Microsoft Releases Skype As a Snap For Linux

BrianFagioli writes: While Microsoft has long been viewed as an enemy of the Linux community -- and it still is by some -- the company has actually transformed into an open source champion. One of Microsoft's biggest Linux contributions, however, is Skype -- the wildly popular communication software. By offering that program to desktop Linux users, Microsoft enables them to easily communicate with friends and family that aren't on Linux, thanks to its cross-platform support. Today, Microsoft further embraces Linux by releasing Skype as a Snap. This comes after two other very popular apps became available in Snap form -- Spotify and Slack.

"Skype is used by millions of users globally to make free video and voice calls, send files, video and instant messages and to share both special occasions and everyday moments with the people who matter most. Skype has turned to snaps to ensure its users on Linux, are automatically delivered to its latest versionupon release. And with snaps' roll-back feature, whereby applications can revert back to the previous working version in the event of a bug, Skype's developers can ensure a seamless user experience," says Canonical.

I've been out of the Linux loop for a few years.

[aussersterne]

What is a "snap"? Has the distro-packaging problem finally been solved?

How this sounds to me: appy snaps!

[ToTheStars]

LUDDITE Linux can now run snappy app Skype snap! Appy snap apps! Skypes! Snaps!

Re:I've been out of the Linux loop for a few years

Snaps are containerised software packages that are simple to create and install. They auto-update and are safe to run. And because they bundle their dependencies, they work on all major Linux systems without modification.

https://snapcraft.io/

Irresponsible Word Choice

[scunc]

Skype is a "wildly popular communication software" in the same way that chlamydia is a "wildly popular" STI. Sometimes numbers alone don't tell the whole story ...
---
"Think of how stupid the average person is, and realize half of them are stupider than that." -- George Carlin

Re:Irresponsible Word Choice

[enjar]

My company uses Linux, Windows and Mac across the enterprise. All of our email/calendar/messaging comes from Exchange/Outlook/Skype. Now if MS would release Outlook in this same format I could happily jettison the Windows VM I run Windows/Outlook/Skype on and not have to put up with its endless bullshit. Mac already has a client for all the MS stuff that people use.

It's about 6 steps above my pay grade to do anything about this choice, so the chances of swapping out the company's messaging platform for some open source thing, or switching everyone to Linux isn't going to happen because I open my mouth. Our customer base uses all platforms so it's not like we could drop one platform and stay solvent.

Re:Irresponsible Word Choice

[ArhcAngel]

Skype for Business != Skype

Re:Irresponsible Word Choice

[rtb61]

So just use something else https://askubuntu.com/question.... Just because it is popular does not make it good, which is why the disease reference. Just because it is wide spread, does not mean you don't want to get rid of it. In this case M$ has a terrible reputation for invasion of privacy, corrupt practices, a willingness to install software they know you don't want. So a communications app, ask one question, do you think M$ will listen in or not, now or some time in the future based upon past and current practices, you can lie if you wish but you know the real answer, of course they will.

Oh hurray...

[Junta]

Now when a security update comes for a core library, now I get to update every single snap instead of just updating the system library...

Yay for static linking, I mean containers....

Wow!

[nospam007]

"While Microsoft has long been viewed as an enemy of the Linux community -- and it still is by some -- the company has actually transformed into an open source champion."

Wow! Is that straight from the MS marketing slime?

Re:Wow!

[gfxguy]

I've been using Linux since slackware c. 1994. I actually have come to appreciate some of the things MS has done w.r.t. Linux - running a development web server under WSL makes my life a lot easier when I have to use Windows for most things anyway. Their development tools are actually really nice, too; the .Net system of being able to write interchangeably between different languages is not perfect, but works really well for most of my Windows development.

Yet, the marketing speak is absurd.

Re:I've been out of the Linux loop for a few years

[110010001000]

What makes them "safe to run"? Is the software that they run in the container open source and can be inspected? If not, how do you know it is "safe to run"?

Tried using Skype on Linux

[QuietLagoon]

Debian to be specific. It would not work with my friends who use the Windows version of Skype. Skype would connect, but no video, no audio. And no error message of any kind.

Re:Tried using Skype on Linux

[Trailer+Trash]

Debian to be specific. It would not work with my friends who use the Windows version of Skype.

You have friends who..... use Windows?

Re:Tried using Skype on Linux

[David_Hart]

Friends don't let friends use Windows.

I don't have friends that use Windows, I've left those that could not leave Windows. Family members still use Windows and I can't abandon family. I can only support them as best I can until they see daylight.

True friends do not let an OS choice affect their friendship unless one of them is in a cult... (grin)

Champion?

" the company has actually transformed into an open source champion"

Really? So Skype is being released as an open source app? No. Windows is being released as an open source OS? No. Microsoft has agreed to stop using patents and fear mongering to extract money from companies using open source software? No.

So Microsoft is actively working against open source companies and is not releasing its software under open source licenses. How exactly is Microsoft an open source champion?

A shitty replacement for static linking?

In the early days of microcomputing, we used static linking when creating an application binary. The code we wrote would be linked against any third-party libraries, and a single binary containing the application code and the library code would be the result. Life was easy.

Then there was this huge push toward dynamic linking, with its proponents going on about how it's supposed to use less memory, it's supposed to use less disk space, and it's supposed to allow libraries to be updated easily, and so on and so forth.

But then we experienced "DLL hell" or the "shared object shitshow", which turned out to be far worse than anything we experienced with static linking.

So workarounds, like the various Linux package managers, were created to try to handle the complex dependencies between applications and their shared libraries. This is effectively a complex form of static linking, done by keeping shared library versions consistent with the installed applications.

When that proved to be problematic, such as when there were different applications that depended on different versions of the same shared library, we started seeing a move toward this "containerization" nonsense. There are different approaches used, but again they all have one thing in common: they're a complex way of imitating static linking.

I hope that someday soon the industry at large wakes up to the fact that static linking is just the most sensible thing to do. Yes, the binaries might be slightly larger, but that's well worth it if it means we can avoid "DLL hell" or the "shared object shitshow", and if we can avoid complex package managers, and most important of all, if we can avoid this goddamn "containerization" bullshit.

Now there may be problems when it comes to certain libraries, because they use highly restrictive licenses like the LGPL that effectively force the use of dynamic linking if you don't want your code to be infected by a viral license. The solution to this is simple: don't use poorly licensed libraries. Stick with libraries that use static-linking-friendly licenses like the MIT or BSD licenses, for example.

A whole lot of problems would be solved if we stopped with all of this dynamic stupidity and just went back to static linking.

Re: A shitty replacement for static linking?

[gustavojralves]

Exacly what I'm feel about all those new package systems.

Re:A shitty replacement for static linking?

[tlhIngan]

When that proved to be problematic, such as when there were different applications that depended on different versions of the same shared library, we started seeing a move toward this "containerization" nonsense. There are different approaches used, but again they all have one thing in common: they're a complex way of imitating static linking.

I hope that someday soon the industry at large wakes up to the fact that static linking is just the most sensible thing to do. Yes, the binaries might be slightly larger, but that's well worth it if it means we can avoid "DLL hell" or the "shared object shitshow", and if we can avoid complex package managers, and most important of all, if we can avoid this goddamn "containerization" bullshit.

Now there may be problems when it comes to certain libraries, because they use highly restrictive licenses like the LGPL that effectively force the use of dynamic linking if you don't want your code to be infected by a viral license. The solution to this is simple: don't use poorly licensed libraries. Stick with libraries that use static-linking-friendly licenses like the MIT or BSD licenses, for example.

A whole lot of problems would be solved if we stopped with all of this dynamic stupidity and just went back to static linking.

No, because dynamic linking, even with non-shared shared libraries is still better. Static linking hides important information like library versions which may be important.

With dynamic libraries, even inside containers, you can still validate the library version to see if it's a vulnerable library. You can run tests against the library to determine if it's vulnerable (just because it's inside a container doesn't mean you can't extract it and test it). This way when a vulnerability happens, you can verify whether or not the copies of the libraries you have are vulnerable since a scanner can go inside containers and check. Users can then either not use the app until it gets an update with a fixed library, try to fix it themselves by replacing the library, use the app understanding its vulnerable, etc.

When you static link, you lose those benefits - for what? Just to have one file? That's not going ot happen ever - it's why we have containers to begin with.

Re:A shitty replacement for static linking?

[Etcetera]

So workarounds, like the various Linux package managers, were created to try to handle the complex dependencies between applications and their shared libraries. This is effectively a complex form of static linking, done by keeping shared library versions consistent with the installed applications.

When that proved to be problematic, such as when there were different applications that depended on different versions of the same shared library, we started seeing a move toward this "containerization" nonsense. There are different approaches used, but again they all have one thing in common: they're a complex way of imitating static linking.

Here's the thing though... That wasn't problematic. We have perfectly good Linux distros that provide perfectly good platforms using dynamic linking. We have them at varying levels of stability and long term support: RHEL and its derivatives if you need Enterprise ABI guarantees so that you *don't* ever have a chance of shared library incompatibilities on the platform, and Fedora if you want more frequent updates, although with ABI stability mostly guaranteed within a given annual OS release.

These two OS's work fine. Yes, there were dependency problems initially, but yum and apt-get solved resolution issues DECADES ago. The only people who complain about dependency hell nowadays are those who don't understand that some things change and some things stay the same, and that you ideally will recompile for a new OS release.

In short, the people who don't understand this are Windows Developers and Java Developers.

They have no idea how shared libraries work on Linux, have little or no understanding of package management generally (Literally the only people who complain about 'dependency hell' are those trying to use RPM/dpkg to do YUM/apt-get's job.), or are trying to iterate with ABI breakage every 3 weeks like a generic Silicon Valley d-bag.

Statically compiling everything, adding three layers of virtualization nonsense, putting out 500MB .jar files, or live-including left-pad npm, because you don't know how packaging works is the epitome of the current industry approach. And it sucks for everyone else trying to keep some sanity in the mix.

No "champion" at all.

[l2718]

From TFA:

[Microsoft] has actually transformed into an open source champion

Really? So shere is the source code for this "snap"? In fact:

1. Compiling your software for GNU/Linux doesn't make you a "champion of open source" just because GNU (and Linux) are open-source (and, more importantly, also Free Software). Releasing your source code makes you open-source.
2. "Snaps" are the opposite of the Unix philosophy of dynmically linking against system libraries – they are basically statically linked binaries (except that the binary comes in pieces). Instead of the "open-source" philosophy of clean interfaces and interoperability, they embrace a philosophy of tailored interfaces and closed gardens.

In fact, to the extent Microsoft champions "open source", this open-source is about taking advantage of source code released by others without Microsoft releasing any of its own. When I see Microsoft releasing source code under a free license (say BSD) for a significant program originally created by Microsoft (Skype, their web browser) I will believe them.

Re:No "champion" at all.

[sad_]

"Snaps" are the opposite of the Unix philosophy of dynmically linking against system libraries – they are basically statically linked binaries (except that the binary comes in pieces). Instead of the "open-source" philosophy of clean interfaces and interoperability, they embrace a philosophy of tailored interfaces and closed gardens.

Great comment, now i finally see the point of snaps. They only exist to facilitate closed source software. If you use open source software there is no need as you can easily make it to run on your system.

Re:I've been out of the Linux loop for a few years

[duckintheface]

This particular snap install is NOT safe to run. When you run "snap install skype" in a terminal you get a warning that skype is packaged using "classical" isolation and may escape the sandbox and make unrelated system changes. In order to install, you have to add the --classic flag to indicate you understand the risks. I did not install skype.

Sabotage

[Gavagai80]

As someone who actually uses Skype for Linux, I can say definitively that it's a torture device meant to make Linux users experience excruciatingly unpleasant interfaces, Windows ME stability, Windows Vista levels of bugs, and pointless slowness for what is actually no more than a frame around a website. The Skype for Linux from before MS bought it was a far better, more feature-full and reliable product... since the MS purchase it has only been progressively sabotaged. The several years it went without an update were nice, but ever since updates resumed it gets more painful in each release.

"Fully embraces linux"??

[l2718]

In fact, this is Microsoft trying to support a dangerous undercurrent in the Linux world of walled gardens and insecure vendor-controlled installations.

If something is wrong in libc, libm, or libgtk Microsoft should get it fixed upstream, not ship their own incompatible version. Do you really trust them to backport every future bugfix after their fork?

Just What I'm Looking For

[NicknameUnavailable]

An IM client which spies on me and logs all my conversations for Microsoft without so much as a decent search function for me to view my own archives. There's no reason to use Skype outside of a business environment where you have to do so, there are plenty of open source alternatives and there are plenty of more popular things if you can't get your friends to switch.

Does this one work?

[GameboyRMH]

I wonder if they've fixed the White Screen of Death that the latest version of Skype for Linux in the repos suffers with (start program, receive white screen with basic window controls and nothing else). I've rolled back to an older version and blocked updates for the package to work around it.

Was already available as Flatpak, same as Spotify

[buchanmilne]

And Skype was already available as a Flatpak available on flathub (and easily installable from the gnome-software GUI).

The summary could have mentiomed that (and, of course, that Slack and Spotify are also available as Flatpak's from Flathub)

Re:Open source champion?

MS has been one of the largest contributors of open source projects and applications over the past few years. MS has been positioning themselves to transforming their flagship OS and related applications to a true cross platform solution. Think about all those people and companies that cannot move to a Linux platform due to the lack of Linux application support. No think of signing into your computer and being able to start a Windows session or Linux session without any intervening VM. Think about a version of .NET that is open source and cross platform. The number one rule in capturing a large market share is to make it easy for developers to create applications. It's a lesson the Linux fateful have never really understood. MS has always catered to the developers. MS VB was probably the one product that pushed MS to the top. VB allowed almost anyone to become a developer. VB was certainly not a perfect development tool but it was easy compared to C\C++ or any other native languages that the average person could not use. VB allowed the rapid creation of applications that ran on the MS application stack. (VB had a lot of faults. People created a bunch a sup-par applications. These two characteristics didn't stop the adoption of VB and all the subsequent adoption of a pure MS application stack.)

Latest version?

[HalAtWork]

"Skype has turned to snaps to ensure its users on Linux, are automatically delivered to its latest version upon release."

Are they also going to release a new snap any time one of the static linked dependencies are updated as well?

"And with snaps' roll-back feature, whereby applications can revert back to the previous working version in the event of a bug" ...and also previous unpatched versions of static linked dependencies as well.

I think I like normal packages with shared libraries I can ensure are up to date whenever any app or utility relies on them to run.

Doesn't sound safe to me

[HalAtWork]

The fact that they bundle dependencies are what makes me feel they're unsafe. I can't rely on snap packages to have up to date dependencies.