Slashdot Mirror

← Back to Stories (view on slashdot.org)

Red Hat Advanced Server Gets DoD COE Certification

Posted by timothy on from the buncha-cud-chewin-hippies dept.

DaveAtFraud writes "CNET is reporting that Red Hat Advanced server has been certified as a 'Common Operating Environment' (COE) when running on an IBM server by the U.S. Department of Defense. Red Hat Advanced Server is the first version of Linux to receive this certification. The certification clears the way for broader use of Linux in governement computer systems. Its interesting to note that the certification effort was made for the more proprietary (and costlier) Red Hat Advanced Server and not the basic Red Hat distribution." This despite the best efforts of certain lobbyists.

17 of 186 comments (clear)

  1. Of course they certify the expensive version by jht · · Score: 5, Insightful
    Its interesting to note that the certification effort was made for the more proprietary (and costlier) Red Hat Advanced Server and not the basic Red Hat distribution

    Why is this even worth noting? Certification efforts aren't especially cheap. If you're going to expend time and resources getting a version of your product certified, why not put the effort into the version that is likeliest to generate enough revenue as a result of the certification to pay for the effort.

    After all, while RedHat is in relatively good financial condition, it's not like they have around $40 billion in the bank (unlike some operating system companies). Certifying Advanced Server is a good use of limited resources.

    That said, any government security certification is a Good Thing in the commercial marketplace, too - it helps when the engineers need to make a positive case to their PHB's, and gives one more "checklist item" that can get marked in their favor when comparing RH to other vendors.
    --
    -- Josh Turiel
    "2. Do not eat iPod Shuffle."
    1. Re:Of course they certify the expensive version by Jim+Hall · · Score: 5, Insightful

      Its interesting to note that the certification effort was made for the more proprietary (and costlier) Red Hat Advanced Server and not the basic Red Hat distribution

      Yes, it costs more. But it's about the same as (or less than) support & licensing costs for "big UNIX" like Solaris.

      I think it's incorrect to label RHAS as "proprietary". It's based on a Red Hat Linux boxed set, but I believe they bundle in software from partners.

      Each release of RHAS has a longer lifecycle (something like 14-18 months) so you don't have to upgrade every 6 months when the new Red Hat Linux comes out. You do get a "stepped-up" version of their Red Hat Network support, which we currently use on their boxed sets to stay up to date with erratas.

    2. Re:Of course they certify the expensive version by Pharmboy · · Score: 5, Insightful

      Why is this even worth noting? Certification efforts aren't especially cheap. If you're going to expend time and resources getting a version of your product certified, why not put the effort into the version that is likeliest to generate enough revenue as a result of the certification to pay for the effort.

      After all, while RedHat is in relatively good financial condition, it's not like they have around $40 billion in the bank (unlike some operating system companies). Certifying Advanced Server is a good use of limited resources.

      Amen. Their "more expensive" verion is what makes them money, not the free version. Certification of Advanced server doesn't take away from the benefits of their downloadable version, or other distros in any way.

      If Linux is going to take hold, SOMEONE has to make money with it. People just miss the point: OS software is free as in speech, NOT as in beer. OSS doesn't mean everyone just walks around and works for free. It means programmers contribute code for "free", but make money when they support this code (and the code others contributed "free") to end users. When they add value to it.

      If the GPL did not allow anyone to make any money, in any way, we would not be here talking about Linux.

      --
      Tequila: It's not just for breakfast anymore!
    3. Re:Of course they certify the expensive version by Pharmboy · · Score: 4, Insightful

      Yes, that sometime is true of "open-source" software but free software [gnu.org] is free as in speech, AND as in free beer.

      And it is not likely to ever get certified because there is no way to recover your costs.

      The point being made here is Linux being certified, making it more able to compete with Microsoft in the marketplace. The point isn't to argue over symantics.

      --
      Tequila: It's not just for breakfast anymore!
    4. Re:Of course they certify the expensive version by salimma · · Score: 4, Informative

      Not to mention that the certification is only valid for a specific version of the OS (what Microsoft neglected to say back when they were selling NT 4.0 was that it's NT 3.5 that is C2-certified).

      The Advanced Server is released every one and a half year or so - the desktop OS every six months. Personally I find it a very agreeable deal - the free users get faster releases and contribute towards bug testing, the paying customers get what they want, slower but longer-supported (and now certified too) releases.

      --
      Michel
      Fedora Project Contribut
    5. Re:Of course they certify the expensive version by ewilts · · Score: 4, Informative
      RHAS does not have only a 3-year lifecycle. It's 5 from initial release, based on this official document: http://www.redhat.com/apps/support/errata/rhlas_er rata_policy.html

      Comparing that to Solaris, I have no idea where you pulled out the 11.5 year life cycle. According to Sun's web page, it's 5 years from last ship date. Reference this page: http://wwws.sun.com/software/solaris/fcc/lifecycle .html

      I will admit that 5 years from last ship is greater than 5 years from initial ship, but there's no way in hell it's an 8.5 year delta like you're trying to claim.

      Ya know, "gobs of system management tools" and "a kernel many tricks up it's[sic] sleeve" don't exactly add to much of a review :-). I believe I can honestly claim that Red Hat Linux Advanced Server has "gobs of system management tools" and "a kernel with many tricks up its sleeve". Of course, this claim holds true for Windows too.

      How you got moderated to 2 on your post is beyond me...

      --
      .../Ed
  2. Sure DoD uses the regular version.... by i_want_you_to_throw_ · · Score: 4, Interesting

    I use it on a box to run apps that I developed that our M$ monkeys haven't matched(or can't) match. Mainly a lot of situations where one line of code does what would take several more in M$ (Scheduler vs. cron)

    In our case it comes down to services. I work for the Commanding General and all he wants is "services not platforms".

    I think maybe that has helped to bring in open source in our little corner of the military more than anything. IM talks about how they are M$ certified blah blah and I just bring out a new app coded in Perl that the green suiters can't live without.

    Or better yet create one and let it run on one of my own outside servers and then demo it to them with a "Oh by the way, we need Linux to do this".

    It's like heroin, get 'em hooked. They gotta have it. Superior services, not platforms.

    As far as it being the more expensive version of RH that's certified, have you seen RH's stock price? You're still saving the military a lot more in the long run by getting the more expensive version.

    1. Re:Sure DoD uses the regular version.... by syle · · Score: 5, Insightful
      I use it on a box to run apps that I developed that our M$ monkeys haven't matched(or can't) match.

      ...I just bring out a new app coded in Perl that the green suiters can't live without.

      How do these things relate to Linux? No one's arguing that it isn't a good development environment, but perl runs in Win32 fairly easily.

      You say superior services, not platforms, but it sounds like you're taking programs that could otherwise be cross-platform using them to push Linux for its own sake. Or, are you doing something with perl that would tie it to Linux?

      (Ready to be modded into oblivion for implying that Linux should exist just for its own sake...)

      --

      /syle

  3. From the Red Hat site by sczimme · · Score: 4, Informative


    Read the RH press release here.

    --
    I want to drag this out as long as possible. Bring me my protractor.
  4. Sorry to be a spoilsport, but... by TheMidget · · Score: 4, Informative

    ... isn't that the same certification than the one we scoffed at when Windows 2000 got it?

    1. Re:Sorry to be a spoilsport, but... by nemaispuke · · Score: 4, Informative

      You are talking about two different things, Common Criteria is about security and Common Operating Environment is a military standard for mission critical applcations (Command and Control, Intelligence, etc). What it means is that if you use applications designed for Motif/CDE and use COE as a standard, they can run on RedHat Linux Advanced Server. This is more about functionality than security.

  5. better link to the story... by imag0 · · Score: 4, Interesting

    Here's a better link to story, sans linkspam:

    http://news.com.com/2102-1001-984202.html

    COE? Here's the link to their homepage:

    http://diicoe.disa.mil/coe/

    Admins! Get your fucking heads out of your asses and check to see if something is linkspam before posting it. This isn't the first time. Someone is making money from the click through.
    Fuck them.

  6. This is great by hackstraw · · Score: 4, Insightful

    And impressive considering the other certified OSes (Solaris, AIX, HPUX, and NT). I first used the Advanced Server a couple of months ago while evaluating some Itanium2s, and I was plesantly suprised. I really like RH's decision to make the Advanced Server their "Enterprise" class distro with about an 18 month release cycle. Makes my job easier (TM).

    I never thought I would say this, but I've gotten accustomed to using RH. I was a die hard Debian fan, and in philosophy still am. But when it comes to 3rd party support, and announcements like this, I have to say that RH is the distro right now, and probably will be for some time to come (at least in the US).

    For all of the advancements that RH has done for Linux, and in spite of itself, including RPM. I would like for them to get a better package system. Yes, I know theres the apt-rpm or whatever its called, but I'm talking something that already comes with the distro and works on all architectures supported by RH. Someday...

  7. Re:Security? by terraformer · · Score: 5, Interesting
    Well for example, I just installed the latest Mandrake distro and any service I installed was turned on by default. In RH 8.0 you can install any service/package available but nothing is enabled unless you choose to after install. That is one of the cornerstones of security. Only turn on what you need. Just because I want something installed does not mean I want it turned on right now. I should not have to remember to go through and turn off everything just to have stuff sit on my drive until I am ready to configure and harden it.

    Anyhow, all these distro's really have in common is the kernel code which makes them linux. The rest of the software (FTP, wm's, editors) bundled is up to the bundler. It is these choices that can make a distro more secure from another. EX: ssh v. telnet, std ftpd v. vsftpd, vi v. emacs (Sorry, I just had to ;-}) et al; The DOD is going to certify the whole bundle and not just individual pieces. Basically, they don't trust their admins (contractors mostly) to pick the right pieces on their own, so they will find a good bundle and certify that with special instructions.

    --
    Who are you? The new #2 Who is #1? You are #617565. I am not a number, I am a free man! Muhahaha.
  8. Re:How to get it? by Anonymous Coward · · Score: 4, Informative

    Nonsense.

    Anyone can download it for free from Red Hat.

    You just don't get the support for free.

    Mirrors: http://www.redhat.com/download/mirror.html

    Check the "enterprise" directory.

  9. Re:Security? by Anonymous Coward · · Score: 5, Funny
    vi v. emacs
    I thought Linux could only address 4GB of memory. If this is the case, how is it that emacs can run on one of these computers? What changes did Redhat make to allow this to occur?

    Thanks in advance.
  10. Don't think this was easy. by Anonymous Coward · · Score: 5, Interesting

    There was a LOT of bureaucratic inertia standing in the way of this effort inside the DoD. In the office this little initiative started in within ESC, the push for this cost two program managers and one engineer their positions, with extra effort made to derail their careers. Another person had to keep his head down and toe the line for a long time. The replacement for the second program manager was frusterated and constrained and a little scared, having entered the arena of combat by stepping over the corpses of the previous two (figuratively).

    The efforts by DISA and Red Hat were started because the little program that those people worked on provided the customer for the product. Sure, there was a lot of "anecdotal" demand for Linux, but this was the first formal acquisition program that was committed to it. The guinea pig, so to speak.

    Let's give proper respect to RH (those involved know who he is) at Red Hat, who took that first call and pitched it to his management, even though it looked like all the risk was on Red Hat.