Gentoo Weekly Newsletter: March 22nd, 2004

1.  Gentoo News

Security-only updates and stackable profiles

This week, two features on the 2004.1 Feature Request List were added to Gentoo.

The first, a feature often requested by users, is security-only updates. Until now, emerge -u world was the only choice for users who wanted to update their system in one fell swoop. While useful to many users, others didn't want to keep up with all of Gentoo's high-pace release cycles, and only wanted to install security-related updates, having to scan the security updates every now and then to do so. Now glsa-check, part of the gentoolkit automates this process. Users can now use this command to automatically update the system with security-related updates only. Please note, however, that this tool is completely new and meant to test the functionality before it is propagated into Portage itself. For more information, read the Portage GLSA Integration Document.

The other improvement was made under the hood, and won't change Gentoo's functionality or the way most users interact with the system, but succeed in decreasing the distribution's bloat. This new feature is the addition of stackable profiles. Historically, Gentoo has used profiles, residing in /usr/portage/profiles to describe the system; the most commonly used have been default-x86-1.4 and default-x86-2004.0. Profiles contain a set of packages that every Gentoo system using the profile in question should have installed, a set of mappings from virtual packages to their default packages, and a mapping of packages that provide various USE flags once installed. However, it was noticed that these profiles had significant overlap between them, so cascading (or stackable) profiles were implemented. For more information, read the Gentoo Cascading/Stackable Profiles Document.

2.  Gentoo Security

Multiple OpenSSL Vulnerabilities

Three vulnerabilities have been found in OpenSSL via a commercial test suite for the TLS protocol developed by Codenomicon Ltd.

For more information, please see the GLSA Announcement

3.  Heard in the Community

gentoo-user

Cloning Linux Machines

Have a need to create many identical Linux machines? One poster on the gentoo-user list did.Read here for some usefuladvice on doing a mass Linux rollout.

gentoo-dev

Compiling java programs.

As java should (theoretically at least) create identical binaries on the same desktops, why are we distributing them as source as opposed to binaries? Well this was the question asked here this week. Cruise on over for a couple of reasons why and why not.

4.  Bugzilla

Summary

• Statistics
• Closed Bug Ranking
• New Bug Rankings

Statistics

The Gentoo community uses Bugzilla (bugs.gentoo.org) to record and track bugs, notifications, suggestions and other interactions with the development team. Between 12 March 2004 and 18 March 2004, activity on the site has resulted in:

• 577 new bugs during this period
• 333 bugs closed or resolved during this period
• 13 previously closed bugs were reopened this period

Of the 5337 currently open bugs: 126 are labeled 'blocker', 207 are labeled 'critical', and 435 are labeled 'major'.

Closed Bug Rankings

The developers and teams who have closed the most bugs during this period are:

• Jeremy Huddleston, with 26 closed bugs
• Java Team, with 25 closed bugs
• Gentoo KDE team, with 19 closed bugs
• Gentoo X-windows Packagers, with 18 closed bugs
• AMD64 Porting Team, with 18 closed bugs

New Bug Rankings

The developers and teams who have been assigned the most new bugs during this period are:

• AMD64 Porting Team, with 29 new bugs
• Core System Packages Team, with 19 new bugs
• Gentoo X-windows Packagers, with 14 new bugs
• Gentoo Linux Gnome Desktop Team, with 12 new bugs
• Benjamin Coles, with 11 new bugs

5.  Tips and Tricks

Using ulimit

This week's tip introduces ulimit -- a command to define system resource limits. As a user, you can create self-imposed limits to prevent processes from taking up too much CPU time or memory.

To view all available resource limits, type ulimit -a. This command shows the limits the system administrator has imposed on your account. You can lower these limits, but you can't increase them. Many accounts will have 'unlimited' listed. If so, here are some useful things you can do with ulimit:

% ulimit -c 0
  

% ulimit -f 25600
  

Since ulimit is a builtin shell command, see your shell manual page for more information (e.g. man bash, man zsh, etc.).

6.  Moves, Adds, and Changes

Moves

The following developers recently left the Gentoo team:

• none this week

Adds

The following developers recently joined the Gentoo Linux team:

• Camille Huot (cam) - French documentation

Changes

The following developers recently changed roles within the Gentoo Linux project:

• none this week

7.  Contribute to GWN

Interested in contributing to the Gentoo Weekly Newsletter? Send us an email.

8.  GWN Feedback

Please send us your feedback and help make the GWN better.

9.  GWN Subscription Information

To subscribe to the Gentoo Weekly Newsletter, send a blank email to gentoo-gwn-subscribe@gentoo.org.

To unsubscribe to the Gentoo Weekly Newsletter, send a blank email to gentoo-gwn-unsubscribe@gentoo.org from the email address you are subscribed under.

10.  Other Languages

The Gentoo Weekly Newsletter is also available in the following languages:

• Dutch
• English
• German
• French
• Japanese
• Italian
• Polish
• Portuguese (Brazil)
• Portuguese (Portugal)
• Russian
• Spanish
• Turkish