Slashdot Mirror
2.6 and 2.7 Release Management
An anonymous reader writes: "A recent discussion on the Linux kernel mailing list debated whether the upcoming 2.6 and 2.7 kernels should be released at the same time instead of first stabilizing the 2.6 'stable tree' then branching the 2.7 'development tree.' The theory behind the proposition is to keep "new" things from going into 2.6 once it is released, focusing instead only on making it stable. On the flip side of this argument is the possibility that with a 2.7 kernel in development, there will be too little focus on stabilizing the 2.6 kernel.
The resulting debate makes for an interesting read."
FUCK YOU ALL
You're all niggers.
Thank you.
I am doing fine with 2.4.x, but release fight? How can it be possible, just release the thing.
I once saw a mustard bottle that was shaped like a ketchup bottle.
No, really!
I'm burning karma pointlessly, and no one will read this anyway.
I didn't mind having respectable karma when it was just a number (hell, I whored my little ass off to get there), but I refuse to be associated with the word "Good". I think it would feel much better to be "Bad".
So, this is me, falling slowly (or not so slowly) back into the comfortable 0-5 karma range. I'll probably dip down into -1 for a while just for the hell of it. Back in the day, I was a pretty good troll.
Oh, and by the way, fuck all this troll grouping shite. I'm sure it's nice to have something to mindlessly blather on about and poison your .sigs with, but it's getting stupid.
Whatever happened to the art of trolling? The whole idea is to prove that your takers are fools, not to annoy them. Crapflooding, PWP, and all that were sometimes funny, oftentimes creative, but now it's all old hat, isn't it? Nobody even tries for a bite anymore.
Trolling was once a noble, intellectual game. Now it's just a bunch of fuckwits copying and pasting.
Lame.
--
pants ahoy
n/t
I wanna snot some tacos! Hey, Mr. Taco Man, join me in a circle-snot?
THE PORN COUNT: Bringing Porn to Slashdot, Daily.
I think 2.6 should be patched first. Coming from the west siiiiiiiiiiiiiiiiiiiiiide.
I will not be updating for a while. The neverwinter nights developers should be as fast to release their linux client, as the linux developers are to release kernels. Good job linux hackers. Bad job neverwinternights crew.
there will always be a kernel in development and one being stabalized.... its a wash either way.
i would recommend the stabalization of 2.6 before the branch of 2.7 (the initial arguement) and i think the flip side is incorrect... just because 2.7 is 'in the works' doesn't mean that the 2.6 hackers are going to take a nap on their work
MARIJUANA, SHROOMS, X: ONLINE?! - E
Keeping the kernal stable is much more important than adding more features. That's why most of us have migrated to linux in the first place.
If I don't have to reboot in 6 months or beyond, then I'm happy with that.
Opensource=Openmind=Freedom
Do the different colored m&m's actually taste different or is it all just psychology when someone says "greeen is the best"
Stupid fucks. Which version is actually going to be useful? 8.3? 10.2?
I would release them at the same time. Just as now, with 2.4 and 2.5, there are people who are very good at stabilizing current code, and people very good at developing new code. Some folks can't stand working on new things when the old need work, and vice versa.
I see this as having two benifits. First, it will help with the ``Most things work pretty well---let's go ahead and release it.'' attitude. The 2.4 series has only recently gotten stable enough to reliably use in a production environment, and not everyone agrees on that even.
Second, it will allow people to focus on what they are good at. The 2.6 series will mature much faster without adding new features in every release. Sure, there are bound to be a few gotchas, but if the focus is on stabilizing the code, they will be out by the 2.6.3 or 2.6.4 release. At the same time, people will be adding to 2.7, which should mean that there is much less time between stable kernel series releases.
I'm all for it!
--Wyatt
Karma: Marginal (mostly due to the border around the website)
I really wish michael would quit wanking over the keyboard...
*wank*
Offtopic!
*wank*
Redundant!
*wank*
Flamebait!
*wank*
Troll!!
*wank*
*wank*
*wank*
Bitch slap!!!!
-- Linus Torvalds
It's spelled "kernel".
You must be one hell of a lunix user.
when a man can do "the splits" all the down to the ground does it mean he isn't a man or that he is gay?
Whats black, blue and green and doesnt like sex?
The Girl Scout locked in my basement.
Whats the worst part about having sex with a six year-old?
Getting the blood out of your clown suit.
Whats the best thing about getting a hand job from a five year-old?
That little hand makes your thing look really huge.
Guy comes home from work to find his girlfriend sitting on the porch, crying.
Whats wrong, honey?
Im leaving you! I just found out youre a pdophile!
Pdophile? Why, thats a pretty big word for a ten year-old.
How can you tell when your sisters on her period?
When your dads dick tastes like blood!
Two pdophiles are lying on a beach tanning, one turns to the other and says, Excuse me, youre in my son.
What is the sickest sound you hear when fucking a nine year-old?
Her hips snapping!
What is the best sound you hear when fucking a 13 year-old?
Her hips snapping!
Whats 18 inches long, blue, veiny, and makes a woman cry?
Crib death.
How could the mans seven year-old son tell that his dad had fucked his eight year-old sister? His dads weiner tasted like blood!
Watson returns home to find Holmes in bed with a child. He shouts, Is this some sort of a schoolgirl?
Holmes replies, Elementary, my dear Watson.
So I was having sex with my girlfriend, and I decided I wanted to get kinky and try and do her in the ass. So I slipped around back; she looked over her shoulder at me and said, My, how presumptuous of you. I said, Presumptuous? Thats a big word for a ten year-old.
Two guys are walking down the street when a beautiful woman passes. The first guy says, Damn! Id love to tear her clothes off, do her in the rear, smear my fces all over her, slice off her breasts, chop her into little pieces, put her in a garbage bag and toss her into the river!
Second guy says, Yuck! Youre a sick bastard!
First guy says, Whatre you? A fag?
A kindergarten teacher is asking the kids what their father does for a living. All the kids answer except for Little Johnny. The teacher asks Little Johnny what his Dad does and Johnny replies, My dad is dead.
The teacher says, Thats terribile, but what did he do before he died?
Little Johnny replies, He turned blue and shit all over himself!
A guy calls in sick to work.
Whats wrong? asks the boss.
Im sick, the guy replies.
You sound all right.
No, Im really sick. Believe me.
Listen, you were fine yesterday, and we have a lot of work today. I want you in here. You cant be that sick!
Dude, I just banged my sister. Dont tell me Im not sick.
A little girl accompanied her father to the barbershop. While her dad received a haircut, the little girl stood next to the barber chair, enjoying a snack cake. The barber smiled at her and said, Sweetheart, youre going to get hair on your Twinkie.
I know, the little girl replied. Im gonna get tits, too.
An older man and a small boy walk hand in hand through the woods.
Boy: These woods sure are spooky!
Man: You think youre scared, Ive gotta walk out of here alone.
Whats the difference between Neil Armstrong and Michael Jackson?
One walked on the moon, and the other rapes little boys.
Has anyone read Michael Jacksons new book, The Ins and Outs of Child Rearing?
Q: Whats the difference between a dead baby and a golden delicious apple?
A: I dont cum all over the golden delicious apple before I take a bite out of it.
Q: Whats the difference between a dead baby and my girlfriend?
A: I dont kiss my girlfriend after sex.
Q: Whats the difference between a dead baby and a table?
A: You cant fuck a table.
Q: Whats special about a dead baby over all other forms of life?
A: You can achieve deep throat from whichever way you enter.
Q: What do you have when you have four dead babies, take away two, and add five more?
A: An orgy!
Q: Whats better than three 14 year-olds?
A: 14 three year-olds.
Q: Whats white and bobs up and down in a babys crib?
A: A pdophiles ass.
Q: Whats the safest way to play with a baby?
A: With a condom.
Q: Whats more fun than feeling up a dead baby?
A: Feeling up a dead baby with three nipples.
Q: What does a baby and a Pinto have in common?
A: Theyre fun to ride until they die.
Q: What do you get whan you dislocate a dead babys jaw?
A: Deep throat.
Q: Whats the difference between a baby and a grandmother?
A: Grandmothers dont die when you fuck them in the ass.
Q: Whats the best sound in the world?
A: Hearing dead babys hips crack under pressure!
Q: Whats worse than a having sex with a dead baby?
A: Having sex with a dead baby filled with razor blades.
Q: How do you stop a baby from choking?
A: Take your dick out of its mouth.
Q: Whats worse than finding a dead baby on your pillow in the morning?
A: Realizing you were drunk and made love to it the night before.
Q: How do you make a baby cry twice?
A: Wipe your bloody cock on his teddy bear.
Whats better than sex with a twelve year-old boy?
Absolutely nothing.
- poopbot: because even your grandmother can use lunix
"2.6 and 2.7 Release Management" - Most Boring Slashdot Topic Ever!
Isn't this a problem faced by most software projects? Stabilize resent release (bug/feature fix) or move team to next version/revision.
I would recommend dividing the team up.
See, to me when someone calls it a "stable release", that means it's already been stabilized. Sure, you're going to have the occasional bug fix here and there, but actual "stabilization" should've been done in the 2.5.99 range, ie. the previous development branch. Once the stable tree is released, there shouldn't be a need to stabilize it and branching the new development tree right then makes sense. There should not be an "development" per se in the stable release after that, only the occasional maintenance.
.0 release of the kernel.
If the kernel maintainers would just grasp this one simple point, maybe this issue wouldn't be one, and maybe people wouldn't laugh at the
From the bsd world, there is the concept of "backport" which is where a feature in the development kernal is ported back to a previous stable kernal series.
Great for bug fixes, and other things in the middle ground.
Certainly if there is interest, a set of patches to a stable kernel, or even another -someone kernel series can be developed. If these turn out to be in demand, and stable enoug, they can be officially included.
A large reason for the awful VM mess that 2.4 was in around 2.4.8 - 2.4.11 or so was largely due to the fact that a totally new VM was just kind of "thrown in" to the "stable" branch, probably mainly cause there wasn't a 2.5 branch yet at that point (as I recall). This is the sort of thing that branching earlier would hopefully prevent. While the stable branch may not have some of the "bells and whistles" it could have gained from keeping the branches together, at least hopefully a mess like that can be avoided.
Then again, that's just my opinion :)
I use Windows.
Is that trolls are really good at getting the first five to 10 posts all to themselves. But then karma whores swoop in pretty fast right after that. Where are all the follow up trolls?
It can only lead to improvement. Remember the whole affair of dropping in a completely new VM right in the middle of the supposedly "stable" 2.4 kernel branch? BSD has never had problems like these, and it pains me to see Linux doing silly stuff like that. I await the day when I can safely assume that something located in the "stable" branch really is stable.
Friends don't let friends use multiple inheritance.
The linux kernel,. besides stability .. what sort of things do they want top add/improve?
.. such as being able to allocate how much CPU, memory, or disk space a particular user or process can use. These are things that solaris has had for a long time .. and it seems that linux kernel developers arent interested in adding those features .. how can linux hope to take over the enterprise server market without it?
better networking? better I/O performance?
what about multiple CPU support?
The most important thing for me would be resource management features
Does anyone have any info on what's happening in the area of adding resource management features to the linux kernel?
Actually any info on what cool features they are working on for future releases would be appreciated
I mean there is almost no modding down of many of the 0 scored trolls. Seems like there might be a problem with the bitchslap script, but that no suprise I mean linux and perl and mysql. They go perfect together since they are all so perfectly lame.
...would be a good idea IMHO if this kept Linus away from working on the stable branch.
Look at what happened with 2.4, we had the change to VM, 2.4.11 which needed immediate patching and is tagged as dontuse, 2.4.13 similar problems, 2.4.15-greased-turkey released by Linus for Thanksgiving and a nice syncing problem.
When it comes to deciding what is and is not allowed into the kernels the buck stops with Linus. This is why I think Linus should stick with the development kernels where a major change can have all its kinks worked out in relative safety. The stable branches should be maintained by someone who only has authority to accept and apply bug fixes.
I've got a fever and the only prescription is more COBOL.
I wish Linux development would stop and people would just switch to FreeBSD. It already has many of the things that Linux is wasting human lives re-inventing and re-implementing, many times, incorrectly, such as a stable VM system. Sigh.
I like reading the -1 posts when I'm bored. They're funny as hell. The first few on this topic were especially funny/stupid. Alarmingly though, I often find things which *I don't* think should have been modded down into oblivion, and so I always wonder if there are good things I'm missing because of this modding.
The scripts seem to reactivated and I wanted to get in at least one more post before I have to rotate IP numbers.
No. Not even remotely, screw u
When it comes to how much resources a particular use can, well use, PAM is your friend. It can limit data, ram usage, CPU time, number of processes, and user priority.
Spencer Ogden
Linux kernel development is slowing down rapidly with current economic situation. In the next year or so Linux could be facing the same situation that FreeBSD is now. I mean windows will always be around as long as Microsoft is around and Microsoft isn't going anywhere but linux is just a bunch of dudes hacking. What happens when Linus, Alan and others start getting bored and give up the JKH did.
Most of our opinions on this really dont matter. I have run unstable kernels for a long time and never had any trouble with them. The only time it is really an issue is with production servers, which most of us dont run. I think those of us who dont run production servers should refrain from submitting our opinion and leave the line clear for those who it really affects.
Im not here now... Im out KILLING pepperoni
If 2.7 begins before 2.6 is stable aren't we in danger of seeing a win9x syndrome in that bugs will live for ever and instead of being fixed they will be coded around. I fear very much the long term affects on the kernel and in turn Linux if the trees are split prior to a stabilization period. I am a developer, not on this level, but I have seen the affects of splitting a code base simply to continue developing and at the same time trying to patch existing "production code" and then port things back and forth. It is a very bad idea!! Usually what happens is things don't get back ported they are only provided doing a major upgrade, again the microsoft way of bug fixing.
Granted, you will always have some cross patching, however I think the idea of building off of a clean base is very important. For example, you would not put new tires on your car if the engine is not running, right?
Essentially, I think the issue here is one of knowing the base is clean versus drudging on in the dark despite the fact that you have been offered a lantern.
To put this most bluntly I would call this Microsoft syndrome. As I said before win9x is the perfect example of a system that was never stabilized rather it was constantly released to the unsuspecting public as upgrades which where really bug fixes and the monkeys went back to the keyboards never addressing issues raised by numerous consumer requests on the so called production release because the devel team would rather work on that new feature because it is more interesting than maintaining the existing code base.
I am being harsh here I know, but I am trying to view this in the long term. I feel that this would weaken the kernel and as I said weaken Linux which would in the end at least decrease corporate trust in the stability of Linux or at worst give M$ what it wants, Linux's death,
Maybe I am extreme, feel free to beat me but I know you have to have a clean starting point before you can move forward otherwise you will constantly be taking steps backwards which eventually leads to stagnation and death.
Just my thoughts
How about first focusing on making a decent (standard) GUI that is comparable to Windows 2000 in ease-of-use instead of having all these "window managers"?
I really don't give a shit how they manage releases.... AS LONG AS IT WORKS.
Hey nerds!
I like it when the future and the past both happen concurrently, in the present. So let's mix in a little 2.7, and a little 2.6. But it sure would be nice if like (seemingly)ALL of the dev efforts weren't focused away from the stable branch...
Now if we could only manage to get that 2.4.19 released... It's been what, like 9 months since 2.4.18's debut...
Release version 2.71828 and call it quits.
I've got mail I've got mail
yaaaaaaaaaa!!!!!!!!!
Alan Thicke's Journal
My Slashdot ads say "
You've got male. You've got male.
So, the best time to let 2.6 "escape" is when you're fairly confident it's "ready" and won't need patching.
Of course, you'll be wrong -- it will need patching, or backports of useful features that just didn't make it in time.
But, the idea is that these patches or backports should be trivial "oopses" where the change does not require massive code review, or the backport is clearly something that was "99% done" already.
So, my suggestion is release 2.7, and hold off on release 2.6 until the obvious release-related "oops"es are found, say 1-2 weeks, then try your best to release a 2.6 that won't need patching. It will anyway, but don't lose sleep over it.
You could've hired me.
No shit. What a fucktard. But, if was Taco's scat slave, I'd be messed up too. Oh,well at least LNUX will be delisted soon, then they'll go bankrupt.
Who you callin' an ass clown, cuntface?
Anyone who runs production systems expects (demands?) even-numbered releases to be stable.
There's no serious linux admin out there that wants to have to test a new supposedly "stable" kernel for a week before employing it on a bunch of mission critical boxes. Say I want/need a feature in the new release of the "stable" kernel, should i expect anything less that a kernel that is rock solid? There's people still running 2.2 series kernels because of the whole 2.4 feature creep fiasco.
All the stability issues should be worked out before a kernel is considered "stable." Seems to make sense to me...
Unstable series often start off with versions which break everything, because whatever fundamental change is first up for the series has gone in and the drivers and so on haven't been updated. It was a long time in 2.5 before it was really sensible for people to work on it (aside from the bio work), and people were actually doing their development on 2.4 even after 2.5 had started. In part, this wasn't even an issue of stability: Linus just wasn't taking patches on other subsystems. If 2.7 starts when 2.6 comes out, and major changes go into 2.7.1, people will stay on 2.6 until the first major set of changes in 2.7 has stabilized. Provided that the first thing under development in 2.7 isn't broken in 2.6 (in which case, the people who could fix it would be working on 2.7), everyone important to fixing obscure bugs in 2.6 will still be working on 2.6, but sitting on their patches, because they can't go into 2.6 (not fixes). As the interfaces for 2.7 (where they differ from 2.6) become known, people will start using them, but, until that point, 2.6 and 2.7 are basically the same, except that you can get 2.6 running to develop on.
If they go bankrupt, who will we troll? And what will we do without cmdrtaco.pl to make fun of!?!?!?! NOOOOOOOOOOOOOOOOO!!!!
-- Linus Torvalds
Introduction
.NET Server operating system will provide many important new security features and improves on the security features originally included in Windows 2000 Server.
.NET Server is a solid step towards making this vision a reality.
.NET Server that improves reliability and helps ensure a safe computing environment. It reduces the number of bugs and security holes caused by common programming mistakes--as a result, there are fewer vulnerabilities for attackers to exploit.
.NET Server will provide a more secure and economical platform for doing business
.NET Server Family will provide the following:
.NET Server will provide many new and improved features that combine to create a more secure platform for doing business. .NET Server will provide Internet security using a software-based firewall called Internet Connection Firewall (ICF). ICF provides protection to computers directly connected to the Internet, or to computers located behind an Internet Connection Sharing (ICS) host computer that is running ICF. .NET Server enables the authentication and authorization of users and computers that connect to wireless and Ethernet LANs. This is accomplished by Windows .NET Server support of the IEEE 802.1X protocols. (IEEE 802 standards define methods for accessing and controlling LANs.) .NET Server will let a system administrator use policy or execution enforcement to prevent executable programs from running on a computer.
.NET Server will provide security for both Ethernet and wireless LANs that are based on IEEE 802.11 specifications, and that support public certificates deployed using autoenrollment or smart cards.
.NET Server will provide a secure store for user credentials, including passwords and X.509 certificates.
.NET Server the SSL session cache can be shared by multiple processes. This reduces the number of times a user has to reauthenticate with applications, and reduces CPU cycles on the application server.
.NET Server will make it easier to deploy a public key infrastructure, along with associated technologies like smart cards.
.NET Server will make it possible to automatically enroll and deploy certificates to users--and as certificates expire, they can be automatically renewed.
.NET Server will make it easier to securely extend access to your network for individuals and other businesses that need to work with data or use resources.
.NET Server. For example, by associating a Passport identity with an Active Directory identity a business partner can be authorized to access resources through IIS, rather than having to logon directly to a Windows network. Passport integration will provide an equivalent single sign-on experience using IIS. .NET Server to set up a cross-forest trust between their forest and yours.
.NET Server will let you take advantage of your existing IT investments, and extend those advantages to your partners, customers, and suppliers by deploying key features like cross-forest trusts and Passport integration.
.NET Server will provide services that create a more secure environment for doing business. It's easy to encrypt sensitive data and software restriction policies can be used to prevent damage caused by viruses and trojans. And Windows .NET Server is the best choice for deploying a public key infrastructure; its autoenrollment and autorenewal features make it easy to deploy smart cards and certificates across the enterprise.
Businesses have extended the traditional local area network (LAN) by combining intranets, extranets and Internet sites; as a result, increased system security is now more critical than ever before. To provide a secure computing environment, the Windows
Trustworthy Computing
Viruses exist and software security is an ongoing challenge. To address these facts Microsoft has made Trustworthy Computing a key initiative for all its products. Trustworthy Computing is a framework for developing devices powered by computers and software that are as secure and trustworthy as the everyday devices and appliances you use at home. While no Trustworthy Computing platform exists today, the basic redesign of Windows
The Common Language Runtime
The Common Language Runtime (CLR) software engine is a key element of Windows
CLR verifies that applications can run without error and checks for appropriate security permissions; making sure that code only performs appropriate operations. It does this by checking for things such as: where the code was downloaded or installed from; whether it has a digital signature from a trusted developer; and whether the code has been altered since it was digitally signed.
Benefits
Windows
Benefit Description
Lower Costs This results from simplified security management processes such as access control lists and Credential Manager.
Implementation of Open Standards The IEEE 802.1X protocol makes it easy to secure wireless LANs from the threat of eavesdropping within your business environment.
Protection for Mobile Computers and other New Devices Security features such as Encrypting File System (EFS), certificate services, and automatic smart card enrollment make it easier to secure a full range of devices.
EFS is the core technology for encrypting and decrypting files stored on NTFS volumes. Only the user who encrypts a protected file can open the file and work with it. Certificate Services is the part of the core operating system that allows a business to act as its own certification authority (CA) and issue and manage digital certificates.
Automatic smart card enrollment and self-registration authority features provide enhanced security for enterprise users by adding another layer of authentication; this is in addition to simplified security processes for security conscious organizations.
To top of page
New Features and Improvements
The Windows
* A more secure platform for doing business.
* The best platform for your public key infrastructure.
* Secure extension of your business to the Internet.
A More Secure Platform for Doing Business
Windows
Feature Description
Internet Connection Firewall Windows
Secure IAS/RADIUS Server The Internet Authentication Server (IAS) is a Remote Authentication Dial-in User Server (RADIUS) that manages user authentication and authorization. It also manages connections to the network using a variety of connectivity technologies, such as dial-up, virtual private networks (VPNs), and firewalls.
Secure Wireless and Ethernet LANs Windows
Software Restriction Policies Windows
For example, specific corporate-wide applications can be restricted from running unless they're executed from a particular directory. Software restriction policies can also be configured to prevent virus-infected or malicious code from running.
Security Improvements for Servers on Ethernet and Wireless LANs Windows
These security improvements enable access control to Ethernet networks in public places like malls or airports. Authentication of computers within an extensible authentication protocol (EAP) operating environment is also supported.
Increased Web Server Security Information security is a critically important issue for organizations everywhere. To increase Web server security, Internet Information Services 6.0 (IIS 6.0) will be configured for maximum security right out of the box--its default installation is "locked down."
Advanced security features in IIS 6.0 include: selectable cryptographic services, advanced digest authentication, and configurable access control of processes. These are among the many new security features that enable you to conduct business securely on the Web.
Encrypting the Offline Files Database The option to encrypt the Offline Files database is now available. This is an improvement over Windows 2000 where cached files could not be encrypted.
This feature supports the encryption and decryption of the entire offline database. Administrative privileges are required to configure how offline files will be encrypted.
FIPS-compliant, Kernel-mode, Crypto Module This cryptographic module runs as a driver in kernel-mode and implements Federal Information Processing Standard (FIPS)-approved cryptographic algorithms. These algorithms include: SHA-1, DES, 3DES, and an approved random number generator.
The FIPS-compliant, kernel-mode, crypto module lets governmental organizations deploy FIPS 140-1-compliant, Internet Protocol Security (IPSec) implementations using:
* L2TP (Layer Two Tunneling Protocol)/IPSec VPN client and server.
* L2TP/IPSec tunnels for gateway-to-gateway VPN connections.
* IPSec tunnels for gateway-to-gateway VPN connections.
* IPSec-encrypted, end-to-end, network traffic between client and server, and server to server.
New Digest Security Package The new digest security package supports the digest authentication protocol, along with RFC 2617 and RFC 2222. These protocols are supported by both Microsoft Internet Information Server (IIS) and the Active Directory® service.
System Security Improvements Important improvements have been made to ensure overall system security including:
* Increased performance improvement of over 35 percent when using the secure sockets layer (SSL).
* IIS is not installed by default. To deploy IIS, it first has to be installed using Add/Remove Programs in the Control Panel. Buffer checking capability in Microsoft Visual Studio®. (Buffer overruns are commonly used by hackers to exploit a system.)
Credential Manager Credential Manager in Windows
These credentials provide a consistent, single sign-on experience for users--including roaming users. A Win32® API is available that allows server- and client-based applications to obtain user credentials.
SSL Client Authentication Improvements In Windows
To top of page
The Best Platform for Your Public Key Infrastructure
Windows
Feature Description
Certificate Autoenrollment and Autorenewal These important new features dramatically reduce the amount of resources needed to manage X.509 certificates.
Windows
Certificate autoenrollment and autorenewal make it easier to deploy smart cards faster, and improve the security of wireless (IEEE 802.1X) connections by automatically expiring and renewing certificates.
Windows Installer Digital Signature Support Digital signature support enables Windows Installer packages and external cabinets to be digitally signed. This lets IT administrators provide a more secure Windows Installer package, which is especially important if a package is sent over the Internet.
Certificate Revocation List (CRL) Improvements The certificate server included in Windows.NET Server now supports delta CRLs. A CRL makes the publication of revoked X.509 certificates more efficient, and makes it easier for a user to retrieve a new certificate.
And because you can now specify the location where a CRL will be stored, it's much easier to move it to accommodate specific business and security needs.
To top of page
Secure Extension of Your Business to the Internet
A business needs a secure way to communicate with employees, customers and partners that are not located within its intranet. Windows
Feature Description
Passport Integration A Passport identity can be mapped to an Active Directory identity within Windows
Cross-Forest Trusts If you're working with a partner or company that has an Active Directory forest deployed, you can use Windows
This allows you to explicitly trust certain, or all, users or groups in the other forest. You also have the capability to set permissions based on user or groups that are resident in the other forest. Cross-forest trusts make it easy to conduct business with other companies using Active Directory.
To top of page
Summary
Efficient and secure networked computing is more important than ever for a business to remain competitive. Windows
Windows
Getting Secure and Staying Secure
Microsoft is committed to doing what's necessary to help customers get secure and stay secure. The single best thing you can do to maintain the health and security of the computers in your organization is to stay current with the latest security updates as they're made available.
Subscribe to the Microsoft Security Notification Service
This is a free e-mail notification service that provides accurate information to keep you informed about, and protected from, malicious attacks.
You can also read security bulletins and other information about Microsoft product security on http://www.microsoft.com/technet/security.
Odd numbers RULE.
Make the even numbers the silly-branch of the kernel, I say. There is stability in odd numbers! You can hack down a man very easily if he is a believer in even numbers!
A pirate walks into a bar, with a ship's steering-wheel in his pants. After a few drinks, one fellow can't take it any more, and belts out to the pirate "Hey mister, you have a ship's steering-wheel in your pants!?!".
To which our pirate responds: "Aye, it's drivin' me nuts!"
Got the point?
Oh, slashdot will still be around. I am sure all the slashbots will have a pledge drive and suck enough dick to keep the site up. Tro.lls will descend on he site like a shit-hurricane.
Who you callin' an ass clown, cuntface?
[ ...Putting on my "politically incorrect" hat... ]
It's a common Open Source Software problem: there is the last release, and there is the developement branch.
Developers would all prefer that you use the developement branch, report bugs against *that*, provide patches for the bugs against *that*, do all new work in the context of *that*.
But it's not how things work, outside of an Ivory Tower.
In the real world, people who are using the system are using it as a platform to do real work *unrelated to developement of the system itself*.
I know! Unbelieveable! Heretics! Sacreligios!
FreeBSD has this disease, and has it bad. It very seldom accepts patches against it's last release, even in the developement branch of the last release, if those patches attempt to solve problems that make the submitted work look suspiciously like "developement". The cut-off appears to be "it fixes it in -stable, but would be hard to port to -current; do it in -current, as your price of admission, and back-port it instead, even if you end up with identical code".
The only real answer is to keep the releases fairly close together -- and *end-of-life* the previous release *as soon as posible*.
The FreeBSD 4.x series has lived on well past FreeBSD 4.4 -- supposedly the last release on the 4.x line before 5.0. FreeBSD 4.6 is out, and 4.7 is in the planning stages.
It's now nearly impossible for a commercially paid developer to contribute usefully to FreeBSD, since nearly all commercially paid developers are running something based on -stable. FreeBS -current -- the 5.x developement work -- is *nearly two years* off the branch point from the 4.x -stable from which it is derived.
Linux *MUST* strive to keep the differences between "this release" and "the next release" *as small as possible*. They *MUST* not "back-port" new features from their -current branch to their -stable branch, simply because their -current branch is -*UN*stable.
Delaying the 2.6 release until the 2.7 release so that you can "stabilize" and "jam as many 2.7 features into 2.6 as possible" is a mistake.
Make the cut-off on 2.6. And then leave it alone. People who are driven by features will have to either run the developement version of 2.7, or they will simply have to wait.
Bowing to the people who want to "have their cake and eat it, too" is the biggest mistake any Open Source Software project can make.
Don't drag out 2.7, afterward, either... and that's inevitable, if everything that makes 2.7 desirable is pushed back into 2.6. Learn from the mistakes of others.
-- Terry
Kernels don't get truly stable until you get thousands of people using them, but all those thousands of people aren't going to install a kernel until it's deemed a stable release.
Release candidate kernels help alleviate this somewhat, but you can never really duplicate what happens when the bulk of normal users stand using it on an everyday basis.
...skip both and go straight to 3.0! Oh wait, let's make it 4.0...few months longer and we could have 5.0...
If you after 2.6 emidietly start working on 2.7 then maybe you didn't do a good enough job with 2.5.
Slashdot will be sold to Microsoft, and the user database to Doubleclick. Millions of geeks will descend on Redmond and tear Gates to shreds, then whoever runs Doubleclick.
-- Linus Torvalds
Would starting the new development branch immediately after the stable release help? Hardly. It's the time when a lot of work has to be done on the stable branch.
But what if we make sure that the stable kernel is indeed stable when it's released, not after the "stabilization"? The only solution to make kernel stable is to test it a lot before it's released.
I don't think we should be afraid of "debian syndrome". Kernel is much more monolithic than a disribution, and if e.g. IDE doesn't work well, it takes much more efforts to downgrade it safely compared to downgrading e.g. Mozilla.
The fundamental problem with the development branch is that issues with one part of the kernel affect all developers and testers. If I e.g. want to test ACPI and know how to fix it, but I don't know how to fix IDE, I won't test the latest 2.5 kernel.
I believe that the best solution would be to have branches for different subsystems. IDE changes would be merged to the trunk only when they are stable enough for other developers. It's important that the development on the branches is done openly, step by step, so that an interested developer could find the exact place where a bug was introduced. But this style of development doesn't require doing everything in the trunk. In fact, to keep the kernel relatively stable the development should be done on specialized branches.
More stable development kernel would mean more testers. More testers would mean stable release, which is truly stable, at least compared to 2.2.0 and 2.4.0. And that would eliminate the need to force developers on stabilizing the branch that is supposed to be stable form the beginning.
4. The enter beast was so unyeilding, it was known that the only one person who ever understood it, had to keep a journal just to keep track of the beast (Seriously). This was one of the major reasons that ticked off Linus and I believe the reason why he pushed the new VM.
what is the "enter beast"?
cpeterso
The funny part is that FreeBSD figured this out 10 years ago.
Couldn't the problem be solved by brancing the unstable first, then releasing the stable branch when it's ready?
For example, let's say that we're happy with the feature set in the 2.5 unstable series. Instead of putting off waiting for all of the bugs to get shaken out and call it 2.6, just switch from 2.5 to 2.7 on the unstable development side. Linus can pass the reins off to someone he trusts, we can have a GROF (Get Rid Of the Fin) party and his trusted lieutenant can finish stabilizing 2.5 into 2.6 without him.
This solves the problem of wanting to keep back-porting features from 2.7 into 2.6, it allows for time to make sure the 2.5 code is stable before public release as 2.6, and provides a clear feature-freeze mechanism: once Linus is gone, go bugfixes only. If you want the new features, run the unstable kernel or wait for 2.8 (released sometime after 2.9 is branched).
Not that my opinion matters at all, it's just an idea.
"Space Exploration is not endless circles in low earth orbit." -Buzz Aldrin
OK, so as background, I just woke up ~ 5 minutes ago, so the coffee isn't finished brewing, much less finding it's way into my body yet... I read the headline and the first thing that came to mind was "What? OpenBSD 2.6/2.7? I manage those releases by keeping them neatly stacked in my pile-o'-unixen under 2.8 and 2.9..." Then my brain assimilated the fat little bird under the topic, some gears churned, a little smoke came out, and I realized we were talking about Linux... ;-) The moral of this story I think is don't read slashdot right after you've woken up...
News for Geeks in Austin, TX
Okay, what stable is, really? What does it mean to release 2.6.0?
To me, 2.6.0 means "okay, this is what we can possibly get if only developers are running the code. We have tested our kernel, we have high confidence that it will work for you, but, you know, there are surprises. So do try it out, if you can. We promise that if you find problems and tell us, we will put you to the highest priority, so that you don't have to fall back to 2.4.XX."
What is 2.7.0? People says that it means "okay, now we have 2.6.Y stable, we can pretty much ignore it. Let's put it in the hand of Xyz Abc, the new maintainer of 2.6 series, and new work will be placed at 2.7.ZZ". But I don't like this view. This ignores the possibility that new thing can land directly into 2.6.XX. This happened quite frequently in 2.4.XX, actually, and it does work.
I believe the real reason for 2.7.XX is that "after some use, we find that 2.6.XX has the following stupid problems. It can also be improved if we don't do things this way, but instead do things that way. But they are so fundamental to 2.6.XX, that if we ever change it, we can no longer make the claim that we made when we roll out 2.6.0. These things really needs to be done, though, but we prefer people not to use it yet, and we developers will try to make things work again after they break, and after every developers can reasonably make the claim we made when we delivered 2.6.0, we will roll out 2.8.0, when every of you can try this new neat way of doing things. Currently, please stick with what we have in 2.6.XX."
If that reasoning can stand, then what 2.7 is for is really new API. A new one that can cause everything else to break. I'd say, once we know what new API we want to create, we should create 2.7.0, *regardless* of whether 2.6.XX is stable enough or not. It is absurd to be afraid that stablization of 2.6.XX will slow down because of the existence of 2.7.YY: preference is always given to 2.6.XX if things go wrong there. The real problem to release 2.7.0 too early is that many things get implemented too quickly, when most of the API changes are still up in the air, forcing most things to be written again, perhaps for many times. When that "up-in-the-air" problem goes away (or has settled to a point that we want to write and see what will happen if we really do things in the new way), there is no excuse not to release 2.7.0. Further delay only makes sure that the next kernel will arrive late again.
Slightly offtopic:
It's really frustrating not to have a Linux kernel bug tracking system available. Searching through the huge lkml mailing list just doesn't cut it. And some questions pop back up every month, with no sign of it ever being addressed.
Example: the Athlon/VIA chipset freeze bug. Is it a chipset bug? A bios bug? A kernel bug? Is it fixed? Is it AMD's fault? Is it VIA's? Is it Linus's? Is it a PCI latency problem? An IDE problem?
Who the fuck knows!
joe.
ps. not a flamebait, but genuinly funny.
Have Linux installed at your place in Amsterdam, for cheap
There is a list of the new features in 2.5 here.
In summary:
Performance
- Major rewrite of the disk IO layer meaning better harddisk performance for Joe-user and high-end database servers as well
- New and faster scheduler
- Pre-empt scheduling for better interactive performance
Features- ALSA sound infrastructure
- Video for Linux redesign
- ACPI interface and other power-control patches. Especially a new software suspend-to-disk feature that does not involve Windows specific BIOS magic.
- Lots of high-end features (High memory, 64 bit processor support, per-CPU infrastructure, hot-swap CPU etc.etc.)
- JFS - Journaling filesystem from IBM (where's XFS?)
- Bluetooth
- USB-2.0
Security- Access Control Lists (ACL) which gives fine-grained security
- Per-process namespaces (some Al Viro hackery. Someone please tell that man to slow down a bit)
- Plugable quota system
And as usual a lot of new driver updates.Suspiciously missing are any memory management patches (although Rik has his reversed mapping patch in the pipe). Perhaps the topic is still a litte too hot...
The most important thing for me would be resource management features
I think that the with the current kernel you can already do much of this. But some of the new features of the 2.5 kernel allows for much more fine-grained control - like binding a process to a distinct CPU, better quota accounting etc. Perhaps thats what you're looking for ?
The direction of the 2.5 kernel seems to me to be mainly (but not exclusively) targetting enterprise systems.
1) CVS (or Subversion)
2) Tinderbox
3) Bugzilla
Maybe others as well. Mozilla has a good development procedure IMHO.
This is an honest problem with Linux credibility. The way I see it Linux needs to get on a serious business/seasonal calander. They need to provide 1 ultra-stable release per year and 1 continuous development release per year. Also provide a compatibility suite for each level of the OS. One for the Kernel, one for X11, one for KDE/Gnome,and one for apps. These would be key programs that all sub versions of the stable even-numbered release must be able to run! The best desired system would be a Gentoo style system merged with cvs controls, bug reporting, and problem handling forums that additionally could be used by developers to concurently get the latest code and stamp out bugs faster before actual release. Linux will only grow by leveraging the real power of the internet of mass concurrency of code and extend to automated forums and distributions that take care of themselves without user intervention.
Also, dammit, now you've got me wondering what the insult was in Monkey Island whose retort was something like 'get the POINT?'
Burning karma for Jesus.
Somewhere between 2.4.12 and 2.4.16 (i believe that it was : mempages should be 4k long or AGP goes bust -- and the rest goes down hard and fast)