The H Week - GNOME 3.0 arrives, Android still open source & Symbian not, Epsilon breach

In the past week, Glyn Moody looked at why he was wrong about Microsoft, the GNOME project released version 3.0 of its Linux and Unix desktop, and Google's Andy Rubin said that Android is, and will continue to be, open source. RSA blamed Flash Player for its recent break-in, millions of email addresses were stolen in a breach at US firm Epsilon and Symantec said that the UK and Germany lead Europe as sources of malicious activity.

Featured

This week, Glyn Moody discussed at why he was wrong about Microsoft after reporting on the company for his entire journalistic life. Following the release of version 3.0 of GNOME, The H took an in-depth first look at what's new in the latest version of the Linux and Unix desktop from the GNOME project.

• Why I was wrong about Microsoft
• First look: GNOME 3.0

Open Source

After nearly five years of planning and development, version 3.0 of the GNOME Linux and Unix desktop arrived, along with a new GNOME Developer Center aimed at helping new developers find their way around the desktop environment's technologies; The OpenStreetMap Project launched version 2.0 of its Potlatch Flash-based OSM editor and Project Harmony, a group focussed on creating contributor agreements for free and open source software (FOSS), launched its new web site.

• GNOME 3 released
• GNOME Developer Center now online
• OpenStreetMap editing now faster, smarter and smoother
• Project Harmony opens website

Mozilla announced that it is going to be more hands-on with add-on performance and published a second beta for version 2 of its Mozilla Public License. The non-profit organisation behind the Firefox browser also confirmed that its Mozilla Messaging subsidiary was to be absorbed into Mozilla Labs and, in a draft roadmap, confirmed that version 5 of Firefox may ship on 21 June.

• Mozilla begins crackdown on slow starting Firefox add-ons
• Mozilla's latest MPLv2 draft revises GPL compatibility
• Mozilla reintegrates Messaging
• Firefox 5 coming 21 June?

At this week's Collaboration Summit, the Linux Foundation announced the launch of a new video contest to celebrate the 20th anniversary of the Linux operating system; it also created a High Availability Working Group to bring together leading experts in the industry to help define and speed up the development of high availability (HA) for Linux; the non-profit organisation dedicated to the task of promoting the growth of Linux also congratulated the Yocto Project on its 1.0 release and launched version 5.0 of the Carrier Grade Linux specification (CGL 5.0).

• Linux Foundation announces 20 years of Linux video contest
• High Availability Working Group created for Linux
• Linux Foundation announces Yocto Project Release 1.0, launches Steering Committee
• Specification 5.0 announced for Carrier Grade Linux

To cut costs, Canonical confirmed that it would be terminating its ShipIt programme which sent free CDs of Ubuntu to those that asked, and announced that the third Ubuntu App Developer Week will take place from 11 to 15 April; Google placed a $900 million bid on Nortel's patent portfolio and it was confirmed that the company is also working on a tablet version of its upcoming Chrome operating system (OS).

• Canonical cuts costs, sinks ShipIt
• Third Ubuntu App Developer Week announced
• Google bid for a patent armoury
• Google testing tablet version of Chrome OS

Following recent criticism after reports that Google is holding back the Android 3.0 Honeycomb source code and that it is taking more control over modifications to Android, Andy Rubin, VP of Engineering and the man in charge of Android development, said that Android is, and will continue to be, an open source platform, which, comScore says, is the most important smartphone OS in the US; Novell announced the commercial release of Mono for Android, and ASUS released the source code for its latest Eee Pad Transformer TF101 tablet, based on the Honeycomb version of Android; Nokia confirmed that the Symbian mobile phone OS is no longer open source, as the MeeGo developers work towards a tablet version of their OS.

• Mono for Android brings C# to Android
• Android chief says Android is still open source
• US: Android is the most popular smartphone system
• ASUS releases Honeycomb-based Eee Pad Transformer source code
• Nokia confirms Symbian no longer open source
• MeeGo now also for tablets

The web site of the UK newspaper The Guardian switched development from Java to Scala, and the IEEE (Institute of Electrical and Electronic Engineers) standardisation body launched two standardisation projects with the aim of realising a flexible, generally applicable framework for interoperability.

• Guardian switching from Java to Scala
• Cloud interoperability – the next steps

Open Source Releases

• Puppy Linux update brings improvements
• jQuery 1.5.2 released as 1.6 beta approaches
• After more than 30 years: Portable C Compiler reaches version 1.0
• KeePass password manager adds new features
• Zenwalk Core 7.0 arrives
• Virtualisation API libvirt hits 0.9.0
• The PyGTK era ends with last major release
• .NET ORM Dapper released as open source
• KDE issues 4.6.2 update, congratulates GNOME
• Version 2.0 of the Banshee media player released
• SystemRescueCd 2.1.0 updates Xfce desktop
• IronPython 2.7 released; supports Visual Studio
• LLVM 2.9 brings better C++0x support

Development releases

• Wine 1.3.17 implements Vista file dialogues
• Mageia Beta 1 released
• Skype 2.2 Beta for Linux released
• Mozilla releases SeaMonkey 2.1 Beta 3
• Nokia issues Qt SDK 1.1 Release Candidate

Security

This week, Flash Player vulnerability was blamed for the initial entry that led to the RSA break-in; Comodo put forward suggestions for limiting the mis-issue of certificates, while millions of email addresses were stolen from Epsilon, a US firm that sends emails on behalf of major on-line companies; a new version of the trojan SpyEye was reported as intercepting mTANs sent to mobile phones; and Secunia's Personal Software Inspector suffered an outage.

• RSA break-in: it was the Flash Player's fault
• Proposals for the future of certificates
• Millions of email addresses exposed in Epsilon breach
• Attacks on German mTAN banking users
• Secunia's PSI goes down due to server problems

A vulnerability in File Reporter was patched by Novell; WordPress 3.1.1 closed three holes; the IPComp implementation in NetBSD and FreeBSD was patched; and Ruby on Rails was updated to block a vulnerability that could allow cross-site scripting or script insertion attacks.

• Novell patches File Reporter vulnerability
• WordPress 3.1.1 closes security holes
• NetBSD and FreeBSD patch hole in IPComp implementation
• Ruby on Rails update addresses security vulnerability

Microsoft announced a major patch day next week to fix 64 vulnerabilities in a range of its products; the VLC Media Player was shown to be vulnerable to a stack-based buffer overflow; and details were released for future versions of Chrome to block hazardous .exe files.

• Microsoft: massive patch day planned
• VLC Media Player susceptible to buffer overflow vulnerability
• Chrome to block downloads of hazardous .exe files

Information infrastructure solutions firm EMC Corporation announced that it had acquired NetWitness, and a report from Symantec described how Germany is the top location in Europe for malware, phishing, botnets and other dubious activities, but the UK leads Europe as a source of malicious code.

• EMC acquires network security specialist NetWitness
• Symantec: UK and Germany lead Europe for malicious activity

Security Alerts

• DHCP client allows shell command injection

For all last week's news see The H's last seven days of news and to keep up with The H, subscribe to the RSS feed, or follow honlinenews on Twitter. You can follow The H's own tweeting on Twitter as honline.

(crve)