial enterprises will stick with commercial solutions for which there is support.

I don't exactly get what you mean by support. My impression from the people and businesses I know personally is that Microsoft Office format is a big success not because of "support", but because there's a wealth of products built around it by third parties.
These 3rd-party products are crucial for the enterprise, stuff like Eletronic Content Management, being able to create document workflow and revision systems, and groupware. All this stuff integrates seamlessly with the Windows desktop and the Windows office applications. In any enterprise with a huge amount of paper and workflow, document management systems are a necessity. This is point OpenOffice proponents frequently forget: office applications are not about just the single desktop user but they are also about integrating seamlessly in an eco-system of content management software provided by theird-parties and accessing legacy documents. For instance, in my country, Brazil, legislation demmands that certain financial documents be stored for a period that outruns any document format you might have seen. This means people have to migrate very old sofware document records.
This is an area ISV working on open-source platforms could explore, an unexplored niche market. AFAIK, not even COLD solutions exists and COLD goes way back decades (ever since computers started processing bills.) And there are no equivalents of proprietary software in the open-source market (this shows you that open source developers are sometimes out of touch with their would-be customer base). People are developing groupware, but there are no ECM (Enterprise Content Management) solutions. Groupware, ERM, and ECM are the bulk of enterprise software.
If only the open-source community would take something like OpenOffice, or further develop AbiWord (which has nice plug-in functionalities), and integrate these with Mono, you would have made a serious dent in the Windows dominance. I mean, who wouldn't want to avoid expensive per-seat Microsoft licenses, plus per-seat ECM licenses? And software houses that provide ECM solution (e.g., the market leader OnBase) work with year-round support and customization, and we know this is a way of doing business that is viable for open-source (of course, they have per-seat licenses).
BTW, I really mean Mono, and not Java. Java is not an alternative on the long term, not only because of the Java's proprietary nature, but because Mono is gearing itself towards Windows-*Nix interoperability, to the point where software build with Windows.Forms will work on Mono. Additionally, having to depend on Sun's finances is a a suicidal investment of resources.
But open-source has major hurdles: it nees to standardize on OpenGroup and LSB That is to say, the Free Standards Group has to advanced by libre *Nix distros and vendors, so that software developers have an easier time with all the distros. De Icaza wrote something about this in this essay. Linux distros need to be reliable in terms of time frame for releases (which the commercial ones are), too.
My feeling is that Microsoft has foreseen a trend going against its closed-source format (OASIS, the Massachusetts imbroglio) and anticipated any possible open-source incursion in the field of content management. If these formats are truly opened, they've raised the bar for the arguments of any future switching to FOSS platforms+OO.org solutions (because, right now, as I've argued, there are no FOSS replacements for content management for the enterprise AFAIK, and there's a huge amo

He misunderstands fsync() by Dahan · 2005-05-12 20:07 · Score: 4, Informative · on Your Hard Drive Lies to You

According to SUSv3:

The fsync() function shall request that all data for the open file descriptor named by fildes is to be transferred to the storage device associated with the file described by fildes. The nature of the transfer is implementation-defined.

If _POSIX_SYNCHRONIZED_IO is not defined, the wording relies heavily on the conformance document to tell the user what can be expected from the system. It is explicitly intended that a null implementation is permitted. This could be valid in the case where the system cannot assure non-volatile storage under any circumstances or when the system is highly fault-tolerant and the functionality is not required. In the middle ground between these extremes, fsync() might or might not actually cause data to be written where it is safe from a power failure.

(Emphasis added). If you don't want your hard drive to cache writes, send it a command to turn off the write cache. Don't rely on fsync(). Either that, or hack your kernel so that fsync() will send a SYNCHRONIZE CACHE command to the drive. That'll sync the entire drive cache though, not just the blocks associated with the file descriptor you passed to fsync().

Re:Oh yeah, what about Java? by moocat2 · 2005-05-10 18:21 · Score: 1 · on 32-bit to 64-bit - Obsolesence Pains Again?

The most common data model in C for 64 bit programming is LP64. In this model, longs and pointers are 64 bits while ints are still 32.

In Java longs are already 64 bits which basically makes Java code 64 bit ready. If there is going to be any troubles, it will be with sloppy C code that assumes sizeof(int) == sizeof(long).

Once upon a time by davecb · 2005-05-06 10:44 · Score: 1 · on Writing Unit Tests for Existing Code?

... there was an ADL-based toolset, called if memory serves, JavaSpec, which made api testing hard but doable. As opposed to "let's not but say we did". I admit I used a hacked-up subset, but for large-scale problems being able to generate tests and test data sets via a tool was A Good Thing.

Even worth learning ADL (:-))

--dave

The reason behind sizeof(long) == 4 in LLP64 by davegust · 2005-04-25 19:10 · Score: 1 · on 64-Bit Windows Releases Now Available

There are many ways to skin the cat.

The reason Microsoft chose LLP64 to ensure transparent portability between 32 and 64 bit compiles of Win32 apps. That was the most important consideration in their mind. I wouldn't call Microsoft's choice "stupid", but practical. There are very few applications for a 64 bit integer - it would just be wasted space most often, and it complicates portability between 32 and 64 bit compiles.

The reasons the Unix crowd went LP64 (sizeof(long) == 8) is they felt LLP64 requires extensive modifications to existing specifications to support those places which should naturally become 64-bit wide. In other words, they wanted APIs to natuarally grow to 64 bit.

All Microsoft APIs, and most third party APIs already use "Windows" types (BYTE, WORD, DWORD, QUADWORD, LPDWORD, etc) that are a fixed size. This is partly due to the fact that these DLLs are linked from many languages (VB, Pascal, C). They are not very C centric. Also, we are not used to recompiling everything to use a library: we likely don't have the source. We have to link carefully. Ints and longs won't do.

I do think Microsoft's choice (LLP64) fails to follow the spirit of Stroustrup's C++ standard that: "Plain ints have the natural size suggested by the architecture of the execution enviorment."

I personally have found myself avoid long in the last 5 years. After living through the 16 to 32 bit migration, I favor int32, int64, size_t, wchar_t, etc. You just can't count on the sizeof(long). I still use int, but just for counting and indexing within functions and methods, when I know my application won't come close to needing even 16 bits. If I need more than that, I use size_t.

Re:what, only 16TB? by NearlyHeadless · 2005-04-24 04:17 · Score: 4, Informative · on Microsoft to Launch 64-bit Windows on Monday

Well, if you need an int of a particular size, you need to typedef yourself a compiler/platform specific one anyway; this has always been that way.

For C99-compliant compilers (and gcc), there is <stdint.h> which defines:

int{N}_t uint{N}_t int_least{N}_t uint_least{N}_t int_fast{N}_t uint_fast{N}_t intptr_t uintptr_t intmax_t uintmax_t INT{N}_MIN INT{N}_MAX UINT{N}_MAX INT_LEAST{N}_MIN INT_LEAST{N}_MAX UINT_LEAST{N}_MAX INT_FAST{N}_MIN INT_FAST{N}_MAX UINT_FAST{N}_MAX INTPTR_MIN INTPTR_MAX UINTPTR_MAX INTMAX_MIN INTMAX_MAX UINTMAX_MAX PTRDIFF_MIN PTRDIFF_MAX SIG_ATOMIC_MIN SIG_ATOMIC_MAX SIZE_MAX WCHAR_MIN WCHAR_MAX WINT_MIN WINT_MAX INT{N}_C(value) UINT{N}_C(value) INTMAX_C(value) UINTMAX_C(value)

Where {N} can be 8, 16, 32, and, if supported, 64

As somebody else noted, c99 also supports long long. Of course older compilers don't have stdint.h. I don't think Microsoft C does either, although I don't have the latest version.

Except that it is only the Majors that bother by swv3752 · 2005-04-20 10:15 · Score: 4, Informative · on Why Aren't More Distros Becoming LSB Certified?

Go check for yourself.

Most of registered ones are RH and Novell/SUSE, with a few others like Mandrake, SGI and Sun JDS.

See it is just the reverse of your hypothesis. It is only the commercial interests that are interested. That and you need to support the Red Hat way of file system and init and RPM.

The minors only get to play if they pony up some bucks (negligible for a Corp but significant for a non-profit volunteer org) and change things so they are done the RH way. It involves significant changes for any non-RPM based distro to get certified.

What major distros *aren't* LSB certified? by Anonymous Coward · 2005-04-20 09:28 · Score: 0 · on Why Aren't More Distros Becoming LSB Certified?

The editor seems to have done poor research on this story, as evidenced by the lack of hyperlinks backing up his assertions.... Many major Linux distributions (Mandrake, Redhat, Novell, SuSE) already have LSB certification.

The ones that don't still use the LSB and FSH (File System Hierarchy) test suites, like Debian does.

So, exactly what distributions are we complaining about? Seems like the LSB and the FSH standard are seeing pretty widespread adoption to me!

Re:Cost by root_42 · 2005-04-20 09:21 · Score: 2, Informative · on Why Aren't More Distros Becoming LSB Certified?

I didn't find this info on the Open Group's website...

Have a look here: http://www.opengroup.org/lsb/cert/docs/LSB_Fee_Sch edule.html

Re:LSB compliance doesn't ensure binary compatibil by SirTalon42 · 2005-04-20 09:12 · Score: 1 · on Why Aren't More Distros Becoming LSB Certified?

If its LSB version X runtime environment Y compliant, it will run on any distro that is LSB version X runtime environment Y compliant.

X being the version (currently 2.0) and Y being the architecture (like IA32/X86)

Here is the LSB 2.0 Runtime Environment IA32 standard: http://www.opengroup.org/lsb/cert/docs/PS_2.0/LSB_ Runtime_Environment_IA32_20_PS.html

Re:I ignore ActiveX and I hope it goes away by Anonymous Coward · 2005-04-19 05:41 · Score: 0 · on Michael Robertson Says Root is Safe

ActiveX has been steered by The Open Group since Microsoft handed over control in 1996. See the COMsource page for details of the COM/DCOM implementation for UNIX, etc.

Re:Standards compliance by NutscrapeSucks · 2005-04-18 14:34 · Score: 1 · on Michael Robertson Says Root is Safe

> something that isn't a standard, will never be a standard and would be completely undesirable as a standard

I don't really want to get into this argument, but ActiveX is actually a documented standard.

Furthermore, COM/ActiveX is a core Windows OS technology which makes it a lot more "standard" than Mozilla plugins or XPI (aka Mozilla's clone of ActiveX).

Re:MS needs to change windows fundamentally by Electrum · 2005-03-24 09:00 · Score: 2, Interesting · on IE Developer Responds to Mozilla Accusations

You missed copying the first sentence of that paragraph: "Some say that Windows NTFS does not really offer a journaled file system." Nice FUD there.

That might be trying to say that NTFS doesn't journal file data, which is the case for almost all journaling file systems (or alternatives such as FreeBSD's Soft Updates). Those that do have that feature never enable it by default: the cost is simply too great.

File system integrity (i.e. metadata) is the job of the OS and the filesystem. Data integrity is the job of the application (until it has told the OS to commit the data to the disk, i.e. fsync in POSIX or FlushFileBuffers in Win32). The OS can't attempt to do that on a general level without greatly inhibiting performance for everything. That said, it would be very useful to have a journaling API available that applications could use.

http://www.microsoft.com/windowsserver2003/communi ty/centers/fileservices/fileservices_faq.mspx

Re:Rasmussen - Wilson by Mr.+Slippery · 2005-03-19 06:33 · Score: 1 · on EDS' Secret Love For Linux Laid Bare

More realistically Linux is the kernel which is in the more technical sense the OS (OS is the software layer which manages the software, this line is not easy to draw in every OS, but with linux it is pretty clear).

An operating system is more than a kernel. Take a look at the Single Unix Specification and see what sort of things an operating system specification deals with.

If we consider terms like "Unix" and "POSIX" to be terms relating to operating systems (and we do), then the GNU system must also be considered an operating system.

GNU makes some nifty software that happens to be in the list of applications that Redhat distributes along with the Linux OS.

Incorrect. In 1984 - long before Linux was a gleam in Linus's eye - the GNU project set out to write a complete Unix-like free software system.

By the early 90s, every piece of this operating system was in place except the kernel. People started droping Linux into the center of the system and bam!, GNU/Linux

Re:hard to believe by jdgeorge · 2005-03-16 05:33 · Score: 3, Informative · on EDS: Linux is Insecure, Unscalable

Be fair, put Mr Rasmusson's words in context of a complete sentence:

Also, we are somewhat cautious about what happened with Unix - it splintered into eight applications -- until McNealy (Scott McNealy, chief executive of Sun) finally announced he won the battle and had the one surviving Unix out there.

Interesting that EDS shares SUN's view of what Unix versions are available. Imagine how surprised HP, IBM, and even SCO will be to learn that SUN has the one surviving Unix, considering:

The OS registered as compliant with the UNIX 03 specification is: AIX

Other "surviving" Unixes that are registered by the Open Group include, well, look for yourself... http://www.opengroup.org/openbrand/register/catalo g.htm

Re:Filesystem Hierarchy Standard by EnronHaliburton2004 · 2005-03-07 05:55 · Score: 1 · on OSS Unix: Dividing & Conquering Itself

It bugs the heck out of me also. Fiddling with crazy and inconsistant directory structures gets in the way of doing the real work.

Debian follows the LSB pretty well. RedHat Enterprise also seems to do ok.

I think most of the modern major distros use the FHS. At least, they are certified by the LSB, but I don't know if that means they strictly follow the LSB.

In my experience, most of the modern distros follow the LSB pretty well. Most of the confusion with the directory structure has to do with old distros, legacy products, and third party products who won't comply the LSB.

Re:Conspiracy theory by b17bmbr · 2005-02-25 21:51 · Score: 1 · on Is the iPod Shuffle Playing Favorites?

true, but i can't imagine that they couldn't do it with an int[] or something like it: hell, even c has int rand(void) which could fill an array and i imagine is in the c libs used by apple. not that i'd know how to do it in c though.

Re:I saw this a while ago by ValiantSoul · 2005-02-12 18:27 · Score: 1 · on Random Number Generator That Sees Into the Future

Woops, forgot to post my source for the code:
http://www.opengroup.org/onlinepubs/009695399/func tions/rand.html

Re:EULA, DMCA and Reverse Engineering. by Trepalium · 2005-02-03 16:48 · Score: 1 · on Gosling: Partnership with Microsoft Meaning Less and Less

Microsoft's file sharing uses NETBIOS for naming, etc, but there are other elements to it, too. Microsoft published a draft to the IETF for CIFS (formerly SMB). It's only a subset of the functionality that Windows actually supports, and it was chock full of errors and omissions. There were also several books written about SMB. The earliest I can find is Protocols for X/Open PC Interworking: SMB, Version 2, published October 1992. The first version may have been published more than two years earlier, in January 1990, but I'm having difficulty finding that information. The Samba site says that the first version, developed in 1992, was based on reverse engineering the wire protocol of the MS-DOS SMB client. The later versions may have made use of this other documentation.

Vendor Dependent Death Marches VS Open Kaizen by NZheretic · 2005-01-30 18:47 · Score: 1 · on Struggling With Major IT Projects

Having been involved in a couple of in house enterprise projects and having spoken to dozens of local developers on the subject of failed and successful projects, IMHO the three major reasons for large in house software project failure are:
1) Starting a project from scratch staffed by only inadequately experienced developers;
2) Changing members ( managment and programmers ) in projects that have failed to fully document the project;
3) The Vendor Dependent Death March : When in house projects are dependent on proprietary vendor specific APIs/functionality then the project is almost guaranteed to fail when dependent vendors either fails to deliver or changes/breaks the API used.

IMO the latter vendor dependent death march is the the major outside factors for the failure of large software projects. In most cases, in house development teams just cannot keep up with the vendor brand-new-innovative-reason-to-upgrade "features" of each release.

Larger in-house projects take around one to three years to mature, and need around a seven year window to recover the ROI. Porting existing software to the vendors new system often takes more effort than the development of the original software ( pity the Visual Basic coders who have to upgrade millions of lines of VB to VB.NET ).

One solution to the Vendor Dependent Death March is to build upon stable vendor independent foundations, augmented with open sourced software.

Over the two decades one api set has remained relatively constistantly implemented by all OS vendors : POSIX . Linux and all of the Unix based systems implement native APIs that follow the POSIX standard closely, and some offer fully compliant libraries as an add on. The Linux standard basealso offer a cross vendor foundation.

The above solid foundation can be safely augmented using open source licensed software, by being rebuilt in house so that it runs from subdirectories of the project ( /opt/[organization]/[project]/[package] ). The distribution/OS Vendor can then ship conflicting versions of dependent packages without it breaking the project code. The in house developers can then test and port to the new version at their leisure.

Vendor dependent user interface systems are fickle and often are the braking point for many failed in house projects. The solution is to build client/server code that uses a standard browser interface or use a standard GUI networked interface that has remained backwardly compatable to application written back in 1986: The X[11] Protocol. You can have a X based application running on a server sitting behind an internal firewall and it will run productively for over a decade. Every OS platform has multiple vendors who supply X11 client side servers, this is one interface that is futureproof.

When interfacing with any changeable or vendor specific system , build a connecting system that runs as standalone binary ( or plugin DDL ) that sits between the project code and the application/library. Future developers can quickly hack the independent module without touching the base project source code. This strategy has saved my sanity a number of times.

If at all possible ( subject to NDAs ) develop as much of the code as possible as an open source project. Even if only a couple of other individuals or organizations end up deploying software from the same base, it will give your developer and managers feedback from outside developers who often more free of the inside office politics to give a more honest opinion on the quality of the source code.

Repost