Also, I am interested by the strong reaction to this exploitation of the #OpenSource supply chain. Yes, it shows a weakness in trust and the maintainer model. There are big questions to answer. What if this was not stopped as early, or if it breached #EnterpriseLinux?
Yet at the same time, the most practical way this could have been discovered is the #FreeSoftware way. Someone was literally performance testing a PostgreSQL database, saw something weird, and shared their discovery with others.
@centos will be hosting an event at SCaLE called CentOS Classroom - a neat opportunity to learn more about the project from contributors. Happening Mar 14 from 2-5pm local time!
At the end there will be a packaging workshop for Fedora EPEL! Check it out if you've wanted to get into packaging but weren't sure how. @carlwgeorge's got your back. 👍
CIQ (parent of Rocky Linux), Oracle & SUSE announces the Open Enterprise Linux Association as a trade group that aims to provide RHEL compatible source code that can be implemented in downstream distributions.
The RESF is a Platinum sponsor of Flock to Fedora in Cork, Ireland in August. https://flocktofedora.org/
That which supports upstream Enterprise Linux also benefits projects like Rocky Linux, of course. Our contributors have known this since the beginning. This is what an open source "freeloader" looks like.
"Today SUSE [...] announced it is forking publicly available Red Hat Enterprise Linux (RHEL) and will develop and maintain a RHEL-compatible distribution available to all without restrictions."
If someone more familiar with the #EnterpriseLinux space could help me out, #Suse’s recent decision to fund a RHEL fork has me a bit confused.
I know Suse has their own distro, #SLE, and that there are comparative strengths and weaknesses between SLE and RHEL, but is RHEL so much of a standard in this space that Suse would rather spend money maintaining a RHEL fork than, for example, on community outreach to maybe make a downstream fork of SLE the new community standard? I don’t get it.
[For immediate release][Reno, NV, June 22, 2023] – Rocky Linux, a prominent community-driven open-source distribution of Enterprise Linux (EL), remains confident in its ability to continue as a bug-for-bug compatible and freely available alternative to Red Hat Enterprise Linux (RHEL), despite changes in accessibility. https://rockylinux.org/news/2023-06-22-press-release/#enterpriselinux#rockylinux#opensource#linux
Rocky Linux, a prominent community-driven open-source distribution of Enterprise Linux (EL), remains confident in its ability to continue as a bug-for-bug compatible and freely available alternative to Red Hat Enterprise Linux (RHEL), despite changes in accessibility.
Remember that story recently about Project Zero finding three unpatched kernel vulnerabilities in CentOS 9? As of May 1st, all three are now fixed (never mind the fact that one of them was already fixed well before the story came out). CentOS 9 is currently the only Enterprise Linux distro with these fixes.