jones_supa writes: Network World's analysis of publicly listed sponsors of 36 prominent open-source non-profits and foundations reveals that the lion's share of financial support for open-source groups comes from a familiar set of names. Google was the biggest supporter, appearing on the sponsor lists of eight of the 36 groups analyzed. Four companies – Canonical, SUSE, HP and VMware – supported five groups each, and seven others (Nokia, Oracle, Cisco, IBM, Dell, Intel and NEC) supported four. For its part, Red Hat supports three groups (Linux Foundation, Creative Commons and the Open Virtualization Alliance).

It's tough to get more than a general sense of how much money gets contributed to which foundations by which companies – however, the numbers aren't large by the standards of the big contributors. The average annual revenue for the open-source organizations considered in the analysis was $4.36 million, and that number was skewed by the $27 million taken in by the Wikimedia Foundation (whose interests range far beyond OSS development) and the $17 million posted by Linux Foundation.

An anonymous reader writes The man who in every sense sits at the nerve centre of SUSE Linux has no airs about him. At 38, Vojtch Pavlík is disarmingly frank and often seems a bit embarrassed to talk about his achievements, which are many and varied. He is every bit a nerd, but can be candid, though precise. As director of SUSE Labs, it would be no exaggeration to call him the company's kernel guru. Both recent innovations that have come from SUSE — patching a live kernel, technology called kGraft, and creating a means for booting openSUSE on machines locked down with secure boot, have been his babies.

MasterPatricko writes The latest version of the openSUSE distribution, 13.2, has been officially released. Key features include integrated support for filesystem snapshots, enabled by a switch to btrfs as the default file system, a new network manager (Wicked), as well as the usual version updates. This release includes seven supported desktop environments (KDE 4.14, GNOME 3.14, Xfce, LXDE, Enlightenment 19, Mate and Awesome) and even preview packages of Plasma 5.1, all presented with a unified openSUSE theme. Download LiveUSB and DVD images now from software.opensuse.org/132.

sfcrazy writes Factory and Tumbleweed will merge to become a single release. The release will follow the development cycle of Factory but take the more appealing name, Tumbleweed. Commenting on the new development Greg Kroah-Hartman said, “The changes to the Factory release model have changed it from being an unstable development codebase into the type of rolling release I set out to create when starting openSUSE Tumbleweed. I’m very happy to see these two rolling releases coming together under the name Tumbleweed, and am looking forward to watching how it develops in the future.” Factory won't disappear; It will become a "development project" for creating the "user-ready" Tumbleweed."

HughPickens.com writes: Reuters reports that plans for a major rewriting of international tax rules have been unveiled by the Organisation for Economic Co-operation and Development (OECD) that could eliminate structures that have allowed companies like Google and Amazon to shave billions of dollars off their tax bills. For more than 50 years, the OECD's work on international taxation has been focused on ensuring companies are not taxed twice on the same profits (and thereby hampering trade and limit global growth). But companies have been using such treaties to ensure profits are not taxed anywhere. A Reuters investigation last year found that three quarters of the 50 biggest U.S. technology companies channeled revenues from European sales into low tax jurisdictions like Ireland and Switzerland, rather than reporting them nationally.

For example, search giant Google takes advantage of tax treaties to channel more than $8 billion in untaxed profits out of Europe and Asia each year and into a subsidiary that is tax resident in Bermuda, which has no income tax. "We are putting an end to double non-taxation," says OECD head of tax Pascal Saint-Amans.For the recommendations to actually become binding, countries will have to encode them in their domestic laws or amend their bilateral tax treaties. Even if they do pass, these changes are likely 5-10 years away from going into effect. Speaking of international corporate business: U.K. mainframe company Micro Focus announced it will buy Attachmate, which includes Novell and SUSE.

bennyboy64 (1437419) writes "Ever since the Heartbleed flaw in OpenSSL was made public there have been various questions about who knew what and when. The Sydney Morning Herald has done some analysis of public mailing lists and talked to those involved with disclosing the bug to get the bottom of it. The newspaper finds that Google discovered Heartbleed on or before March 21 and notified OpenSSL on April 1. Other key dates include Finnish security testing firm Codenomicon discovering the flaw independently of Google at 23:30 PDT, April 3. SuSE, Debian, FreeBSD and AltLinux all got a heads up from Red Hat about the flaw in the early hours of April 7 — a few hours before it was made public. Ubuntu, Gentoo and Chromium attempted to get a heads up by responding to an email with few details about it but didn't, as the guy at Red Hat sending the disclosure messages out in India went to bed. By the time he woke up, Codenomicon had reported the bug to OpenSSL."

Bismillah (993337) writes "A potentially very serious bug in OpenSSL 1.0.1 and 1.0.2 beta has been discovered that can leak just about any information, from keys to content. Better yet, it appears to have been introduced in 2011, and known since March 2012." Quoting the security advisory: "A missing bounds check in the handling of the TLS heartbeat extension can be used to reveal up to 64k of memory to a connected client or server." The attack may be repeated and it appears trivial to acquire the host's private key. If you were running a vulnerable release, it is even suggested that you go as far as revoking all of your keys. Distributions using OpenSSL 0.9.8 are not vulnerable (Debian Squeeze vintage). Debian Wheezy, Ubuntu 12.04.4, Centos 6.5, Fedora 18, SuSE 12.2, OpenBSD 5.4, FreeBSD 8.4, and NetBSD 5.0.2 and all following releases are vulnerable. OpenSSL released 1.0.1g today addressing the vulnerability. Debian's fix is in incoming and should hit mirrors soon, Fedora is having some trouble applying their patches, but a workaround patch to the package .spec (disabling heartbeats) is available for immediate application.

alphadogg writes: "An argument between developers of some of the most basic parts of Linux turned heated this week, resulting in a prominent Red Hat employee and code contributor being banned from working on the Linux kernel. Kay Sievers, a well-known open-source software engineer, is a key developer of systemd, a system management framework for Linux-based operating systems. Systemd is currently used by several prominent Linux distributions, including two of the most prominent enterprise distros, Red Hat and SUSE. It was recently announced that Ubuntu would adopt systemd in future versions as well. Sievers was banned by kernel maintainer Linus Torvalds on Wednesday for failing to address an issue that caused systemd to interact with the Linux kernel in negative ways."

itwbennett (1594911) writes "Google has made sizable price cuts across its storage, compute and BigQuery analysis services (e.g., Google BigQuery on-demand prices have been reduced by up to 85%). Google has also introduced a number of new services, including managed virtual machines, an extension of BigQuery for live data and the ability to run copies of the enterprise-ready Red Hat Enterprise Linux, Suse Linux and Windows Server 2008 R2. Collectively, these announcements show that Google may be coming to understand that 'they really need to step it up' in the market for cloud computing services, said John Rymer, Forrester Research's principal analyst covering application development and delivery."

cold fjord writes with news that Red Flag Software, makers of China's Red Hat derivative Red Flag Linux, has halted operations. From the article: "Once the world's second-largest Linux distributor, Red Flag Software has shuttered reportedly due to mismanagement and after owing employees months in unpaid wages. China's state-funded answer to global software giants like Microsoft ... filed for liquidation over the weekend and terminated all employee contracts. Set up in late-1999 amid the dot-com boom, Red Flag was touted as an alternative to Windows ... It thrived in the early days, inking deals with partners such as Oracle and Dell which products were certified to support and shipped with Red Flag Software. The Beijing-based vendor was primarily funded by the Chinese Academy of Sciences' Institute of Software Research, and later received additional funding from state-owned Shanghai NewMargin Venture Capital and the Ministry of Information Industry's VC arm ... 'A lack of brand awareness and sustained investments, coupled with the rise of rivals including Red Hat Enterprise Linux and SuSE Linux Enterprise, led to its downfall,' Eric Peng, Beijing-based research manager with IDC, said ... Peng noted that, during its hey days, Red Flag had enjoyed high adoption among government agencies, state-owned organizations, and schools.""

sfcrazy writes "The openSUSE Forums were hijacked yesterday. An alleged Pakistani hacker who goes by handle H4x0r HuSsY reportedly exploited a vulnerability in the vBulletin 4.2.1 software SuSE uses to host the forum. vBulletin is a proprietary forum software. The openSUSE team notes that user passwords were not compromised. 'Credentials for your openSUSE login are not saved in our application databases as we use a single-sign-on system (Access Manager from NetIQ) for all our services. This is a completely separate system and it has not been compromised by this crack. What the cracker reported as compromised passwords where indeed random, automatically set strings that are in no way connected to your real password.' It's shocking to learn that SUSE/openSUSE are using proprietary forum software vBulleting as well as proprietary single sign on solution." SuSE was using vBulletin 4.x which has no known fix for the security hole, and they are leaving the forums offline for now. It seems likely they'll be upgrading to the 5.x series.

sfcrazy writes "Ironically while Netflix's infrastructure runs on Linux and Open Source technologies, the service doesn't support Linux, the platform. Netflix is available for Mac, Windows, iOS, Android and Chrome OS but not for desktop Linux. One of the reasons could be that Netflix still uses Microsoft's Silverlight which is not supported on Linux. However Linux users have managed to get it to work on their distros. Now openSUSE users can also run Netflix using Pipelight."

rjmarvin writes "Docker 0.7 was released today, with 7 major new features including support to run on all Linux distributions. No longer capable solely on running on Debian and Ubuntu Linux, Docker 0.7 adds support for distributions such as Red Hat, SUSE, Gentoo and Arch. From the announcement: 'A key feature of Docker is the ability to create many copies of the same base filesystem almost instantly. Under the hood Docker makes heavy use of AUFS by Junjiro R. Okajima as a copy-on-write storage mechanism. AUFS is an amazing piece of software and at this point it’s safe to say that it has safely copied billions of containers over the last few years, a great many of them in critical production environments. Unfortunately, AUFS is not part of the standard linux kernel and it’s unclear when it will be merged. This has prevented docker from being available on all Linux systems. Docker 0.7 solves this problem by introducing a storage driver API, and shipping with several drivers. Currently 3 drivers are available: AUFS, VFS (which uses simple directories and copy) and DEVICEMAPPER, developed in collaboration with Alex Larsson and the talented team at Red Hat, which uses an advanced variation of LVM snapshots to implement copy-on-write. An experimental BTRFS driver is also being developed, with even more coming soon: ZFS, Gluster, Ceph, etc. When the docker daemon is started it will automatically select a suitable driver depending on its capabilities.'"

An anonymous reader writes "The openSUSE Linux distribution looks like it may be the first major Linux distribution to ship the Btrfs file-system by default. The openSUSE 13.1 release is due out in November and is still using EXT4 by default, but after that the developers are looking at having openSUSE using Btrfs by default on new installations. The Btrfs features to be enabled would be the ones the developers feel are data-safe."

darthcamaro writes "The Linux Foundation's Who Writes Linux report (sign up required) is now out and after 22 yrs leading Linux, Linux creator Linus Torvalds has fallen out of the list of top 100 developers in terms of code contributions. He currently ranks 101st for number of patches generated from the Linux 3.3 to the Linux 3.10 kernel releases." Read below for a few highlights from the report.

An anonymous reader writes "Michael Meeks has announced that the core of SUSE's LibreOffice team is moving over to Collabora, which will now be providing commercial LibreOffice support. 'It seems to me that the ability to say "no" to profitable but peripheral business in order to strategically focus the company is a really important management task. In the final analysis I'm convinced that this is the right business decision for SUSE. It will allow Collabora's Productivity division to focus exclusively on driving LibreOffice into Windows, Mac and Consulting markets that are peripheral to SUSE. It will also retain the core of the existing skill base for the benefit of SUSE's customers, and the wider LibreOffice community, of which openSUSE is an important part.'"

Nerval's Lobster writes "Linux vendors Red Hat and SUSE are pushing to make sure Linux-based virtual machines are an important part of datacenter-based hybrid clouds. The two are taking significantly different tacks toward the same destination, however. SUSE is using the visibility and cloud hype of VMware by extending its partnership with the virtualization provider to promote its SUSE Linux Enterprise Server for VMware as an alternative operating system for virtual machines running on VMware's vCloud Hybrid Service. Red Hat is happy to include VMware in its plans, but isn't limiting itself either to VMware-based clouds or, in fact, the idea that a Linux vendor has to tag along with a cloud- or virtualization developer to find its place in mixed infrastructures. 'We do not buy into the premise that a private or a hybrid platform based on one vendor's technologies and products is the answer,' wrote Bryan Che, general manager of Red Hat's Cloud Business Unit. More than 25 percent of customers want clouds or datacenter infrastructures using virtualization products from more than one vendor, according to a buyers' guide published in August by market researcher IDC."

An anonymous reader writes "Best Buy and Barnes and Noble have a problem with showrooming — shoppers checking out the merchandise in their stores and then proceeding to order the goods at a discounted prices online. And Red Hat might have a similar problem with people (not just college kids and software professionals boning up on their skills at home, either) using the free-as-in-beer CentOS rather than licensing Red Hat Enterprise Linux and paying support fees. But according to CEO Jim Whitehurst, Red Hat's competitive position may actually be helped by CentOS in the same way that counterfeit Windows products sold on the streets in the Far East may have helped Microsoft — by cementing their position as the technology standard, in a marketplace that also includes entrants from SuSE, Debian, Oracle, and Ubuntu, just among Linux-based entrants. Who does Whitehurst consider to be Red Hat's most direct threat? VMWare."

darthcamaro writes "UEFI Secure Boot is a problem that only desktop users need to worry about right? Well kinda/sorta/maybe not. SeSE today is releasing SUSE Linux Enterprise 11 SP3 which will include for the first time — support for UEFI Secure Boot. Apparently SUSE sees market demand for Secure Boot on servers too. Quoting Matthias Eckermann, Senior Product Manager at SUSE: 'Our market analysis shows that UEFI Secure Boot is a UEFI extension that does not only cover desktops, but might very well also be deployed and even required on server systems going forward.'"

darthcamaro writes "We all know that the open source LibreOffice Calc has been slow — forever and a day. That's soon going to change thanks to a major investment made by AMD into the Document Foundation. AMD is helping LibreOffice developers to re-factor Calc to be more performance and to be able to leverage the full power of GPUs and APUs. From the article: '"The reality has been that Calc has not been the fastest spreadsheet in the world," Suse Engineer Michael Meeks admitted. "Quite a large chunk of this refactoring is long overdue, so it's great to have the resources to do the work so that Calc will be a compelling spreadsheet in its own right."'" Math operations will be accelerated using OpenCL, unit tests are being added for the first time, and the supposedly awful object oriented code is being rewritten with a "modern performance oriented approach."