This post is aimed to clarify certain terms often used in the security community. Let’s start with the easiest one: vulnerability. A vulnerability is a flaw in a selected system that allows an attacker to compromise the security of that particular system. The consequence of such a compromise can impact the confidentiality, integrity, or availability of the attacked system (these three aspects are also the base metrics of the CVSS v2 scoring system that are used to rate vulnerabilities). ISO/IEC 27000, IETF RFC 2828, NIST, and others have very specific definitions of the term vulnerability, each differing slightly. A vulnerability’s attack vector is the actual method of using the discovered flaw to cause harm to the affected software; it can be thought of as the entry point to the system or application. A vulnerability without an attack vector is normally not assigned a CVE number.
Before we declare Docker the champion of the container wars, CoreOS begs to differ. If CoreOS was just doing this alone, it might not matter much. But, CoreOS has some big friends, Red Hat, Google, VMware and Apcera, that will make its efforts count.
With Fedora 22 being well past its change deadline and the final release just being a few weeks out, developers are beginning to look at planning their features/changes for Fedora 23.
For Fedora 23 we're already looking at possible features of Fedora becoming more atomic-like and potentially shipping GNOME Wayland as the default desktop experience rather than an X.Org Server and potentially defaulting to the Btrfs file-system by default.. There's also been pipe dreams of going 64-bit only and switching away from Firefox as the default browser.
Will there ever be another Red Hat? It depends on what you are asking. If the question is will there be other companies that go public based on a model of using open source to power an enterprise software offering, the answer is clearly yes. Hortonworks just did so and the IPO pipeline is likely to include companies like Cloudera, MapR, Talend, and a few others in the near future.
But that’s not the most interesting way to understand this question. The better angle is this: Will there be another company that becomes a successful business based on the same or similar model as Red Hat? For the fiscal year ending in February 2015, Red Hat has annual revenues of $1.79 billion and is a profitable company. Will any company ever get to $1 billion or even $500 million in revenue from open source subscriptions and have a chance of being profitable?
There is a new repository available with CUDA enabled programs in package format. This contains programs that have been linked to CUDA libraries or have CUDA support enabled. At the moment this is available only on Fedora 21, if there is sufficient feedback I will enable it also for other distributions.
While Fedora 21 ships with decent OpenCL support, if you're running the binary NVIDIA graphics driver on Fedora Linux and wishing to use CUDA-accelerated programs, it's a little bit easier today thanks to a new third-party package repository.