A Gut Check On Gutsy Gibbon

jammag writes "Linux pundit Bruce Byfield looked inside the pre-release of Gutsy Gibbon and found what he calls 'Windows thinking.' His article, Divining from the Entrails of Ubuntu's Gutsy Gibbon, notes that Ubuntu is the dominant distro, having achieved a level of success that might be leading to complacency. He opines: 'Only once or twice did I find a balance between accessibility to newcomers and a feature set for advanced users. At times, I wondered whether the popularity might be preventing Ubuntu from finishing some rough edges.'"

Choices and Plurality

[saterdaies]

Sometimes, one has to make choices:

After all, you can hardly secure a system if you do not know what is going on it.

So, I should manually pick each and every package that is installed on my computer. Wait, that won't do it. I need to read and audit the source and then compile that source to be completely sure! I understand where the author is going here, but that's one of the great things about GNU/Linux. I can have my Ubuntu that gives me a good system in 15 minutes and he can use Gentoo, Slackware, or Linux From Scratch to create a system where he can account for everything on it. One distribution doesn't have to be everything to everyone. Lucky for us, because of the nature of open-source, a plurality of distributions is easy which closer meet the needs of our diverse uses. Many users don't want or care about a lot of the choices offered (heck, most of the world uses Windows). Thankfully, Linux is open-source and allows us to choose as much or as little configuration, selection, and customization as we want to deal with.

Re:Choices and Plurality

[somersault]

More importantly, how do you find a trusted CPU? Is there some sequence of floating point operations that will disable page checking (or whatever) in an Intel processor? :P

Re:Choices and Plurality

[norminator]

TFA discusses needing to find the balance between "simplicity for beginners" and "power for advanced users."
The funny thing about that is that he complains when Ubuntu provides tools for people with different levels of Linux familiarity. Like here, where he complains about package managers:

The trouble is, Add/Remove Applications remains basic. Even its help suggests that you use Synaptic "for more advanced needs." Yet even Synaptic is less flexible than the basic apt-get command, and not much easier to use. And, for all the care given to the layout of Synaptic, the updater, and Add/Remove applications, I have to wonder: does any distro really need three or four desktop applications for the same function? After all, apt-get serves the same purpose as all of them. For some reason, the thinking of Ubuntu's planners seems uncharacteristically muddy here.
If he doesn't think Synaptic is less flexible that apt-get, what are the reasons? Is he arguing that we should just have apt-get and not Synaptic or Add/Remove Applications? Of course Add/Remove Applications is basic. If I was going to hand Ubuntu over to my mom, I would be happy that there is a basic Add/Remove Applications menu item she can click on to see what's available. It is easy to see what it does, and it can get the job done for someone who wouldn't even know what to do with the flexibility of more advanced commands. I prefer Synaptic, because it lets me see all of the packages, categorized in several different ways, and gives me clear, easy to see information about each of them. I'm not scared of the CLI, but how is apt-get easier to use than Synaptic? Maybe if you already know the exact name of the package you want to install, but if you need any information about the packages available, I think Synaptic is very easy to use. The author seems to only like apt-get, but if that's all Ubuntu included, how would my mom install or remove apps?

It sounds like he really wants Ubuntu to be less tailored for the average home user... He seems to be upset that the distro that home users would prefer is geared towards not confusing them.

Re:Wait for next

[Braino420]

The author has some very interesting ideas about "security"
TFA:

This [not being able to choose additional packages at installation] lack is not only frustrating, but violates a main principle of security. After all, you can hardly secure a system if you do not know what is going on it.

it [sudo] means that an intruder only needs one often-used password instead of two to gain control of the system.

Ok, not being able to install additional packages at installation is a big deal, but calling it a "security issue" is a little silly. No ports are listening on a default Ubuntu install. It doesn't need to be "secured".

I don't understand how not having sudo means the attacker has to gain control of two passwords. Does that even make any sense? They only need ONE password either time, the root password, or the password for a user that has sudo privs.

I'm glad someone is really giving a critical eye towards Ubuntu (which can only result in further improvements), but talking out of your ass isn't going to get anything done.

duhh

[thatskinnyguy]

Ubuntu isn't successful because it's an operating system for advanced users only (like Gentoo). It's successful due to being user friendly to people who are Windows users who are curious about Linux.

With Linux I've noticed that user control is inversely proportional to user-friendliness. Operating systems like Ubuntu are made with user-friendliness in mind and that comes at the price of user control. It's quick and easy to set-up and use which garners alot of favor from the Windows crowd.

Similarly, Gentoo gives the user complete control over what applications, drivers, daemons are installed but is by no means user-friendly.

The writer of TFA really did a whole lot of whining about how little control he had over the installation and initial software packages. What did he expect? It's Ubuntu.

Clash of new vs. old-school users

[Chris_Jefferson]

I think the main problem the reviewer is having is that he wants thinks to be like linux used to be. The reason I like Ubuntu is that it tries to escape from that. For example:

- By default, the user never has to select any partitioning options, or even know what it is.
Well, most people don't know what partitioning is.

- Want to choose which software to install.
Once again, new linux users won't know the names of all the programs they might want. Ubuntu installs what I consider a reasonable selection. Talk of knowing exactly what is installed sounds more like server talk, for which you probably want Ubuntu server, which does install a much smaller selection of packages by default

- Doesn't send hundreds of confusing messages past at high speed on boot-up (me paraphrasing)
Well good, particularly because most start-ups have at least one thing which looks to the untrained eye like a failure

Other problems, including fonts, are possibly more valid. I'd be interested to know what an Ubuntu expert's opinion is on them.

Re:Name?

[dfdashh]

Who's to say that any name is lame or not? More importantly, who cares? A cursory glance beyond whatever moniker a distribution has is really needed before a decision is made to adopt it. If you judge based on a name, you probably shouldn't be in a position to decide anyway!

If you are really worried about the name as it relates to non-geek circles, use their numbering scheme instead. Gutsy Gibbon is Ubuntu 7.10 (https://wiki.ubuntu.com/GutsyGibbon).
Personally, as long as the Ubuntu guys continue to churn out an excellent product, I could not care less about the name.

Re:Wait for next

Presumably you don't allow the root user to login at all. The only way to get to root would be with su. His statement, I'm guessing, is based on that premise along with having to break into a normal user account first, before being able to su to root. Of course, that doesn't take into consideration the numerous possible attach vectors that do not require first breaking a normal user and then breaking root.

For years I've never installed sudo because I liked the forced separation of privileges with different passwords. However, in an environment where numerous users need escalated privileges for different things, I have revised my thinking and enjoy the ability to provide fairly fine-grained controls on who/what people are able to access when raising privileges for specific tasks. Short of implementing SELinux, sudo gives me what I need for right now. I can see a day where SELinux will be more appropriate for some things, but until then...

Re:evidence

[kebes]

random adjective and animal generator

You think the names are chosen randomly? Heck no! These are geeks we're talking about... they plan, discuss, make lists, and debate such minutia endlessly.

Don't believe me? Check out the "Ubuntu Development Code Names Wiki", from which future codenames will be chosen!

Security of Users vs Root security

[drx]

I actually wonder why there is still this big iron thinking about root and "unprivileged users", especially around a desktop distro like Ubuntu. I am the only user of my system. If someone breaks into my normal user account and deletes all files there it is the worst possible scenario. If it is done from root, there is not much of a difference. And unprivileged users can also serve as spam bots, they have all the access to a heap of scripting languages and whatnot -- so really, what is the difference?

Just because it happens to be Unix, some people seem to have a sysadmin reflex that tells them root is more worthy than others.

Re:Security of Users vs Root security

[dfgchgfxrjtdhgh.jjhv]

root gives them full control over your system, they can set daemons to run at startup, mess with system files, delete/modify every users files & any other file they want, run services on privileged ports (1024), install trojans, rootkits, delete/modify log files, and anything else they want.

a root compromised means a full system rebuild. reformatting all drives & reinstalling from trusted media & the last known good backups. you cant trust anything on the system, or any backups taken since the hack. you might not even know the date of the hack, nevermind how they got in, or what they did, if they cleaned the logs.

if a normal user account gets hacked & you're sure root hasnt been compromised, you could just delete the user, fix the vulnerability & restore the files from backups. you still have the log files, which will help give clues to how & when you were hacked.

having your user account hacked is obviously very bad, but if they get root, its as bad as it gets, even on a single user system.

btw, if your personal files mean a lot to you, you should take regular backups.

Re:Wait for next

[spagetti_code]

Ok, not being able to install additional packages at installation is a big deal, but calling it a "security issue" is a little silly. No ports are listening on a default Ubuntu install. It doesn't need to be "secured".

No!

Not having to make choices at install time is EXACTLY the reason that ubuntu is good. After a couple of simple questions, you are up and running with a very well configured system with the best one of each type of app installed that most people want. You dont have a huge stack of apps installed that you dont need.

If that idea doesn't suit you, then I think you need a different distro. Dont go raining on ubuntu because its executing its plan well. (And by the way, that plan is exactly what the general population want/need).

Re:Wait for next

[thePowerOfGrayskull]

I'm just curious. I see this phenomenon where folks reply to an unrelated first post... this usually happens when there are already several replies to the article itself. Why does this occur? Let's not be disingenuous. We all know why it happens -- too many people saw that this was successful in getting their comments modded up in places like digg, and started doing it here too. And the mods encourage it -- they /should/ be getting marked offtopic, but that never seems to happen anymore. Before anyone objects - yes, I know that this practice did not originate with digg; but there is no denying that it has started happening a /lot/ more frequently since digg became popular. While that's not direct evidence of causation, it's still a pretty compelling circumstantial case.

Re:Wait for next

[tolan-b]

> but isn't that Windows mentality?

No it's pre-release software...

Gentoo binaries

[HotBBQ]

I just want to say that in *my* four years of using Gentoo I have never had anyone on the Gentoo forums, irc channels, or any of my colleages (academia or private sector) ever say that Gentoo compiled code is necessarily any faster than delivered binaries. I never had anyone recommend anything but -02 and -pipe for compiler options. What Gentoo does give you is the ability to easily get exactly the system you want. Nothing more, nothing less. Whether any particular piece of binary code is faster on Gentoo is purely on a case by base basis. People use Gentoo for choice, configurability, and on occasion performance.

From the Gentoo home page:

Thanks to a technology called Portage, Gentoo can become an ideal secure server, development workstation, professional desktop, gaming system, embedded solution or something else -- whatever you need it to be.

Paradox of choice.

[SanityInAnarchy]

If there's the option to do more stuff, you have to be very careful to design a UI which will lead ordinary users away from choosing that option. Worse are the "power users", who will try to explore every single option, whether or not they understand it.

It's a deliberate break from the "GNOME or KDE" question you get asked at install time. If you don't know and don't care, you get GNOME. If you know, there's always a way to get more choice -- you could download Kubuntu if you want KDE, for example.

And if you really know what you're doing, you could download the Alternate or Server install CD, install from that (a more powerful installer anyway), and add packages as you need them. Or you can do a normal install, and remove packages, add other ones in later.

In fact, I believe it's possible to "upgrade" a system between Ubuntu and Kubuntu and back.

Now, granted, maybe it would be a good thing to have all of this power as a convenient GUI option. But the choice is there, if you know where to look.

Re:Wait for next

[cloudmaster]

Get the "alternate install CD" or "Server install CD" or, at the boot menu, choose the non-GUI boot option. The installer is still basically the Debian installer, and you can do all sorts of things from the ncurses installer. The server install puts down a minimum system, upon which you can either then install the "ubuntu-desktop" package to get the default desktop, or install the individual packages you want (either for a secure server or secure desktop that you know all about)

The "limited choice" installer is the one that runs in graphical mode after the end user has already chosen the *default* boot option - indicating that they're interested in defaults. People who want more options will examine the first menu they're presented with, or download something other than the "desktop live CD".

Reporters who don't take the time to read "what's on the CD" before they download the .iso, IMHO, fall into the category of people who dhould be accepting default answers. Esp. if they're running a beta release of an OS.