LinuxSecurity: “Big internet names are vulnerable to a hacker technique despite more than 18 months’ worth of warnings, claims a security
expert. Security watcher Dave deVitry, of Infigon Technologies, released a shortlist of high-profile sites he claims are still
vulnerable to Cross Site Scripting including Citibank, Google, CNet, Oracle, MSNBC and eBay, complete with samples. And
yes, some of them do show signs of the vulnerability.”

Advogato: “Microsoft has taken a legal issue and attempted to force themselves upon our children even more then they already are. Forcing a substandard product that costs 100 times more then the competition is not a lesson I want my children to learn.”

LinuxSecurity: “Have you ever heard of a Linux vendor that tried to deny a security flaw in their open source product? “A number of Unix
vendors have been alerted to a security flaw, but Sun Microsystems is refusing to acknowledge that any problem exists. Six
vendors, including IBM, Hewlett-Packard and Sun, have been alerted to a vulnerability that ships with several Unix systems,
which could allow a malicious attacker to take control of an affected system.”

Sebastopol, CA–Bioinformatics is the rapidly evolving discipline of
using computational tools and techniques to find answers to biological
questions. With the advent of the Internet and World Wide Web,
biologists have access to vast amounts of biological data contained in
public databases such as GenBank (the Genetic Sequence Data Bank) and
the Protein Data Bank. As a consequence, computer-based tools now play
a critical role in biological research. Because of its capacity for
detecting patterns in data, Perl has become one of the most popular
programming languages for biological data analysis. In his new book,
“Beginning Perl for Bioinformatics” (O’Reilly, US $39.95), author James
Tisdall provides a practical introduction to Perl for biologists with
little or no programming experience, approaching programming as an
important new laboratory skill.

"Bioinformatics is an important component of a lot of modern biology
research," says Tisdall. "Perl is the most popular computer language in
bioinformatics because it is very easy to represent data like long DNA
sequences or manipulate biological data like GenBank records or BLAST
reports, and especially because it makes the writing of biologically
useful programs relatively straightforward."

Programming skills are now in strong demand in biology research and
development. Although historically programming has not been viewed as a
critical skill for biologists, recent trends have made computer
analysis of massive amounts of data central to many research programs.

"This is the golden era of biology research," Tisdall explains. "All
the genes of several organisms, including humans, are now known, and
more are on the way. As we use this information to unravel the
mechanisms by which genes and their products interact and are
controlled, programming skills will be a very important part of the
discovery process. Bioinformatics programming is a part of the endeavor
to cure diseases, to improve agriculture, and ultimately to learn the
secrets of life (hopefully for the benefit of all)."

"Beginning Perl for Bioinformatics" is intended as a hands-on,
one-volume course for busy biologists. It begins with an introduction
to the "art" of programming in general, walking the reader through the
approaches to programming and programming strategy, then focuses on
Perl specifically. Tisdall's goal is to teach researchers how to write
useful and practical bioinformatics programs as quickly and as
painlessly as possible. The book presents a programming tutorial that
includes a collection of "protocols" or programming techniques that can
be immediately applied in the lab. Exercises and examples are based on
real biological problems.

"Many scientists start out writing small programs and find that they
really like programming," Tisdall says. "As programmers, they never
need to worry about finding the right tools for their needs: they can
write programs themselves. This book will get them started."

"Beginning Perl for Bioinformatics" is the second release in O'Reilly's
highly acclaimed new series of books on the field of bioinformatics. It
provides a good introduction to the most common bioinformatic
programming problems and the most common computer-based biological
data.


The O'Reilly Bioinformatics Technology Conference, Practical Tools for
Innovation, will take place January 28-31, 2002 in Tucson, AZ. For more
information, go to:  http://conferences.oreilly.com/biocon/cfp.html

An article by the author, "Why Biologists Want to Program Computers"
can be found at:  http://www.oreilly.com/news/perlbio_1001.html

Another article by the author, "Parsing Protein Domains with Perl" can
be found http://www.perl.com/pub/a/2001/11/16/perlbio2.html

Chapter 10, "GenBank," is available free online at:
http://www.oreilly.com/catalog/begperlbio/chapter/ch10.html

For more information about the book, including Table of Contents,
index, author bio, and samples, see:
http://www.oreilly.com/catalog/begperlbio/

For a cover graphic in jpeg format, go to:
ftp://ftp.ora.com/pub/graphics/book_covers/hi-res/0596000804.jpg 

Beginning Perl for Bioinformatics
By James Tisdall
November 2001
ISBN 0-596-00080-4, 368 pages, $39.95 (US)
order@oreilly.com
1-800-998-9938
http://www.oreilly.com


About O'Reilly 
O'Reilly & Associates is the premier information source for
leading-edge computer technologies. We communicate the knowledge of
experts through our books, conferences, and web sites. Our books, known
for their animals on the covers, occupy a treasured place on the
shelves of the developers building the next generation of software. Our
conferences and summits bring innovators together to shape the
revolutionary ideas that spark new industries. From the Internet to the
Web, Linux, open source, peer-to-peer networking, and now
bioinformatics, we put technologies on the map. For more information:
http://www.oreilly.com

# # #

O'Reilly is a registered trademark of O'Reilly & Associates, Inc. All
other trademarks are property of their respective owners.

SANTA CLARA, Calif., Nov. 20 /PRNewswire/ — The Program Management
Office of the Java Community Process(SM) (JCP) program and
PricewaterhouseCoopers who managed the elections process, today
announced the new Executive Committee (EC) members of the JCP. Between
October 1 and November 14, 2001 the Java community cast their votes to
elect the new members of the JCP ECs who will
help shape the future of Java(TM) technology over the next three years.
Voting Members on each EC serve 3-year terms which are staggered so that
five of the 15 seats are up for ratification/election each year.

This year's open elections voted in Macromedia and Nokia Networks as
members on the Java(TM) 2 Platform, Standard and Enterprise Editions
(SE/EE) EC and Texas Instruments on the Java 2 Platform, Micro Edition
(ME) EC.  They are joining the other members of the JCP ECs called to
make key decisions concerning Java technology specifications as they
progress through the JCP approval processes.  The newly elected JCP EC
members will take office immediately and will participate in the first
post elections EC meeting scheduled for November 20.

"The JCP program provides its members with a variety of processes and
tools that enable their collective creative force to keep Java the vital
and important technology that it is," said Rob Gingell, Chair, JCP
program.  "One such process is the JCP EC elections.  We are pleased to
see an increasing number of JCP-eligible voters take advantage of this
important membership right and cast their votes to elect from their
peers those who will represent them and guide the overall program for
the community's best interest."

The JCP elections are an open, democratic process that votes into office
the members of the Executive Committees.  Two JCP ECs are responsible
for overseeing the development of Java technology specifications:  the
EC for the
Java 2 Platform, Standard J2SE(TM) and  nterprise Editions J2EE(TM) and
the EC for the Java 2 Platform, Micro Edition J2ME(TM).

"PricewaterhouseCoopers was pleased to be invited for the second year by
the JCP to manage the JCP EC elections process," said Jay Bolton,
Partner, PricewaterhouseCoopers.  "We used our broad expertise to ensure
an impartial,
objective process for all participants and helped create a one-stop
elections portal that streamlined and improved voters' experience."

In this year's elections a high number of candidates ran for the
remaining elected seats on each EC:  12 candidates entered the
competition for the two seats on the J2SE/J2EE EC and nine for the two
seats on the J2ME EC.  It is a
reaffirmation of the commitment of the  software industry and of the
Java developer community to the JCP program's goal of developing
standards-based platform-independent specifications that deliver
advanced technological values and business benefits to developers and
corporations.   Final elections results are posted on the JCP elections
portal maintained by PricewaterhouseCoopers at
http://jcpelection2001.org/jcp/electionsresults
For a complete list of JCP EC members, please go to
http://jcp.org/participation/committee .

About the Java Community Process
Since its introduction in 1995 as the open, inclusive process to develop
and revise Java technology specifications, reference implementations,
and technology compatibility kits, the Java Community Process program
has fostered the evolution of the Java platform in cooperation with the
international Java developer community.  More than 150 Java technology
specifications are in development in the JCP program, which has over 400
company and individual participants.  For more information on the JCP
program, please visit
http://jcp.org .

About PricewaterhouseCoopers
PricewaterhouseCoopers (http://www.pwcglobal.com) is the world's largest

professional services organization.  Drawing on the knowledge and skills
of more than 150,000 people in 150 countries, the organization helps
clients solve complex business problems and measurably enhance their
ability to build value, manage risk and improve performance in an
Internet-enabled world.

About Sun Microsystems, Inc.
 Since its inception in 1982, a singular vision -- The Network Is The
Computer(TM) -- has propelled Sun Microsystems, Inc. to its position as
a leading provider of industrial-strength hardware, software and
services that power the Internet and allow companies worldwide to take
their businesses to the nth.  Sun can be found in more than 170
countries and on the World Wide
Web at http://www.sun.com .

NOTE:  Sun, Sun Microsystems, the Sun logo, JCP, Java and all Java-based
marks are trademarks or registered trademarks of Sun Microsystems, Inc.
in the United States and other countries.

CONTACT:  Corina Ulescu of Sun Microsystems, Inc., +1-408-343-1770, or
corina.ulescu@sun.com; or Barbara Oldani of Citigate Cunningham,
+1-415-618-8753, or boldani@cunningham.com, for Sun Microsystems, Inc.

--
Tania Cantrell
Public Relations Manager
Caldera International, Inc.
240 West Center Str.
Orem, UT  84057
Tel:  801.932.5810
Fax:  801.852.9088

Rami Kassab writes “AMD has long been in the shadow of Intel. The Athlon changed all that. AMD has chosen to implement something akin to the Performance Rating of yore. Read here to see what the potential implications might be.”

Martin (a.k.a. Mayhem) writes “Download the upgrade patch (gz) from here or any of the mirrors. Read more for the changelog. (Dave from RedHatBox.org also let us know bright and early – thanks.)

pre8:
– Greg KH: USB and PCI hotplug update
– Richard Henderson: alpha update
– Andrew Morton: fix ext3/minix/sysv fsync behaviour.”

“This is the GNOME Summary for 2001-10-28 – 2001-11-16.”

==============================================================
Table of Contents
--------------------------------------------------------------

1. GNOME Foundation
2. Abiword gets Gdict support
3. GNOME 2.0 API Freeze
4. Anjuta and gIDE join forces
5. GNOME 2.0 Developer Platform Alpha 2
6. GTK-Sharp gets a home
7. Accessibility Applications
8. Nautilus 2 emerges
9. New Guikachu and RadioActive Released
10. GNOME-print with True-Type support available
11. Compiling GNOME
12. Gnumeric 0.76 Released
13. Bonobo Components: Architecture and Application
14. Hacker Activity

==============================================================
1. GNOME Foundation
--------------------------------------------------------------

The gnome foundation is there to further the goals of GNOME by
organising the project, determinining what gnome is and much more. It's
an overall leadership role which the Board of Directors bring into
focus. Membership of the foundation is made up of those who've
contributed to GNOME; this can be any number of fashions. There are
currently 410 members who elect the Directors once a year. Voting will
be from November 20th - 27th. The purpose of elections is to test the
candidates so put your questions forward. 

        http://foundation.gnome.org/organization.html
        http://foundation.gnome.org/ballot_summary.html
        
http://lists.gnome.org/archives/foundation-list/2001-November/thread.html

==============================================================
2. Abiword gets Gdict support
--------------------------------------------------------------

The ever resourceful Dom Lachowicz has made a gdict plugin for Abiword.
This means that you can now access your favourite dictionary tool from
within Abiword. Hopefully this plugin will soon be joined by many others
as developers discovers the new plugin support in Abiword. Thanks also
goes to Jesper Skov for once again putting together an Abiword weekly
newsletter for us. 

       
http://www.abisource.com/mailinglists/abiword-dev/01/November/0107.html
        http://www.abisource.com/information/news/2001/awn69.phtml

==============================================================
3. GNOME 2.0 API Freeze
--------------------------------------------------------------

Maciej announced the API freeze for the 2.0 release. This isn't a hard
release, more slushy if you will, where any alterations have to be
approved by the release team. Lots of discussion has ensued with the
central problem that always afflicts hackers arising: the desire to get
it Right, versus the need to release often. Probably the largest
casualty of the API freeze are language bindings that are unlikely to be
shippable in time with the release. 

        
http://lists.gnome.org/archives/gnome-2-0-list/2001-November/msg00113.html
        http://developer.gnome.org/dotplan/schedule/

==============================================================
4. Anjuta and gIDE join forces
--------------------------------------------------------------

The two premier integrated development environment efforts of GNOME,
namely Anjuta and gIDE announced that they are merging. The new joined
effort will be called Anjuta2. This will probably lead to a quicker
development on the GNOME IDE front giving us a top knotch full featured
system much faster. Thanks goes to the Anjuta and gIDE developers for
showing such spirit of cooperation. The full announcement posted by Naba
Kumar can be found below. 

        
http://mail.gnome.org/archives/gnome-devtools/2001-November/msg00009.html

==============================================================
5. GNOME 2.0 Developer Platform Alpha 2
--------------------------------------------------------------

Jeff Waugh announced the second alpha of the developer platform. This
release includes all the libraries and support packages necessary for
developers who want to port to GNOME 2.0. While there is sure to various
bits of breakage through the development period this is a great way for
application developers to start early. Importantly this release can be
installed along with an existing stable 1.4 release with no
side-effects. 

        
http://lists.gnome.org/archives/gnome-devel-list/2001-November/msg00029.html

==============================================================
6. GTK-Sharp gets a home
--------------------------------------------------------------

The GTK+ bindings for C# has gotten their own homepage thanks to the
effort of GTK+ sharp lead developer Mike Kestner. Mike also did a
GTK-Sharp status report recently which you find in the second link
below. If C# takes of I guess there will be no place like GNOME ;) 

        http://gtk-sharp.sourceforge.net/
        
http://mail.ximian.com/archives/public/gtk-sharp-list/2001-November/000013.html

==============================================================
7. Accessibility Applications
--------------------------------------------------------------

One of the big aims for GNOME 2.0 is to include an accessibility
framework. The hackers working on this project, predominantly working
for SUN, have put a lot of effort into the framework. It looks as if
these efforts are starting to flower in some applications. Bill Haneman
announced two projects respectively called GOK and Gnopernicus. GOK,
GNOME Online Keyboard is a visible keyboard that can provide a variety
of input. Gnopernicus is a full screen magnifier and reader - which
incidently continues the prjects outlandish naming scheme, how many gn*
words can be left! 

        http://developer.gnome.org/projects/gap/news.html

==============================================================
8. Nautilus 2 emerges
--------------------------------------------------------------

As the GNOME2 development platform has entered an API freeze the GNOME 2
desktop is emerging. First to post a Nautilus2 screenshot is Michael
Meeks who gave us this little preview of Nautilus reborn as on GNOME
2.0. A lot of work is currently being done on getting the GNOME panel up
and running under GNOME 2 and Sawfish has been reported to also compile
using GTK+2.0 now so hopefully we can soon be able to run the first
alpha release of the GNOME 2.0 desktop soon. 

        http://primates.ximian.com/~michael/nautilus2.png

==============================================================
9. New Guikachu and RadioActive Released
--------------------------------------------------------------

Erdi Gergo has released the first 1.0 beta of Guikachu labeled 0.99.1.
Guikachu is a tool for creating user interfaces for Palm Pilot
applications. Guikachu GUI is modeled after Glade so if you are familiar
with Glade you should feel at home in Guikachu. Gergo wants to make a
1.0 release of Guikachu as soon as possible so all user feedback on this
release is highly appreciated. Not limiting himself to one application
he also released a new version of RadioActive which is a
Video4Linux-compatible radio tuner application. It also has a text
interface so that the application can detect whether it is being called
from within GNOME and give you the correct interface. Even if you don't
have a radio card it's worth checking out the project pages for one of
the cutest Linux penguins you are likely to see! 

        
http://mail.gnome.org/archives/gnome-announce-list/2001-November/msg00029.html
        http://cactus.rulez.org/projects/radioactive/

==============================================================
10. GNOME-print with True-Type support available
--------------------------------------------------------------

The eagerly awaited release of GNOME-print which includes support for
printing TrueType fonts is now available. Chema Celorio and Lauris
Kaplinski wants feedback from people using this in order to make sure
that everything works well before it gets packaged by distributions etc.
So please give it a spin and report your results to the GNOME print
mailing-list listed below. 

        
http://mail.gnome.org/archives/gnome-announce-list/2001-November/msg00020.html
        http://lists.ximian.com/mailman/listinfo/gnome-print

==============================================================
11. Compiling GNOME
--------------------------------------------------------------

One of those Linux refrains is 'Use the source Luke', but how can you if
you can't get the darn thing to compile! GNOME isn't easy to build
yourself as it is a complicated pyramid of capability and libraries.
Karsten Reincke's GNOME Installation Guide is a great place to start. In
addition, Chema Celorio, announced an FAQ he's been working which also
has some great material 

        http://www.karubik.de/gig/
        http://www.gnome.org/~chema/gnome-love/compiling_faq.html

==============================================================
12. Gnumeric 0.76 Released
--------------------------------------------------------------

Jody Goldberg put out a challenge for anyone to try and find a bug
starting from 0.75 which some people already have taken advantage of. He
bravely says: 'If you find a crash between now and the 1.0 release I'll
buy you a beverage of your choice.' So now you know what you need to do
to get a free drink! The team hopes to freeze the look of the
application soon 

        http://www.gnome.org/projects/gnumeric/gnumeric-0.76

==============================================================
13. Bonobo Components: Architecture and Application
--------------------------------------------------------------
Dirk-Jan Binnema announced the release of a paper he recently gave to
the Dutch Unix User Group. It's a good introduction to the purpose of
Bonobo, it's architecture and some potential future developments.
Partnered with his other papers 'On Writing a Bonobo Control' and
'Writing Bonobo Components: the easy way' the topic area is nicely
covered. 

        http://news.gnome.org/gnome-news/1005389385/index_html
        http://www.djcbsoftware.nl/projecten/bonobo_controls/
        http://www.djcbsoftware.nl/projecten/bonobo-gwizard/

==============================================================
14. Hacker Activity
--------------------------------------------------------------

Thanks for Paul Warren for these lists.

Most active modules:
 139 gnucash
 83 galeon
 81 gimp
 62 evolution
 46 gtk+
 39 SashComponents
 34 gtkmm-root
 32 gnumeric
 26 gnome-core
 24 guikachu
 24 glib
 23 gnome-utils
 23 web-devel-2
 21 gtkhtml
 20 gnomemeeting
 20 procman
 20 pan
 19 gcompris
 19 nautilus
 18 mc
[110 active modules omitted]

Most active hackers:
 60 rlb (gnucash)
 52 peticolas (gnucash)
 40 michael
 34 stano
 30 menthos
 30 mitch
 26 jbaayen
 26 ajshankar
 24 cactus
 24 gman
 22 yaneti
 22 murrayc
 21 carlos
 18 charles
 18 frob
 18 kevinv
 17 rmo
 17 wing
 17 timj
 16 owen
[132 active hackers omitted]


Appologise for the lack of summaries for the last weeks but time has not
been cooperative. As always we hope and work towards the goal of a
steady schedule from here on. 
If you have news that you think should be in the next GNOME Summary
please send it across. Christian and I are always happy to receive news,
comments or suggestions just email us at gnome-summary@gnome.org. 

Until next time, 
Christian and Steve 

Rajesh Goyal writes “LinuxCertified announces the Network Services Bootcamp. (Read more to read the announcement).

– All students get a free Linux laptop!

Media Contact:

info@linuxcertified.com
http://www.linuxcertified.com/

LinuxCertified, Inc., a leading provider of Linux training, will offer its next Linux Network Services Bootcamp, on December 1-2, 2001 in San Francisco bay area (south bay). This workshop has been designed for network administrators in charge of providing key network services on Linux servers.

This bootcamp is structured along the lines of the highly successful Linux System Administration bootcamp. Students get a powerful Linux laptop at the start of the class, along with other class materials. Their goal is to create a fully functional and secure Linux server. This server will provide the most important internet services such as Web, DNS, Mail, DHCP and File serving.

Students start by putting the system securely on an intranet. They are then led by a team of network experts via carefully designed lectures and labs to configure the network services mentioned above. Students take this laptop with them as a fully configured network server to further enhance their Linux expertise.

Linux and open source network applications such as Apache, BIND, Sendmail, SAMBA etc. are the building blocks for most network services being offered today within the organizations as well as on the internet. This bootcamp enables administrators to rapidly and securely provide these services to their clients. A detailed agenda for the bootcamp is available at:

http://www.linuxcertified.com/network_services.html

About LinuxCertified, Inc.

The mission of LinuxCertified,Inc. is to bring Linux to mainstream IT usage. We firmly believe that Linux has an enormous potential, once it crosses over from the early adopters to the more mainstream users. Our goal is to help this transition by providing:

– Linux trained and certified professionals
– Linux certified products that cater to mainstream users rather than early adopters.

Contact:
info@linuxcertified.com
http://www.linuxcertified.com/
1-877-800-6873(Tel.)”

Anonymous Reader writes “http://www.linuxworld.com/site-stories/2001/1119.mandrake.html

The Mandrake 8.1 installation program does most things well, and for some computers the installation is as painless as installing Windows. However, on Joe Barr’s desktop machine, getting Mandrake 8.1 to install correctly took four tries.”