IBM today announced that Tommy Hilfiger
Corporation has chosen IBM, eOneGroup and Linux for its new e-business
infrastructure as the company works to expand its presence among thousands
of U.S. specialty retailers, as well as its worldwide manufacturing
facilities and employees.

Tommy Hilfiger selected technologies from IBM, including IBM eServer
products running Linux, DB2 Universal Database, Java and eOneGroup’s suite
of software products to create:

A new B2B portal (www.tommyb2b.com) that allows Tommy Hilfiger’s
specialty retailers and salesforce to view, via the web, selected core
and seasonal apparel products such as jeans and other basic available
inventory in real-time, and place, track and ship orders;
A business-to-plant website that links Tommy Hilfiger’s production
facilities around the world, which is expected to speed
design-to-product time and significantly decrease costs; and
A virtual employee store that allows, for the first time, Tommy Hilfiger
personnel to shop online around the clock.

The web infrastructure, designed and built by IBM Business Partner
eOneGroup, includes IBM eServer xSeries servers running Linux to handle
web-based transactions, integrated online with IBM eServer iSeries servers
running Java that are tied to existing wholesale and warehouse management
systems.

“We identified an increasing demand for our products among mid-market
specialty retailers, and IBM and eOneGroup delivered the technologies and
expertise we needed to reach this growing market segment,” said Brent
Findon, vice president of system development at Tommy Hilfiger. “In
addition, by integrating these new web portals with our existing back-end
systems, we saved significantly on the time and expense of deploying this
total infrastructure.”

“IBM’s server interoperability and application flexibility enabled us to
reach Tommy Hilfiger’s goals of lower costs and increased revenue,” said
Dan Watson, president of eOneGroup. “The manufacturing portal and employee
store are expected to produce substantial cost savings and tommyb2b.com has
already proved productive and efficient for specialty store retailers with
limited travel budgets.”

“Tommy Hilfiger needed a solution that provided the performance and
reliability necessary to win in the tough retail marketplace,” said Buell
Duncan, general manager of IBM’s mid-market servers. “With our IBM Business
Partner eOneGroup, we are committed to helping Tommy Hilfiger grow into new
markets with its powerful e-business infrastructure.”

About Tommy Hilfiger
Tommy Hilfiger Corporation, through its subsidiaries, designs, sources and
markets men’s and women’s sportswear, jeanswear and childrenswear under the
Tommy Hilfiger trademarks. Through a range of strategic licensing
agreements, the company also offers a broad array of related apparel,
accessories, footwear, fragrance and home furnishings. The company’s
products can be found in leading department and specialty stores throughout
the United States, Canada, Europe, Mexico, Central and South America,
Japan, Hong Kong and other countries in the Far East.

About eOne Group
eOneGroup LLC is a provider of Internet e-commerce products and integration
services. eOneGroup serves both business-to-business and
business-to-consumers throughout the United States. Their expertise
encompasses all facets of the interactive Web content arena, from
feature-rich online shopping applications to enterprise-level Web
integration. eOneGroup LLC customers include Omaha Steaks, BIC Pens,
Valmont MicroFlect and many other high Internet volume activity sites.
eOneGroup LLC has headquarters in Omaha, Neb.

About IBM
IBM is the number one server company in the world, offering a full line of
data transaction, web application and appliance servers that embrace
industry standards. Powered by breakthroughs such as microprocessors with
copper wiring and Silicon-on-Insulator technology, IBM servers have
captured industry leading benchmarks that measure transactions, web serving
capabilities and performance in software applications. The IBM eServer
line is an integral part of customized, flexible and scalable Internet
solutions for companies of all sizes. IBM supports Linux on its entire
portfolio of e-business servers.

IBM news releases and fact sheets are available at http://www.ibm.com.

The IBM eServer brand consists of the established IBM e-business logo with
the following descriptive term “server” following it.

The following are either trademarks or registered of International Business
Machines Corporation in the United States or other countries or both: IBM,
the IBM e-business logo, xSeries, iSeries and DB2 Universal Database.

Linux is registered trademark of Linus Torvalds.

All others are trademarks or registered trademarks of their respective
companies.

Anonymous Reader writes, “Many people look to operating systems such as Linux when they need reliable security. However, like any other system, there are many tools an administrator should have at his disposal to get optimal security in Linux. That’s why MandrakeSecure makes so much sense.”

More at ofb.biz.

Tosatti: “Hi, here goes pre3. People with Pentium Pro, please test if the workaround is really working correctly…”

pre3:

- Enable ppro errata workaround                 (Dave Jones)
- Update tmpfs documentation                    (Christoph Rohland)
- Fritz!PCIv2 ISDN card support                 (Kai Germaschewski)
- Really apply ymfpci changes                   (Pete Zaitcev)
- USB update                                    (Greg KH)
- Adds detection of more eepro100 cards         (Troy A. Griffitts)
- Make ftruncate64() compliant with SuS         (Andrew Morton)
- ATI64 fb driver update                        (Geert Uytterhoeven)
- Coda fixes                                    (Jan Harkes)
- devfs update                                  (Richard Gooch)
- Fix ad1848 breakage in -pre2                  (Alan Cox)
- Network updates                               (David S. Miller)
- Add cramfs locking                            (Christoph Hellwig)
- Move locking of page_table_lock on expand_stack
  before accessing any vma field                (Manfred Spraul)
- Make time monotonous with gettimeofday        (Andi Kleen)
- Add MODULE_LICENSE(GPL) to ide-tape.c         (Mikael Pettersson)
- Minor cs46xx ioctl fix                        (Thomas Woller)

From PR Newswire: Rainbow
eSecurity, a Rainbow Technologies, Inc. (Nasdaq: RNBO) company and a leading
solutions provider of digital content and transaction security, and Guardian
Digital, the open source security company, today announced a strategic and
technology partnership aimed at securing Linux-based transactions. This
integrated solution consists of Rainbow’s CryptoSwift eCommerce accelerator
and Guardian Digital’s EnGarde Secure Linux software suite.

From PR Newswire: ARM [(LSE: ARM); (Nasdaq: ARMHY)], the industry’s leading provider of
16/32-bit embedded RISC processor solutions, today announced that it has
expanded its development tools portfolio with the introduction of the latest
version of the ARM(R) Developer Suite(TM) software, version 1.2. This latest
version of the established ARM software solution includes tools to support the
industry-leading ARM Jazelle(TM) technology for Java(TM) hardware
acceleration, as well as support for the latest ARM microprocessor cores and
host support for Linux.

This latest version of the ARM Developer Suite also includes host support
for Red Hat Linux, allowing Linux users to utilize this software solution for
the first time. The software also incorporates support for the ARM VFP9-S(TM)
and the ARM VFP10(TM) vector floating-point coprocessors.

David Sugar tells us about what’s new in GNU Bayonne (December 5, 2001),
See http://www.gnu.org/software/bayonne for general information.

1. What is new?
2. Bayonne ISDN and CAPI support
3. What I am doing in GNUCOMM
4. PV Info Server and BayonneDB
5. Outline of Bayonne changes
6. “GNU/”LinuxWorld NYC
7. Where help is needed

What is new?
~~~~~~~~~~~~
With all that has been going on, it seemed a good time to distribute
updates for all major packages that are part of GNUCOMM. This includes
GNU Common C++, GNU ccRTP, GNU ccAudio, GNU ccScript, and GNU Bayonne.
This massive release includes many changes I worked on while in the
Netherlands and London last week, as well as major changes contributed by
others.

In GNU ccRTP, Frederico contributed a number of important fixes for
multicast support and other problems which made a new release necessary.
This new release also includes what has been worked on by me for the GNU
user agent so far.

In GNU Common C++, we had a number of bug fixes, patches, etc, that came
in thru the last couple of weeks from various sources. Freddy continues
to improve the win32 builds. In addition, I have added some common server
design patterns to the package.

I found a number of small and interesting bug fixes to do in GNU ccScript.
In GNU ccAudio, a change in GNU Common C++ made it necessary to re-release
this as well.

One might gather I had been a bit busy while I was away in Europe last
week. I also have outlined plans for Bayonne development thru early next
year, including some large scale changes I hope we will be able to
complete and demonstrate by the time of GNU/LinuxWorld NYC at the end of
January. Some of these recent core library changes were undertaken to
make that goal easier to accomplish.

Bayonne ISDN and CAPI support
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Among other things I had a chance to work with Zaheer in testing the
Bayonne CAPI support. We found a few problems in the current code base,
and have cleaned them up to the point where CAPI is again functional in
0.7.4. This was the first time of course I had been able to see the CAPI
driver run at all, or to do any live testing on the original submitted
code.

Meanwhile, we have added more complete call progress analysis support to
the Dialogic ISDN driver. The PRI driver can be tested in places like
OSDL for those wishing to work on improving it further. We may soon have
other locations available to us again for testing PRI support on live
spans with dialable numbers. We also have excellent development and
testing facilities inside OSDL today, although they lack live circuits.
If anyone has a location they would like to contribute for live Bayonne
testing, please contact me.

What I am doing in GNUCOMM
~~~~~~~~~~~~~~~~~~~~~~~~~~
There are things I am looking to do to help move GNUCOMM as a whole
forward into next generation telephone networks. What I envision is a
seamless environment where we will have a GNU user agent with plugins used
along with SIP phones for station side telephony services. These new
services will be driven thru the IPSwitch project and a new Bayonne
derived softswitch application server, Olorin, as well as a gateway
server.

Within this scheme we hope to fully address next generation telephone
server needs. We would like soon to be able to test some GNUCOMM
components with existing softswitch and gateway software and products.
In particular, I would like to test what will become Olorin with a Sonus
switch or similar equipment sometime early next year if this can be
arranged for.

Rich Bodo is of course responsible for carrying GNUCOMM forward as a
whole. I am articulating how this will happen within those projects I am
carrying forward under GNUCOMM for next year. While softswitch and next
generation telephone network support is certainly important for GNUCOMM,
this is not actually the area I personally am primarily focused on for
early next year. Rather, I am looking at improving support for carrier
based and commercial deployment of GNU Bayonne for existing telephone
networks. We do expect to significantly improve commercial deployability
of GNUCOMM services for existing telephone networks over the next few
months, both from the perspective of commercial carriers and commercial
enterprise users.

To tie both current and next generation telephony services together with
other systems and services, we expect to continue using Apennine and
later a new Apennine server based on the GNU Enterprise gnurpc library.
Apennine provides a plug extensible XMLRPC server, and XMLRPC services to
control all GNUCOMM servers will be introduced. This is part of the larger
effort to standardize GNU interoperability between phpGroupWare, DotGNU,
GNU Enterprise, and GNUCOMM around XMLRPC that was announced earlier last
week.

PV Info Server and BayonneDB
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
One project I have chosen to drop from active development is BayonneDB.
This is the database server for realtime transactions in GNUCOMM. The
PreViking Info server exists, is further developed, and uses all the same
protocol interfaces as BayonneDB. There are some places that BayonneDB
may have advantage in raw performance, and BayonneDB may be worked on
later next year, but I simply do not have time to do so currently.

Outline of Bayonne changes
~~~~~~~~~~~~~~~~~~~~~~~~~~
There are several important areas of GNU Bayonne development that are to
be undertaken the next few months. Many of these changes will also be
reflected in Babylon and Olorin development.

One area being thought about is server provisioning. Currently this is
being done with a simple bayonne.conf file placed in the /etc directory.
We are thinking of replacing this with an XML server provisioning file
that can be fetched either locally or from a remote web server. Also, it
should be possible soon to reload provisioning on a running server (one
can already reload provisioning scripts (ccScript) live…).

In addition to configuration provisioning, I hope to improve remote
manageability of Bayonne and to get rid of some of the vast number of
redundant ways of doing things in Bayonne. For example, we now have five
major ways to integrate Bayonne with external services; fifo control,
tcp based sysmon, cgi wrappers, XMLRPC thru Apennine, and oncrpc. We
almost added Corba as well! Much of this redundancy will go.

To simplify administration of live systems, a desktop “monitor” or
management console will be created for Bayonne. Oh, and we will
decouple telephony drivers from Bayonne…

“GNU/”LinuxWorld NYC
~~~~~~~~~~~~~~~~~~~~
I am both speaking at GNU/LinuxWorld NYC next month (about DotGNU), and I
am hosting the Telephony BOF. Last year in NYC we demonstrated GNU
Bayonne in the Intel booth, and this year we will likely do so in a booth
in the org pavilion. I believe a GNUCOMM booth has already been secured
for this purpose. I expect to be available to talk to different people
about what we are and will be doing with GNU Bayonne, and I hope we will
have some interesting new things completed in time to demonstrate.

Where help is needed
~~~~~~~~~~~~~~~~~~~~
We now have a carrier involved in Bayonne development, and realistically
we still do need further support from other commercial vendors and
interested parties. Having OSDL supporting facilities has helped
considerably in overall testing, but we do continue to need
additional support for continued Bayonne development.

One area that needs some additional help is GNU Common C++. We have yet
to be able to fully build native win32 libraries with XML support or build
a complete cygwin target. While I am not particularly interested in a
win32 target for GNU Bayonne, it could be created. More interesting to me
would be to distribute GNUCOMM related desktop components (such as GNU
phone) as widely as possible.

That being said, yes, we may well choose to demonstrate a win32 port of
GNU Bayonne at some future time, primarily to demonstrate the universal
nature of GNU Bayonne as the primary platform for telephony services
creation. I have no current plans to do this, however.

David

Anonymous Reader writes “Anti virus experts reckon that writing Linux viruses is ‘easy’ and next year, Linux is in the firing line for new virii.” Vnunet: http://www.vnunet.com/News/1127347.

– by Jack Bryar –
This week brought an Outlook disaster as yet another virus took down
every Windows system in sight. I’m so sick of viruses and badly written
software. Unfortunately, I don’t think switching the world to some
standard vanilla Linux would solve the problem. It is better, but not
foolproof. However, there is a version of Linux that could make viruses a
thing
of the past. If I could only get past that
weird feeling I have concerning the people who wrote it.Today’s column nearly didn’t make it to print today.
All connectivity at my primary employer effectively ceased for nearly six
hours when one of our salespeople opened a cute little note from a
friend.
It said, “Hi, How are you? When I saw this screen saver, I immediately
thought about you. I am in a harry, I promise you will love it.”

She didn’t love it one bit. Soon everyone in her Microsoft Outlook
Address
book was sent the same message with the same copy of the W32/Goner@MM

worm virus, disguised as an alleged screen saver, GONE.SCR. In

the meantime her system was wrecked. Files were altered. Executables
were messed up.

Once again MS Outlook was the vehicle for taking down an
entire business. It’s always something. A few weeks ago the virus de
jour was Sircam. Despite all the patches and tweaks, there is always something
being made by someone that can change and even delete files and even
entire applications running on Microsoft’s monopoly platform.

Microsoft isn’t the only OS with built-in security holes, although it
is easily the worst. If anything it does better than some of its competitors at fixing those holes.
According to a Netcraft
survey, the Code Red virus that popped up earlier this year
prompted Microsoft to offer a cumulative patch to fix many of the most glaring
security holes in their system. It also prompted many users to pay attention
and
implement the patch. Meanwhile, security problems on Sun remain
uncorrected. Even Linux systems have been hit with viruses. Based on the
number
of defacements reported by a German
Web site
that tracks such things, Linux and Apache can be messed with, as well.

Whatever its flaws, Linux, like all other members of the Unix
family, is a lot more difficult to attack with viruses. The partitioned
user/administrator-level permissioning architecture is far more secure in fighting the types of large-scale attacks that show up on Windows systems with depressing regularity.
In addition, file types are easier to shelter from the end user, making
it much more difficult to set up a Trojan horse. Finally, programs
like Tripwire provide additional protection for systems administrators,
allowing them to catch a greater share of nuisance code before it can do any
mischief.

These features of Linux architecture are among the many reasons that
several governments have begun to champion Linux as an alternative platform.
Last
year RedFlag Linux was
being promoted by China’s security apparatus as an alternative to a
Windows
platform many felt was too vulnerable (not to mention too American).
Even today, RedFlag is being promoted using an interesting phrase, as “an
alternative solution for
governments, armies, and businesses.” Elsewhere, governments such as India
have
been less public about their Linux preferences. However, even as it has been
criticized in the Indian media for ignoring the technological
threat posed by Jihadi extremists and Kashmiri separatists, India has quietly
hardened its communications backbone using redundant, Linux-based systems in
critical sites.

Nevertheless, Linux remains a vulnerable architecture. As Avi Fogel
pointed out in a LinuxSecurity.com article earlier this year, Linux, like Windows, has little in the way of intrusion detection
capabilities.
More importantly, it lacks sufficiently granular network or file access
controls. There’s a first principle at stake here; there is something
fundamentally wrong with
ANY system that allows code to automatically change executables and
other core files without a user permission.

Oddly enough, the most important intelligence arm of the U.S.
government has prepared a fix and wants you to have it, no questions asked.
At
the beginning of the year, the formerly secretive National Security Agency ported
to Red Hat Linux 7.1 a security feature people there had built into the NSA’s
Mach Operating System’s microkernel. This “Security-Enhanced Linux” has been released as a GPL package with support
documentation
and can be downloaded from the agency’s Web site. Admittedly, there’s no tutorial for
this
“SELinux” package and when you try to set group policies and configure
domain management, you’re on your own, but it is secure.

SELinux employs an access control system that uses data types and
a variety of rules-based enforcement protocols as a means for setting up
both confidentiality and integrity rules on user systems. The result is
a highly flexible, yet highly secure system with enforcement rules
embedded into a discrete “security server.” The server contains the policies
for
each type of data and on each each type of data acts on another piece of
data. SELinux revalidates the security permission schema for each file
type each time it is used.

The result is that a virus cannot succeed in a SELinux system. In the
unlikely event that a virus could even be introduced into an SELinux-based
system, and then
executed, the virus should not be able reproduce onto an executable file. In
theory, this shouldn’t happen because
Unix programs shouldn’t have more than read or write permissions anyway, but in this case, SELinux would also prevent propagation of the virus
because
the reach of each program executable is restricted to its own “type.”
Therefore,
any of the executables that would normally be targets for the virus are
effectively walled off. Even attacking the root won’t have an effect on
the policies structure. The system may not be foolproof, but as a
secure,
intelligently configured alternative it beats traditional Unix
configurations,
and it beats Windows hands down.

Perhaps your company doesn’t think replacing Windows with Linux is
worth
the hassle. But if their systems crashed because of Code Red or Systran
or Goner — or perhaps all three, have them take a look at SELinux, and
— have a conversation.

“Gnutella.com launched about a day ago – my apologies for not reporting
sooner.
Oops, I gave all the little kiddies a high trafficked soap box :-)”

Subject:
pho: Gnutella.com: The Tools Available To You
Date:
Wed, 5 Dec 2001 05:06:41 -0800
From:
“Angelo Sotira”
Reply-To:

To:

Gnutella.com launched about a day ago – my apologies for not reporting
sooner.
Oops, I gave all the little kiddies a high trafficked soap box 🙂

from: http://www.gnutella.com/news/5999
The Tools Available To You 
Posted by  Angelo Sotira http://spyed.gnutella.com/ on December 5, 2001 at
5:28 AM 
Take advantage of the tools gnutella.com http://gnutella.com provides; get
involved, stay informed. What YOU think matters more than anything else.

Let me start by saying, this site launched a day ago ... and even before it
launched it was already reaching hundreds of thousands, close to millions of
people per month due to the popularity of the Gnutella technology. 

Over the next month we expect explosive growth that will easily put us in
the millions of unique users. With the tools we provide on here we're giving
you ALL a platform, or a soap box if you will, to reach all who come to this
site. Take advantage of that, you can make a difference, you can have a say,
you can make your mark ... and most importantly you can stand up for your
rights.

As consumers we have more power than any organization in the free world no
matter how rich or big it may be. BUT NOT if we don't act.

Register for an account, you can do so by clicking this link
http://www.gnutella.com/users/register. Then update your Stance. Are you
Pro-Gnutella? Anti-Gnutella? Neutral on the issue? Why?

Talk on the forums, ask questions, you will get answers. Comment on news
stories.. or hell, write your own news stories! (Click on the link under
your account settings to do so.) ... but please, do use the tools.. a lot of
people from all sides view this site, I guarantee you will be heard.. pro..
anti.. whatever your stance may be.

If you don't act, if you don't speak up, if you don't get involved ... the
decisions being made in these critical times won't take you in to account.

Here's one example that troubles me immensely: did you know that 2600.com
 lost their appeal of a decision made last August
regarding the well-publicized DeCSS linking case just days ago? Basically,
the court is saying it is illegal for you to place a hyperlink on your site
to a piece of information because the information could be used to commit
copyright infringement. Let me repeat that. The court is saying you can?t
place a *hyperlink* on your site.

Speak. Up. Here's a platform to do it that reaches millions. Any questions?

we just released Opera 6.0 for Linux TP 2.

This release includes fixes to the user interface, installation and the document layout. Please see the full changelog at the following address:
http://pre-www.opera.com/internal/linux/changelog/log600tp1.html

Download Opera 6.0 for Linux Technology Preview 2:
http://www.opera.com/download/get.cgi?custom=yes&opsys=4&language=5&version=30