OSSG News

News about the OSSG’s activities

OSSG AGM 2009 – London 14/05/09

 in Business / Licensing / OSSG Committee / OSSG Events / OSSG News by (updated 5485 days ago)

The Annual General Meeting (AGM) of the Open Source Specialist Group (OSSG) will be held on 14th May 2009 from 1800 hours at the BCS Central London Offices, First Floor, The Davidson Building, 5 Southampton Street, London WC2E 7HA.

Please send nominations for all OSSG Committee member posts to Mark Elkins at mark_elkins@bcs.org

The procedure governing elections is set out in the OSSG Constitution at https://ossg.bcs.org/wp-content/uploads/2006/06/OpenSourceConstitutionFinal.pdf

An event TBC is due to commence immediately after the business of the AGM has been concluded.

Free buffet and refreshments available.

For further information please contact Mark Elkins at mark_elkins@bcs.org

Ivan Ristic – Open Source Security – London 30/03/09

 in OSSG Events / OSSG News by (updated 5493 days ago)

Ivan Ristic will give a talk on Open Source Security for the Open Source Specialist Group (OSSG) on Monday 30th March 2009 from 1800 hours at the BCS Central London Offices, First Floor, The Davidson Building, 5 Southampton Street, London WC2E 7HA.

“Ivan Ristić is an open source advocate, entrepreneur, writer, programmer and web security specialist. He is the principal author of ModSecurity, the open source web application firewall, and the author of Apache Security, a concise yet comprehensive web security guide for the Apache web server” www.ivanristic.com

To book a place to at this event please email your name to the events coordinator.

For further information please contact Mark Elkins at mark_elkins@bcs.org

Free buffet and refreshments available.

The following article by Ivan from http://blog.ivanristic.com/2009/03/is-that-open-source-project-secure-enough.html outlines the direction his talk is likely to take:

Is that open source project secure (enough)?

Type the words “open source security” into a search engine and you will get dozens of links to articles, blog posts, emails, forum messages, and research papers. You can try to read them all, but I don’t think you should bother. The opinions mostly fall under one of the following categories:

  1. Having access to source code is better than not having access to source code.
  2. Community-produced software is better than vendor-produced software.
  3. The freedom to modify source code is a fundamental right of every software user.
  4. Open source developers are careless, disorganised and fickle.
  5. Commercial vendors only care about money.
  6. Who are you going to blame when an open source product fails?
  7. Open source is dangerous, but you can pay us to help you deal with it.

Most of these claims have a grain of truth in them, but they almost always miss the point in trying to distil complex realities into simple convenient truths. That just doesn’t work. The simple truth is that every single project is unique, and must be observed on its own merits. But therein lies the difficulty: how do you determine if a given software product is secure?

I know the proper answer: design an assessment methodology (or use one that already exists—the Software Assurance Maturity Model is nearing completion; Building Security In Maturity Model is expected in a week or so), then use it to make informed decisions. While this approach is suitable for academia, it is too inefficient in real life, where you need to make your decisions quickly and effectively. So what do you do?

Did I mention that I spent almost 6 years of my life working on a fairly popular open source project? In that time I struggled to use my limited resources to do what’s best for the project, security being only one of my concerns. I did reasonably well, but made many mistakes along the way. That experience (along with a similar experience in developing closed-source software) has given me an insight into what makes software developers tick and, especially, what makes open source software tick.

So I came up with an idea to avoid measuring the quality of code itself (because that’s too difficult and time consuming), instead focusing on the external manifestations of good and bad practices. I call it a Project Security Posture Review. A review might focuses on the following aspects:

  1. Does the organisation follow good software development practices?
  2. How are security issues handled?
  3. Are there any public-facing services available (e.g. source code repository, issue tracking, wiki, etc.)?
  4. Is the source code tidy?
  5. Is the project mature and popular?
  6. Does the project have a reputation for quality?

The idea is that you can answer most of the questions by simply looking at the project’s web site, browsing through its code and documentation, and looking at the experiences of other people with it. The obvious advantage of this approach is that it is quick, even though it may be somewhat inaccurate.

If you think the above list is, well, vague—you are absolutely right. I am currently working on a comprehensive list, which I will present during the Open Source Security talk for the Open Source Specialist Group (OSSG) on March 30th.

Open Source for Business – 01/04/09 Warrington

 in OSSG Events / OSSG News by (updated 5493 days ago)

Dr Graham Oakes will give a talk on Open Source for Business in an Open Source Specialist Group (OSSG) supported event for BCS Chester, North Wales, and Manchester branches on Wednesday 1st April 2009 from 1800 hours at Birchwood Conference Centre, Warrington, WA3 6YN (see http://maps.google.co.uk/maps?q=WA3+6YN for directions).

Synopsis

Open Source software has risen to prominence in the last decade. This talk will examine the relevance of open source to business from two perspectives — how can businesses use open source software for their everyday operations, and how are people building sustainable businesses by “giving away” the software they develop? To do this, the talk will provide a background of what Open Source software is and how it differs from proprietary software. It will then discuss the values and business models applying to Open Source development, the range of Open Source software which is now available, and the benefits and risks of using Open Source software.

Speaker

Dr Graham Oakes, is a member of the committee of the BCS Open Source Specialist Group. As an independent consultant, he helps organisations to untangle complex technology, processes, relationships and governance. His book “Project Reviews, Assurance and Governance” was published by Gower in October 2008.

Event registration details

Admission is free, and open to non-members, but please register your interest (if possible before the 27th of March) to help ascertain numbers for the free buffet etc. e-mail to events-cnw@bcs.org.uk.

UKUUG’s annual Large Installation Systems Administration (LISA) conference and Tutorial – London 24-26/03/09

 in External Events / OSSG Events / OSSG News by (updated 5553 days ago)

UKUUG’s annual Large Installation Systems Administration (LISA) conference and Tutorial will be held in London at the Park Crescent Conference Centre from 24th to 26th March 2009.

The event is kindly sponsored by Google.

For full information see: http://www.ukuug.org/events/spring2009/

Open source — free lunch? – Cambridge 25/02/09

 in External Events / OSSG Events / OSSG News / Uncategorized by (updated 5462 days ago)

The Cambridge Wireless Software SIG aims to explore the world of mobile open source software development and challenge the arising issues from this debate.

Start date/time :  25th February 2009 13.30hrs
End date/time : 25th February 2009 18.00hrs
Venue : Symbian, 3 Ely Road, Milton, Cambridge

This half-day event is kindly hosted at Symbian’s Cambridge office and is championed by Mark Dalgarno of Software Acumen and Peter Hazlett of Symbian.

With open source platforms such as Limo and Android consistently gaining ground in the mobile operating system space, and the announcement that Symbian is going open source in the near future, there is rapidly growing interest in professional open source software development in the mobile arena.

February’s Software SIG aims to explore the world of mobile open source software development and challenge some of the current thinking:

  • the benefits, and disadvantages of professional open source development
  • open source business models
  • proprietary vs open source
  • patents & licensing
  • managing an open source development community

For further information please visit: http://www.cambridgewireless.co.uk/events/article/default.aspx?objid=36076

Open Source Geospatial & the OSGeo Foundation – London 22/01/09 1

 in OSSG Events / OSSG News by (updated 5576 days ago)

Jo Cook will give a presentation about the Open Source Geospatial Foundation (OSGeo) http://www.osgeo.org/ for the Open Source Specialist Group (OSSG) and the Geospatial Specialist Group on 22nd January 2009 from 1800 hours at the BCS Central London Offices, First Floor, The Davidson Building, 5 Southampton Street, London WC2E 7HA. Fuller details about this event are available on the Geospatial Specialist Group website at http://geospatial.bcs.org/web/?q=osgeo

To book a place to attend this event through OSSG please email your name to the events coordinator.

Open Source Requirements Elicitation Workshop – London 08/01/09 3

 in Knowledge / OSSG Events / OSSG News by (updated 5570 days ago)

The Open Source Specialist Group (OSSG) will be holding a one day workshop on Open Source Requirements Elicitation from 1030 on Thursday 8th January 2009 at the BCS Central London Offices, First Floor, The Davidson Building, 5 Southampton Street, London WC2E 7HA.

Papers and posters for presentation are being sought along with a call for those just wishing to attend and participate. It is envisaged that the workshop will consider:

(1) What is the state of the art in Requirements Elicitation for Open Source Software?

(2) How Open Source methodology might best be used in Requirements Elicitation generally?

Those currently presenting papers at the workshop include:

Ian Alexander, Scenario Plus http://www.scenarioplus.org.uk and Chair of the BCS Requirements Engineering Specialist Group (RESG) whose forthcoming book ‘Discovering Requirements’ is soon to be published by Wiley in February 2009.

Mark Elkins, Chair and Treasurer of OSSG who is currently undertaking research at Solent University involving requirements elicitation.

There will also be presentations by:

Conrad Taylor, Chair of the Electronic Publishing Specialist Group (EPSG) and Kemi Adeboye, Southbank University – Usability is a Requirement – how easy is it to achieve in Open Source projects?

Cornelia Boldyreff, Professor of Software Engineering, University of Lincoln – OSS Software Engineering meets Social Networking: Building Communities. This will include detail of some of the work being carried out by the Centre for Research in Open Source Software (CROSS) at Lincoln.

For further information please contact Mark Elkins at mark_elkins@bcs.org

There will be no fee to participate in this event and a free buffet and refreshments will be available during the day.

UKUUG Perl Tutorials – London 25/02/09 to 26/02/09

 in External Events / OSSG Events / OSSG News by (updated 5498 days ago)

UKUUG (in conjunction with O’Reilly) presents:

Introduction to Perl – 25th February 2009

Advanced Perl Techniques – 26th February 2009

Tutor: Dave Cross

(Venue:  Imperial Hotel, Russell Square, London WC1B 5BB)


Day 1: Introduction to Perl – 25th February:

This one-day course is an introduction to Perl for complete beginners. No
knowledge of Perl is assumed, although attendees will have a slight advantage
if they have some knowledge of at least one other programming language. At
the end of the course, attendees will have enough knowledge to write a number
of useful Perl programs, together with details of where to go for more
information.

Day 2: Advanced Perl Techniques – 26th February:

Perl has come a long way since the “scripting language” which powered most of
the world wide web in the 1990s. There are many ways to build applications in
Perl. In this course we will look at some powerful techniques which are used
by the best Perl programmers in the world. This one-day course is aimed at
programmers who have been using Perl for some time but who may not be
completely up to date with the latest Perl techniques. At the end of the
course attendees will have a number of modern Perl programming techniques to
their programming toolkit.

Each day starts at 09:30 – ends approx. 17:00 each day

For further information see:  http://www.ukuug.org/events/perl09/lipitor drug cost prednisone canine prednisone stopped taking side effects
Difference between lexapro and celexa discount nexium 509. levitra sale accutane timeline
symptoms of zoloft working accutane lawyers los angeles lipitor drug cost
prednisone stopped taking side effects accutane lawyers california Difference between lexapro and celexa discount nexium 509.
accutane timeline nexium protonix symptoms of zoloft working
lipitor drug cost prednisone poison oak prednisone stopped taking side effects
Difference between lexapro and celexa discount nexium 509. lipitor muscle pain accutane timeline
symptoms of zoloft working zoloft withdrawl lipitor drug cost
prednisone stopped taking side effects lipitor vs zocor Difference between lexapro and celexa discount nexium 509.
accutane timeline accutane lawyers symptoms of zoloft working
lipitor drug cost buy levitra online prednisone stopped taking side effects
Difference between lexapro and celexa discount nexium 509. accutane diary accutane timeline
symptoms of zoloft working zoloft negative side effects lipitor drug cost
prednisone stopped taking side effects lipitor muscle weakness Difference between lexapro and celexa discount nexium 509.
accutane timeline prednisone works symptoms of zoloft working
lipitor drug cost atlanta accutane attorneys prednisone stopped taking side effects
Difference between lexapro and celexa discount nexium 509. generic propecia accutane timeline
symptoms of zoloft working female viagra lipitor drug cost
prednisone stopped taking side effects side effects of lexapro Difference between lexapro and celexa discount nexium 509.
accutane timeline buy nolvadex symptoms of zoloft working
lipitor drug cost potatoes not prozac prednisone stopped taking side effects
Difference between lexapro and celexa discount nexium 509. grapefruit juice and prozac accutane timeline
symptoms of zoloft working cipro dosage lipitor drug cost
prednisone stopped taking side effects lasix without prescription Difference between lexapro and celexa discount nexium 509.
accutane timeline atlanta accutane law suits symptoms of zoloft working
lipitor drug cost accutane lawsuit columbus prednisone stopped taking side effects
Difference between lexapro and celexa discount nexium 509. can lipitor cause coughing and wheezing accutane timeline
symptoms of zoloft working side effects to lasix lipitor drug cost
prednisone stopped taking side effects side effects of zoloft Difference between lexapro and celexa discount nexium 509.
accutane timeline lipitor and lichen planus symptoms of zoloft working
lipitor drug cost get off zoloft prednisone stopped taking side effects
Difference between lexapro and celexa discount nexium 509. zoloft litigation accutane timeline
symptoms of zoloft working levitra review lipitor drug cost
prednisone stopped taking side effects lexapro and side effects Difference between lexapro and celexa discount nexium 509.
accutane timeline accutane results symptoms of zoloft working
lipitor drug cost zoloft during pregnancy prednisone stopped taking side effects
Difference between lexapro and celexa discount nexium 509. xenical hgh phentermine quit smoking accutane timeline
symptoms of zoloft working zoloft zoloft lipitor drug cost
prednisone stopped taking side effects levitra users Difference between lexapro and celexa discount nexium 509.
accutane timeline clomid side effects symptoms of zoloft working
lipitor drug cost atlanta accutane claims prednisone stopped taking side effects
Difference between lexapro and celexa discount nexium 509. accutane hair loss accutane timeline
symptoms of zoloft working lexapro and pregnancy lipitor drug cost
prednisone stopped taking side effects side effects of nexium Difference between lexapro and celexa discount nexium 509.
accutane timeline clomid success rates symptoms of zoloft working
lipitor drug cost zoloft abuse prednisone stopped taking side effects
Difference between lexapro and celexa discount nexium 509. accutane attorneys california accutane timeline
symptoms of zoloft working gain weight on lexapro lipitor drug cost
prednisone stopped taking side effects levitra attorneys Difference between lexapro and celexa discount nexium 509.
accutane timeline lexapro success symptoms of zoloft working