info@linuxcertified.com writes: Guardian Digital, the Open Source security company, and LinuxCertified today announced a partnership to make Linux and open source security training easily accessible and affordable for its widespread user base.

As an increasing amount of organizations turn to Linux for cost-effective solutions for business, security issues have become a critical concern. LinuxSecurity.com and Guardian Digital bridge the gap between the increased risks of being online today with applications for building a secure Internet presence.

Guardian Digital Director of Online Operations Benjamin D. Thomas stated, ?By providing LinuxCertified?s classes through the LinuxSecurity.com website, we are furthering Guardian Digital?s goal to empower IT professionals with Linux and open source security knowledge. We believe that with the ever-increasing adoption of Linux-based systems in the enterprise, it is essential that advanced Linux training and certification be easy and readily available to our users.?

?LinuxCertified?s goal is to enable IT professionals to effectively configure and manage complex networks based on open source technologies. Clearly, securing Linux and knowledge of open source security tools is crucial in such environments,? said Rajesh Goyal, Vice President of marketing at LinuxCertified. ?We are delighted about this partnership, as reaching LinuxSecurity.com user base will enable us to achieve our goal.?

Under the terms of the partnership, LinuxSecurity.com users will receive a discount on classes offered through LinuxCertified. Further information is available on the LinuxSecurity portal at http://www.linuxsecurity.com/. LinuxCertified students will have access to key whitepapers and software provided by security experts at Guardian Digital.

About Guardian Digital:

Guardian Digital, Inc., the first full-service open source security company, is dedicated to providing secure Internet infrastructure solutions for business. Guardian Digital produces software to securely manage all Internet operations, perform intrusion detection and firewall functions, conduct eBusiness, as well as secure turnkey server appliances. Guardian Digital products address the increasing demand for cost-effective and standards-based platforms for developing a secure Internet presence. To learn about Guardian Digital?s products and comprehensive service offerings, visit Guardian Digital on the Web at:
http://www.GuardianDigital.com or call 1-866-GD-LINUX.

About LinuxCertified:

LinuxCertified’s mission is to bring Linux to mainstream IT usage. LinuxCertified firmly believes that Linux has an enormous potential, as it crosses over from the early adopters to the more mainstream users. LinuxCertified?s goal is to help this transition by providing Linux trained and certified professionals and Linux certified products that cater to mainstream users rather than early adopters. LinuxCertified is a group of professionals from both inside and outside the computer industry with great enthusiasm for Linux.
http://www.linuxcertified.com

Contact:
Jennifer Olson
Guardian Digital, Inc.
201-934-9230,
press@guardiandigital.com

and

Rajesh Goyal
LinuxCertified, Inc.
408-314-6700
rajesh@linuxcertified.com

Linux is a registered trademark of Linus Torvalds.
All other names and trademarks are the property of their respective owners.

– By Grant Gross –

If using Open Source software makes government computer systems susceptible to terrorists as a forthcoming white paper by conservative think tank Alexis de Tocqueville Institution claims, then ADTI’s own Web site is at risk. ADTI.net runs a version of … Apache.
This fact was pointed out by Richard M. Smith on Declan McCullagh’s Politech email list. So I went to Netcraft.com and checked for myself. Sure enough: “The site www.adti.net is running Rapidsite/Apa/1.3.20 (Unix) FrontPage/4.0.4.3 mod_ssl/2.8.4 OpenSSL/0.9.6 on IRIX.” Web host Rapidsite uses a customized of the Open Source Apache Web server, and Adti.net also runs OpenSSL, the Open Source Secure Sockets Layer toolkit.

ADTI president Ken Brown, whose white paper says Open Source software provides hackers/crackers its “blueprint,” volunteers the fact that the site runs on Apache before I can ask him about it during a chat earlier today. “We’re pro-Open Source here at de Tocqueville,” he says.

My response to Brown: “Huh?”

Brown answers that his white paper specifically questions the security of the GNU General Public License, not other BSD-like Open Source licenses, such the Apache Software License, although the white paper’s press release doesn’t make the distinction. “[Open Source] is great for experimentation, and it’s great for research,” Brown says. “We’re talking about national security, and when it comes to the whole issue of hacking a system, we conclude and we will defend to the end, that more information is better [for hackers/crackers]. If you provide more code, you’re giving a [hacker] person more information. At the end of the day, you’re educating people about what you’ve done, and we don’t see any real benefit to that, especially if it’s a bad person.”

Editor’s note: Here’s a link to the study [DPF], apparently released June 10.

So BSD good, GPL bad? That sounds exactly like Microsoft’s position lately, although I’m not sure what a big difference that makes in this case, because both licenses allow access to the source code. So the issue apparently is that seeing the source code, or the blueprint, isn’t really the problem, but making the your changes available to others suddenly opens up all kinds of new security holes. Last time I checked, the GPL doesn’t require you to share your passwords or upload your SSH key to Richard Stallman.

So we have a think tank that doesn’t put its money where its mouth is. Smith, on Politech, also says the Alexis de Tocqueville Institution has gotten funding from Microsoft in the past, and a a story at Wired.com today confirms that. The think tank has been a Microsoft antitrust apologist in the past. (That’s just one of more than a half dozen pro-Microsoft papers on ADTI.net, pointed out by OSDN programmer Jamie McCarthy on Politech.) Why isn’t that a surprise?

Of course, Microsoft doesn’t always put its money where its mouth is, either. Remember Microsoft’s anti-Unix site Wehavethewayout.com, which was originally running FreeBSD?

I ask Brown about Microsoft funding for this specific study, and he says it’s against ADTI’s policy to comment on who funds its studies. I suggest that not disclosing the paper’s financial backers may cause people to question the validity of the study.

Brown answers: “I have a lot of faith in the American people. If somebody wrote something tomorrow that everyone should move to California, people aren’t going to get up and move to California. It has nothing to do with a travel organization funding the study, it has to do with common sense. We think that something should be challenged on its merits.”

So Brown and I move on to the merits of the white paper’s conclusions. He agrees when I suggest Microsoft products have a long history of security problems. “Our position is not that one system is better than another,” Brown adds. “We never said that. Our paper is about Open Source, that’s it.”

Still, I press Brown on the Microsoft alternative to Open Source, given Brown’s theory that Open Source can be exploited by terrorists. He claims “volunteer” organizations like Open Source projects don’t have much of a chance of competing with huge corporate initiatives.

His reasoning: “You get 10 smart people together in a room, and they’ll come up with some pretty good code. You get 100 smart people together, and they’ll come up with some even better code … and on and on from there, assuming there’s some break-off point and somebody can’t make it any better.”

He continues: “Now, let’s change the model from numbers of people to accountability, warranties, customer service, manuals, that kind of thing. You take an organization that doesn’t have any accountability, that provides no warranties, no guarantees for its services, is not financially rewarded necessarily for providing its fixes, I don’t think it can compare in efficiency to an organization that does. You can’t say a volunteer group is necessarily always going to as efficient as a group that’s contracted.”

I don’t even know where to start to respond to that statement. The hundreds of horror stories about getting tech support from Microsoft and other large computer companies run through my head. Brown has limited time to talk, so instead I suggest that people often do better work for volunteer organizations than their employers, because they’re doing what they love, not what they’re getting paid for.

“The fact is, I want a guarantee as a businessman, I want accountability,” Brown answers.

Brown should talk to Microsoft about guarantees. One NewsForge reader points out something I’d nearly forgotten: The Windows End User License Agreement specifically disclaims any obligation of a warranty. It seems that Brown’s holding Open Source up to a standard he doesn’t expect from his past financial backer. And, besides, if you find a software company willing to sell you a system it guarantees can never be cracked, ask if it can add some snake oil to your order.

Okay, I point out, in the case of security, it appears as if the Open Source model somehow works better, especially when compared to Microsoft. Even when I take into account that many Microsoft products are used by millions of people, many of whom shouldn’t have gotten a license to operate a computer in the first place, Open Source products seem to have fewer serious security problems, not to mention that Open Source bugs seems to get fixed a whole lot faster.

The “many eyes squash many bugs” explanation seems to hold water, and although most Open Source projects aren’t created by 100 smart people sitting in a room together, the model Brown likes, they are created by hundreds of people talking on the Web together, and these are generally people who care as deeply about their projects as Boston Red Sox fans care about another late-season choke. No, most Open Source coders aren’t paid, but neither are the rabid Red Sox fans.

“In the case of security, it appears that Open Source products have fewer security vulnerabilities,” I say to Brown. “So somewhere, there’s an efficiency there.”

Brown seems to back off: “What we’ve been suggesting in our study … is that this deserves more study. And that’s where we stand. We think there should be a commission to do a rigorous test and do a study. We didn’t do a [security] study comparing proprietary software to Open Source, and I’d like unbiased community of people to do this kind of study.”

I point to studies like a recent one from Gartner Group that suggests Microsoft security would benefit from an Open Source-style review. But, I add, the Open Source community would probably welcome an unbiased study of that sort. So Brown and I finally find some common ground.

The white paper, which has gotten unquestioning coverage at places like ZDNet, is scheduled to be released Friday and will also include critiques about Open Source attitudes about intellectual property and Open Source. Brown, who says he has four years of experience writing about technology, authored the study with help from several others after more than six months of interviews about Open Source, he says.

I remain intrigued by Brown’s assertion that showing the source code “blueprint” makes Open Source software more vulnerable to terrorists. That theory leaves out the assumption that sysadmins have a variety of tools at their disposal to make systems more secure. Most people who know much more about information security than I do would advise people worried about security to never install a default Web server or operating system, whether its Open Source or proprietary. You need to take the precautions available and keep up with the security updates, and you need to realize that no system is totally invulnerable.

As Brown says he has to get off the phone, I give him another blueprint scenario:

Let’s pretend you and I are burglars, I tell him. We’re considering breaking into two houses. We have the blueprint for the first house, let’s call it the Open Source house. We know how the house is laid out, we know where the doors are, but we also know that there are locks on the windows, there are dead-bolt locks on all the doors, there’s a burglar alarm installed, there are two 100-pound Rottweilers living inside, and the owner keeps a loaded double-barrel shotgun somewhere in the house.

Let’s call the second house the Microsoft house. We don’t have a blueprint, but we know the owner doesn’t have locks on the windows, has no dogs, guns, or burglar alarm, and tends to leave the back door unlocked.

So, I ask Brown, which house are we going to break into? Does the blueprint really help us?

Brown doesn’t have much of an answer to that.

John Masterson writes: Modwest Inc., a growing provider of shared and managed hosting services, announced today a near doubling in its customer base thus far in 2002. The company attributes the majority of the explosive growth to customer referrals and existing customer expansions.

“Service enhancements such as spam and virus filtering, as well as the launch of our new managed server plans in December, have definitely contributed to this wave of new customers. But it?s the full-featured Linux hosting environment and customer service that inspires our customers to spread the word,” said John Masterson, Modwest co-founder and VP of Business Development.

Through careful planning, studious projections, and minute-by-minute monitoring of all system resources, Modwest has successfully avoided scalability issues common to companies experiencing high growth rates. Masterson explains, “We have always planned for rapid growth, and an integral part of that plan included building an server infrastructure that could accommodate seamless load-balancing and ease of system administration.”

The combination of this easy-to-upgrade infrastructure, an aggressive marketing campaign to the open-source hosting market, and a commitment to exceeding customer expectations adds up to explosive growth for Modwest.

“Our customer signup rates are actually still increasing, with no signs of letting up. It?ll be a wild ride, but we’re prepared. In fact, this rate of growth is exactly as we intended,” says Masterson.

About Modwest

Modwest is a provider of shared and managed outsourced hosting services. Founded in early 2000 by Internet veterans focused on user interface design, server administration, web application development, and business management, Modwest specializes in open source platform hosting and development. For more information, visit the company?s website at www.modwest.com.

# # #

Copyright 2002, Modwest Inc. All rights reserved.

At a launch event at Oracle headquarters, executives from Dell, Oracle and Red Hat unveiled flexible, cost-effective solutions on Red Hat Linux Advanced Server that are available today for enterprise customers. These new Linux platforms enable customers to migrate from expensive, proprietary systems to robust, high-performing and more cost-effective industry-standard platforms for their business-critical applications.

As platform development partners for Oracle9i Database on Linux and leaders in the server, database and Linux markets respectively, Dell, Oracle and Red Hat have optimized these solutions to provide maximum performance, while increasing customers? return on investment and simplifying corporate computing infrastructures.

Specifically, Dell will certify its entire line of PowerEdge servers for Red Hat Linux Advanced Server and Oracle9i Database Release 2. In the coming months, Dell will offer certified configurations of Oracle9i Real Application Clusters (RAC), speeding deployment and increasing availability for business-critical Oracle database applications.

In addition, Dell will now resell Oracle licenses with PowerEdge servers and certified configurations, further simplifying the customer?s experience for Oracle9i Database and Oracle9i Application Server deployments. Customers can choose Dell as a single point of sale for all their Dell-Oracle configurations and with the same level of service and support as if purchased from Oracle directly.

Leaders in Linux
Dell has worked extensively with Oracle and Red Hat to deliver industry-firsts that include the first Oracle9i Database certified configuration running Red Hat Linux and the first Oracle clustering certification on Dell | EMC storage systems.

“Over the last six months, we have seen a significant increase in Linux interest from our corporate customers,” said Russ Holt, vice president of Dell’s Enterprise Systems Group. ?Fortune 500 companies are turning to Dell, Oracle and Red Hat to take advantage of the dramatic price and performance benefits we can provide through a comprehensive Linux-based solution for infrastructure computing.”

“As Oracle continues to evolve our technology to meet our customers’ requirements, Dell has become a leading partner because of their commitment to high performance and flexibility at a competitive price point,? said Juan Jones, vice president Market Development, Platform Technologies Division, Oracle Corp. ?Our goal is simply to provide Oracle’s world class technology on industry standard servers so that customers have a low-cost, highly available choice for running their business.”

Dell PowerEdge servers will also support Oracle9i Database Release 2 and Oracle9i RAC on Microsoft Windows 2000 Server when it becomes available.

About Dell
Dell Computer Corporation (Nasdaq: DELL), the world’s most preferred computer systems company, is a premier provider of products and services required for customers worldwide to build their information-technology and Internet infrastructures. The company’s revenue for the past four quarters totaled $31.2 billion. Dell, through its direct business model, designs, manufactures and customizes products and services to customer requirements, and offers an extensive selection of software and peripherals.

Information on Dell and its products can be obtained at www.dell.com.

LinuxSecurity Contributor writes: “A Comprehensive Guide to Building Encrypted, Secure Remote Syslog-ng Servers with the Snort Intrusion Detection System.

http://www.linuxsecurity.com/feature_stories/snort log-part1.html“

Mozilla.org, the organization
that coordinates Mozilla open-source development and provides services
to assist the Mozilla community, today announced the release of Mozilla
1.0, the first major-version public release of the Mozilla software. A
full-fledged browser suite based on the latest Internet standards as
well as a cross-platform toolkit, Mozilla 1.0 is targeted at the
developer community and enables the creation of Internet-based
applications. Mozilla 1.0 was developed in an open source environment
and built by harnessing the creative power of thousands of programmers
and tens of thousands of testers on the Internet, incorporating their
best enhancements.
Built on the Gecko layout engine, Mozilla 1.0 is cross-platform and
integrates a core set of applications that allow users to access the
capabilities of the Web, including a web browser, an email reader and a
chat client. Gecko is the core browser component in Mozilla 1.0 and was
developed as part of the mozilla.org open source project; it is freely
available for inclusion in third party products. Mozilla 1.0 uses Gecko
to deliver the most advanced, standards-compliant browser across
platforms; the ease of embedding Gecko brings the same power to desktop
applications as well as devices. The release of Mozilla 1.0 signals a
new level of compatibility and maturity of the programming interfaces
provided by Gecko, and paves the way for the arrival of new Gecko-based
products.

In addition, Mozilla 1.0 is a cross-platform toolkit for developing
Internet-based applications. By offering a set of components that can be
used in a wide range of applications, are all open source, free of
charge and have been tested through their use in Mozilla 1.0’s end-user
applications, Mozilla 1.0 enables developers to build applications for a
cross-platform, network-centric world. Mozilla 1.0 also expands the
range of developers who can write complex applications since Mozilla’s
architecture enables the creation of such complex applications by
building upon the same technologies that are used to create web content.
For instance, Gecko displays web content on the user’s screen and parses
and renders HTML and XML content, and this ability to understand and
display HTML and XML is valuable in numerous applications beyond the
browser. In addition, Mozilla’s cross-platform component implementation,
Mozilla’s cross-platform XML-based user-interface development technology
(“XUL”), its networking libraries, its ECMAScript (JavaScript)
implementation, and its security and encryption libraries are all part
of the Mozilla 1.0 cross-platform toolkit for application development.

“Mozilla.org is excited about releasing the Mozilla 1.0 code and
development tools to the open source community, and providing developers
with the resources they need to freely create and view the presentation
of their content and data on the Web,” said Mitchell Baker, Chief Lizard
Wrangler at mozilla.org. “As the browser has become the main interface
between users and the Web over the past several years, the goal of the
Mozilla project is to innovate and enable the creation of
standards-compliant technology to keep content on the Web open. As more
and more programmers and companies are embracing Mozilla as a strategic
technology, Mozilla 1.0 signals the advent of even further dissemination
and adoption of open source and standards-based software across the
Web.”

“The Mozilla project has quietly become a key building block in the open
source infrastructure. In addition to the open source Mozilla browser
and the Netscape 7.0 browser, the Mozilla toolkit has been used to
create additional browsers for platforms such as Linux and Mac OS X,
instant messaging clients such as Chatzilla and the cross-platform
Jabber client, and software development tools such as ActiveState’s
Komodo IDE,” said Tim O’Reilly, Founder and CEO, O’Reilly & Associates,
Inc. “Moreover, there are over 70 distinct projects hosted at
mozdev.org, the community site for Mozilla derivatives. This
industry-wide momentum ought to be considered a major success in
anyone’s book.”

“The release of Mozilla 1.0 represents a huge milestone for the free
software community. From browser technology to software development
tools, the Mozilla project has had an enormous impact on open source
development,” said Nat Friedman, Vice President of Product Development
at Ximian Inc. “Most importantly, Mozilla 1.0 is a key part of an
industrial-strength open source desktop.”

“The launch of Mozilla 1.0 is a key event for embedders across the Web,
it gives us a stable platform to develop upon in addition to guaranteed
APIs to build applications with,” added Philip Langdale, Mozilla
interfacing code maintainer for the Galeon
web browser project. “We would like to congratulate the entire
mozilla.org team for producing such an outstanding product, as key open
source projects including Galeon would not have reached this level of
quality or maturity without their hard work.”

By virtue of embedding Gecko, Mozilla 1.0 and products based on Mozilla
code support more web standards, more deeply, more consistently across
more platforms than any others. Mozilla 1.0 features full support for
HTML 4.0, XML 1.0, Resource Description Framework (RDF), Cascading Style
Sheets level 1 (CSS1), and the W3C Document Object Model level 1 (DOM1).
Mozilla 1.0 also has the industry’s best support for Cascading Style
Sheets Level 2 (CSS2), the Document Object Model Level 2 (DOM2), and
XHTML. Standards support also includes XML data exchange and
manipulation of XML documents with SOAP 1.1, XSLT, XPath 1.0, and
FIXptr, as well as support for display of mathematical equations using
MathML. Finally, it features a solid foundation of support for data
transport protocols (HTTP, FTP, and SSL/TLS), multilingual character
data (Unicode), graphics (GIF, JPEG, PNG and MNG) and the latest version
of the world’s most popular scripting language, JavaScript 1.5.

Further, Mozilla has been designed for easy localization into languages
other than English, and localized versions of Mozilla 1.0 will be
available in the following languages (with more to follow): Asturian,
Chinese, Dutch, Estonian, Galician, German, Georgian, Greek, Hungarian,
Italian, Japanese, Malay, Polish, Slovak, Sorbian and Ukrainian. (For
further details, please visit
http://www.mozilla.org/projects/l10n/mlp_status.html).

Mozilla 1.0 is available for free download at: http://www.mozilla.org.
For additional information on Mozilla 1.0, please visit mozilla.org for
the Mozilla 1.0 Guide.

Mozilla will celebrate the release of Mozilla 1.0 with a party at the
DNA Lounge in San Francisco at 8pm on Wednesday, June 12, 2002. Details
are available at http://mozilla.org/party/2002/flyer.html.
Additional parties are also being planned by Mozilla participants at 126
locations worldwide. Information on these parties can be found at:
http://www.schnitzer.at/mozparty/.

About Mozilla.org
Mozilla.org (www.mozilla.org) is the group that exists to make Mozilla a
successful open source project; it supports the entire Mozilla
community. Mozilla.org provides a central point of contact and community
for those interested in using or improving the Mozilla code base.
Mozilla.org provides Open-Source Internet client software that includes
a browser, mail and news functionality, and a toolkit for developing
Web-based applications. Mozilla’s code is designed for performance and
portability, features industry-leading standards-support, and makes
extensive use of XUL (Extensible User-interface Language) as an
easy-to-use interface programming tool. Mozilla.org receives code and
contributions from both individual volunteers and from commercial
entities which use Mozilla code as a foundation for product releases.
Mozilla.org was founded by Netscape Communications Corporation.

Mozilla and the Mozilla logo are trademarks of mozilla.org.

– by Tina Gasperson –
It’s not a huge surprise that Paris-based Linux distributor MandrakeSoft is selling stock to raise money.
The company has displayed a fair amount of creativity in recent attempts to fill the
company coffers; the Mandrake Linux Users Club and the Corporate Club are both
subscription-based options that provide perks for a monthly fee. Mandrake isn’t
saying one way or the other whether these offerings have been successful
fundraisers, but an announcement Tuesday said that “despite a difficult
economic climate” Mandrake has achieved a “solid increase in revenues.”
Mandrake needs to break even before the end of the year; back in May 2001 there was
talk
of getting out of the red in a “few months.” In its February 2002 shareholder newsletter, it was “confident that it will reach its
break even point by the last quarter of 2001/2002,” through greater income and a
bigger profit margin. Now, heading into the last quarter of Mandrake’s fiscal
year, the push is on to fulfill the “break even promise.” Even KBC Securities, a
French financial analysis company, predicted a near profit for Mandrake by
September 2002.

So the company is raising money through a stock sale that is only available to Mandrake Club members. Current stockholders have offered to freely give their warrants to allow Mandrake Club members to purchase stock easily. Warrants are pieces of paper that give a potential shareholder the right to purchase a predetermined number of shares at a set price, similar to a stock option, except that with warrants, new shares are created, and with options, you get existing shares.

The April shareholder newsletter doesn’t mention the extent of Mandrake’s
gains or losses, or progress toward the goal of profitability. The fact that the
company doesn’t participate in a regulated stock market means the requirements
for financial reporting are much less stringent; if you don’t want to talk about
how much money you lost, you don’t have to. Instead the report focused on an
increase in sales generated by online product sales and OEM sales, particularly
through Hewlett-Packard, and by Mandrake Club memberships. There’s a brief
mention about a drop in sales caused by a slowdown in American distribution
channels, namely MacMillan, which the KBC Securities report touted as one of
Mandrake’s biggest sources of income, along with French retailers, calling it
the “lion’s share” of revenue. There’s also a hint about the stock sale: “In
order to continue its development and increase its market share, MandrakeSoft
plans a capital increase, with the aim to further strengthen its financial
structure.”

But along with the stock announcement, Mandrake posted a better breakdown of
its financial situation, showing its current loss at 3.67 million Euros, an
improvement over the previous quarter’s loss of 6.05 million Euros. Even though
it may be tough to bring the company to a break-even point by September, if the
current trend continues, it is possible, especially if Mandrake is successful
with this stock offering.

Digging a little deeper, an interesting read is found in the FAQ about this
stock offering. Mandrake compares its value with Red Hat by extracting some
market cap information and manipulating it a bit. For instance, Mandrake has
determined that Red Hat’s revenue trend is down over the last six months, yet
Mandrake’s revenue trend is up. Plus, Mandrake calculated the ratio of its revenue
to the market cap, and found that Red Hat’s cash is a good buffer for that company,
increasing its revenue/market cap ratio to 9.3 (with cash) from 6.1 (without
cash). Mandrake’s ratio is 8.2, without the cash buffer Red Hat has, so the
company feels it is in a good position to remain viable, especially if the stock
offering brings in the green.

Mandrake goes on to list its strengths compared to Red Hat:

MandrakeSoft’s revenue is growing while Red Hat’s revenue is going down.

MandrakeSoft has an important position in the market due to the size of its user base which has not yet been fully utilized for revenue
purposes compared to Red Hat’s user base.

MandrakeSoft generates only 9% of its revenue from services while Red Hat’s revenue is generated 80% from services, so
MandrakeSoft’s future growth potential is much greater. Also, MandrakeSoft has interesting sources of revenue such as the
Corporate Club and the User Club which provide highly sustainable and recurrent revenue sources.

MandrakeSoft has an outstanding reputation as a dedicated Open Source company that provides IT solutions that follow, as much
as possible, public standards and protocols.

And recognizing Red Hat’s advantages, Mandrake points out:

Red Hat is listed on an established market (Nasdaq) while MandrakeSoft is on a small market (Marché Libre and OTC U.S. market).

Red Hat is an established leader and has strong partnerships with major players.

MandrakeSoft’s loss/income ratio is higher than Red Hat’s. For MandrakeSoft 13.6ME/3.6ME=3.7 last fiscal year (Oct. 2000-Sept.
2001), or 3.7/2.3ME=1.6 first semester (Oct. 2001-March 2002), while Red Hat’s fiscal year gives $129M/$78.9M=1.6 (March
2001-Feb. 2002), which includes probable deprecation of acquisitions.

MandrakeSoft does not have the cash of Red Hat — and cash is life insurance.

That last statement could be a telling one.

Since Wired.com can actually get Microsoft representatives to talk to them (as opposed to NewsForge’s lack of success in this department..hmm), Michele Delio gleaned a few inferences from the discussion on the Tocqueville Institute here at NewsForge and decided to ask Microsoft if it funds the conservative think tank. A company spokeperson told her it does, but refused to comment on whether or not the report that targeted Open Source as a vehicle for terrorism was commissioned by the traditional enemy of Linux. Read more at Wired.com.

According to this commentary at OSOpinion, we shouldn’t push a total switch to Open Source at first, but should gently encourage a mixing of Open Source and proprietary software so as not to shock the poor darlings who’ve been weaned on Windows.

Yet another Nader article (YANA), this time from The Register, whose John Lettice brings a foreigner’s perspective to the political doings in America. “and the pair go on to query … how much it would cost
the government to just buy “high quality” productivity code outright (an intriguing
notion this, but one we fear would inevitably end in a train-wreck if pursued…)”