Softpanorama (slightly skeptical) Open Source Software Educational Society

May the source be with you, but remember the KISS principle ;-)

Alan Cox Interviews and Papers

2005

[Sept 12, 2005] O'Reilly Network The Next 50 Years of Computer Security An Interview with Alan Cox

ZDnet Printer Friendly - Interview with Alan Cox

Do you think this step is a threat to Linux?

No. There is a real difference between "you can have a quick look at some of our source code but you can't do anything with it, and you have to be a government and we have to like you". In addition to which, just having the source code isn’t really that useful because unless you have the code for compiler and you can rebuild all the code and verify it, how do you know the source code they have given you is anything to do with the actual operating system your running? And that is a very real question. One the other hand we've had military and government security people who've actually taken a basic Linux system including the compiler, they’ve audited that compiler and have built and audited every single single sub set pieces of Linux they use so they can definitively say that it doesn’t have any back doors in it. At least in their version of it and they are happy with it and any back doors they have put in themselves for their own use.

[Mar 3, 2005] The ups and downs of life with Linus Tech News on ZDNet Linux kernel maintainer Alan Cox has given an insight into the experience of working with Linus Torvalds, the founder of Linux who maintains its development kernel.

During a talk last weekend at the Free and Open source Software Developers European Meeting, FOSDEM, on the challenges of maintaining a stable Linux kernel, Cox revealed that although Linus is good at developing code, he does not enjoy some of the other jobs that go along with software development such as bug fixing and beta testing.

"Linus is a good developer, but is a terrible engineer," said Cox. "I'm sure he would agree with that."

Cox explained that he and Torvalds sometimes have different approaches to fixing a problem, due in part to their different responsibilities. As the maintainer of the development kernel Torvalds needs make sure the kernel code is easy to maintain, while Cox is more interested in kernel stability and is not so worried about "hacking" the code to get it to work.

"One of the hard problems to fix is design errors," said Cox. "These are a pain because they need a lot of refactoring. Linus' approach is to re-write it to a better design. But to get a stable kernel you tend to do small horrible fixes. Linus is very keen to have maintainable code, while to have a stable kernel I'm keen to have code that works."

Cox said that Torvalds does not always let people know when he has fixed a security bug in the kernel. This can be a problem as the patch will take a while to make it to production, which means that hackers can exploit the vulnerability before it is made available to individuals and enterprises running Linux.

"Linus has this bad habit of fixing security holes quietly," said Cox. "This is a bad idea as some people read all the kernel patches to find the security holes."

Linux enjoys a reputation as a particularly secure operating system, compared to rivals such as Microsoft's Windows. Last month a mailing list was set up to help Linux kernel developers share information on security flaws.

Deciding what bugs to fix in the Linux kernel is not always easy, particularly as fixing it can impact other applications. Cox said he gives top priority to bugs that are reported soon after the release candidate is made available.

"Release candidates will pick out a lot of the stupid bugs, and what are plain stupid ideas," said Cox. "Two or three days after the release candidate we will have 150 emails with same bugs." These early issues can be easy to fix as they are often obvious bugs. "Early problems you get are normally very easy to fix," said Cox. "As soon as the release comes out bug reports say 'You've broken this'. Almost immediately you go, 'Whoops, that's my mistake'. Ten minutes later the fix is in the development tree."

But kernel bugs that appear easy to fix can be misleading. "Sometimes you see a fix and think 'this is perfect, move my fix into the kernel tree'," said Cox. "Later you think, 'I must have been drunk. Don't apply that patch'."

[Jun 01, 2004] Alan Cox: An Open Letter On Software Patents and EU Election

Most of the time the ability to influence Politicians is remarkably limited. They ignore letters, and often all the major parties reflect only large proprietary interests, ensuring you get CD's that won't play in a car, arrested for helping the blind read protected ebooks and prevented from writing and using software by the patent lobby, intent on locking up technical creativity the same way the soviets locked up the typewriter.

In about a week you get an opportunity to send the EU politicians a message they cannot ignore - but sadly only 18% of UK citizens will bother to do so. While most British people would like to ignore the EU, the simple fact is that it is the EU that passed the EUCD, it is the EU that can fight software patents and it is the EU that is currently working to create even more draconian "intellectual property rights" laws.

This letter is aimed at the other 82% of hackers, open source enthusiasts, or just people who want the rights to use CD's they paid for fairly and honestly. That little piece of cardboard is your chance to call the EU to account, and thanks to the EU voting system you can make a difference, in fact you count five fold due to the expected low turnout.

There are two parties that are fundmanetally opposed to things like Software Patents.The Green-EFA alliance (Green Party, Plaid Cymru and friends) have been fighting the patent fight from the beginning including organising events in Brussels, as well as fighting to make the EU more democratic (to stop unelected Beaurocrats overturning the will of the parliament). The UKIP (UK Independance Party) is opposed on the ground that EU legislation like software patents clogs up British business and harms Britain as a sovereign nation. Unlike our parliamentary elections the EU voting system means it is not a two horse race.

To defeat software patents now needs an absolute majority in the parliament. That is going to be hard to achieve, but you get to adjust the make up of the parliament, and every vote is going to count.

Please, if you were not going to vote, either vote for the UKIP or Green-EFA alliance members. Ideally pick the one of the two that is most likely to win in your area, but if you have philosophical reasons for favouring one of the two (such as a dislike of the EU) please go vote for the one you favour. These are the people who will have to decide how to fix the EUCD, these are the people who will have to decide on Software Patents. Whether you believe in the EU or not, the people you vote for (or the pro patent, pro DRM people who will get in by default if you do not vote) will dictate your future rights.

The turnout in the UK is expected to be 18%. That favours anyone who can mobilize and get out and vote. It's a one off opportunity to kick the pro-patent lobby somewhere that hurts.

Vote, get your friends and families to vote, get LUGs to vote en-masse. Call out the troops - it's payback time...

Alan Cox

[Mar 06, 2002]Alan Cox hails 64-bit Linux - ZDNet UK News

Part I: In an interview with ZDNet UK, the Linux 'kernel hacker' gives his views on the GPL, 64-bit computing and why grandmothers should want to use Linux

Alan Cox is generally referred to in the open-source developer community as a "kernel hacker" -- someone whose programming responsibilities cover the Linux kernel, or core, itself. Thousands of developers all over the world, from hobbyists to IBM engineers, are constantly contributing to open source software, so Cox's role of organising and applying improvements is vital.

Cox makes use of the decentralised nature of the Internet to work from his home in Swansea, despite the fact that his employer Red Hat is based in the US; in fact, at the moment he prefers not to visit the States, because of concerns about the Digital Millennium Copyright Act (DMCA).

 

He spoke with ZDNet UK in Swansea in a wide-ranging interview touching on the latest challenges for Linux at the high- and low-end, the arrival of revolutionary 64-bit hardware and why it's hard to argue with the economics of open-source software.

Q: What were some of the biggest developments for Linux last year?
A: I guess the 2.4 kernel coming of age is one of them. We now have a good solid, very scalable kernel, which all the vendors are shipping, that's improved no end on four- and eight-way machines.

Is scalability mainly an enterprise issue?
It's pretty important for the big enterprises. It helps everybody. If you look at the direction the market is going, you've got things like Intel's new Pentium 4 with hyper-threading, where a single CPU is effectively two, so you've got scaling issues going on in single-processor machines.

Beyond that a lot of the user interface work is really starting to show. The Nautilus file manager... some really, really good work being done with KDE and also configuration tools.

What's the importance of improving graphical user environments like KDE and GNOME?
Within a very large organisation what they want is a small number of people who can maintain large numbers of machines, and they'll be very skilled people. The moment you go into smaller businesses and outside of the big-business, large-government role, you need machines where anybody can say, "Ah, what's happened here?" and fix it. So it doesn't necessarily become a case of needing the power, you start to need the usability. Even if the usability means you can't do some of the clever things, these people still need to be able to do things like set up a simple firewall and configure their email and stuff. So that is very important.

On a technical level, other things would be clustering work being started.

IBM recently introduced its first dedicated Linux mainframe server. Linux on the mainframe seems to be getting a lot of attention at the moment.
It actually goes back a fair way. It's been around for a year or so. Now it's really starting to take off with this server consolidation thing, and IBM has sort of hit the wave with the blade server people as well. If you can run a thousand copies of Linux on one machine, what are the savings of not having a room full of computers? I think they just have been at the right place at the right time in a sense. They've got hardware which is very fault-tolerant and they can ship it now while everyone else is very much -- all the PC style hardware doing this is very new.

IBM is spending a lot of money promoting its Linux plans. Do you see any problem with IBM integrating Linux into its corporate strategy?
There are one or two points of friction for IBM. Certain drivers for the S/390 (mainframe) are closed source, which has proved problematic for customers, because they can't upgrade to the versions of the kernel they want, because they can't get the right drivers from IBM. On the whole, though, I think it would be fair to say that IBM have been extremely good citizens of the open source world, they've contributed a lot of very, very good code. I don't think that's a big issue, just this one S/390 issue.

What are the most important developments coming up for the Linux kernel?
In the desktop world there are a set of transitions for the legacy-free PCs which we have to be ready for -- we're pretty much in the right spot. So you see machines where USB is basically the only plug-in interface. ACPI (Advanced Configuration and Power Interface) is becoming a requirement on machines, so you have to support the ACPI configuration.

We've covered the Pentium 4 hyper-threading. There are more scaling questions, because we have more memory, bigger disks, again and again and again. Possibly the Intel IA-64 processors, depending on if they take off, and the AMD Hammer could be a very, very big thing. That looks like that will actually be a consumer-oriented 64-bit processor. It will be able to run 64-bit and 32-bit as well.

Who will mainly benefit from 64-bit?
We get large numbers of people, particularly people with large financial analysis systems, electronics design automation, even things like SAP, where believe it or not, 4GB of address space, 4GB of memory, is just not enough. The SAP people have to actually try and squash their code into it, the software is so powerful. For those kind of roles 64-bit is basically essential, and at the moment a lot of these people are stuck on very expensive proprietary system, and once they can go 64-bit, they'll be able to dump a lot of this hardware, and move over to mainstream PC platforms and save an absolute fortune.

The consumer level impact is, I suspect, just speed improvements here and there. Obviously being able to do 64-bit integer math is good for certain kinds of 3D work, so it might help the gaming people. There's all sorts of other applications where having 64-bit just happens to be a help. But the really, really big gains are for the big electronic design automation systems.

It opens up a whole new market for Linux, doesn't it?
It's effectively extending the PC itself, not just Linux, extending the whole PC into another market area where currently there's a barrier. In some ways it could be as big a shift as the 386 was in opening the 32-bit world to the PC. From that the PC became the ubiquitous 32-bit system; now it could become the ubiquitous 64-bit system.

Last spring you met with some of the other main Linux programmers in the first Linux Summit. Was that useful, and will it happen again this year?
Provisionally so, at the Ottawa Linux Symposium (OLS), I believe, which is the main kernel developer forum. It was strange in a way. The official part of it was actually very non-productive. The amount of work that got done over beer and at three in the morning cannot possibly be overestimated.

A lot of it is meeting people. Meeting somebody occasionally you get to understand them enough that you can follow things in email or other discussions that you just would not pick up normally. So yeah, it is a big, big help.

Sometimes lots of things come out of it. At the last OLS I went to there were people literally sitting around with their laptops and they would just look over each other's shoulders and get to talking and pick up on things that never would have occurred to them before.

How militant are you about which licences people use for their software, and how they use them?
People who are not following the (free software) licence are pirates, it's as simple as that. It's no different if you take GPL (GNU Public Licence) code and don't give people the source code, or if you make copies of movies and sell them to people, it's the same thing. In terms of other software, it really depends on the people who write it. I don't think you have a right to dictate how somebody controls their own work, apart from the very, very basic standard you'd expect.

Ximian recently decided to switch class libraries for Mono (a clone of Microsoft's .Net) away from the GPL. How controversial is that to you?
I've only looked briefly at the reasoning behind it, but I think at least part of the reasoning was that, for something like Mono they wanted people to be able to link proprietary code with the free software code and mix them up and get it to work. Really you have to ask the Ximian people about that. I don't really have a problem with it; it's their software.

You feel it's important for Linux that free software licences are able to coexist with proprietary licences, don't you?
We're being very careful with that. We specifically allow people to use all the system call entry points for Linux for driver software, and the main libraries you need to build applications are under (a different) licence. So the library itself you have to provide source for, but not the application. Because obviously Oracle are not going to give source code to their tools. But you don't want to create a system where you arbitrarily shut people out -- that's the Microsoft world.

It's actually ironic that, because Microsoft has started putting licences on Windows libraries now which basically forbid you from writing free or open source using their Windows libraries. They're specifically trying to shut out and control. They're monopolists.

Their role as a monopoly changes the way they approach software, you're saying.
An application and operating system should be totally different things. They're different works. It should not be Microsoft's business how (an application) is written and vice-versa. And as a monopolist, even more so -- the fact that you can say "oh, you're not allowed to licence your code like this and run it on our system," that's 90 percent of the desktops, bang, gone. So as monopolists they have duties beyond the norm.

Do you feel it will be Linux's ultimate role to be ubiquitous on the desktop the way Microsoft is today?
It may play in the same markets, but it can never play that Microsoft kind of role, because being open source, you can't control people, you can't force the prices up 40 percent every year, you don't need to force people to upgrade because it's a service-based industry anyway. So looking at it from that perspective it's very different. In terms of being able to get it into lots of very different market areas, then yes, I think that is important.

See Part II: The battle for the desktop

Cox, one of the chief contributors to the Linux kernel, says 64-bit computing will open up a huge new market for open-source software. He also finds fault with proposed Microsoft-influenced guidelines for reporting software security bugs

The advent of affordable 64-bit computing could be the best thing to happen to Linux in a long time, opening up a new market potentially as important as the original PC market, according to Linux "kernel hacker" Alan Cox. He also criticised new guidelines suggested by the Internet Engineering Task Force (IETF) covering the reporting of software security holes. Click here for part one of ZDNet UK's exclusive interview with Alan Cox New processors emerging from AMD and Intel -- whose main focus has until now been desktop chips -- will allow many companies currently locked into expensive computer systems to switch to mainstream chips and open software like Linux, Cox said. The new Itanium line from Intel and the upcoming Hammer range from AMD offer similar performance to the RISC processors made by the likes of IBM and Sun Microsystems, but aim to achieve desktop-level prices. "Large numbers of people will be able to dump a lot of expensive hardware," said Cox in an interview with ZDNet UK. "It will effectively extend the PC into a whole new market area. It could be as big as the 386." The 386 was an Intel processor introduced in the late 1980s, known to Linux developers as the first consumer processor powerful enough to run industrial-strength software like the Unix operating system. The 386 was instrumental to the early growth of Linux, a Unix-like operating system that many say could replace Windows as the dominant software on PCs. Once reasonably powerful hardware was available for a low cost, a large number of programmers began installing and improving Linux -- Cox, then a student at the University of South Wales, among them. The result, more than ten years later, is the software that runs a good number of the servers on the Web and many of the protocols that make the Internet work. AMD's Hammer is particularly promising, Cox said, because it will run on both consumer and server platforms right away. Unlike Itanium, Hammer is optimised to run software based on the current x86 instruction set as well as 64-bit software. Itanium places the emphasis on 64-bit code, leaving the consumer market to the Pentium 4 for the near term. Cox, an employee of Linux vendor Red Hat, is now one of the chief developers on the Linux core -- or kernel -- and is largely responsible for coordinating and integrating the contributions of hundreds of developers around the world. Linus Torvalds, who initiated the Linux project as a student in Finland, still has the final say on modifications to the kernel. A controversy arose recently over whether the job of applying "patches" was getting to be too big for one person, but Cox says he feels the solution that emerged, involving automating the kernel changes, is ultimately satisfactory. "The free software community has a way of self-correcting when problems arise," he said. Linux is based on the "free", or open-source, development model which requires developers to make the original programming code of their software improvements freely available to other developers. Communal debugging is central to open-source development, and Cox bridles at recent attempts to change the way bugs are reported to software vendors. A recent draft protocol from the Internet Engineering Task Force (IETF), for example, has been criticised for stigmatising those who report security holes before the software vendor has had a chance to create a patch, and Cox tends to agree with some of the criticisms. "It's too prone to let things run and run and run," he said. "If the vendor hasn't fixed the bug in 28 days, then tough -- after that you're not reporting bugs, you're covering up for a company's incompetence, and there's a very big difference." The immediate challenges for Linux developers include extending its capabilities for both power users and grandmothers, Cox believes. On the high-end, scalability is becoming an increasingly important issue, while it's also crucial to make Linux accessible through simple interfaces, he said. The emerging use of hyperthreading within Intel's Pentium 4 processor means that Linux must scale even within the chip. Hyperthreading is designed to improve performance by allowing the chip to behave like a two-processor system. It is present in all Pentium 4s but is only made use of so far in the new server P4, called Xeon. Progress was made in this direction last year, said Cox. "The 2.4 kernel is coming of age," he said. "It is getting more scalable, especially with four- and eight-way machines. That's the direction the market is going." On the other hand, simplicity is more important than power if Linux is to penetrate certain markets, like small businesses and the home, Cox argues. He applauded the advances last year made by organisations focused on user interfaces, such as GNOME and KDE. The home market is the toughest market to crack in many ways, he said, because of the particular needs of consumers. Ultimately, though, the all-purpose PC as championed by Microsoft may prove to be less attractive to home users than a simpler, less expensive machine specialised for applications like Web use and productivity tools. Linux is ideal for such machines because of its low cost, reliability and flexibility. "You could question whether the consumer PC market will survive in its current form," he said. The shift to specialised, Web-centric devices is made easier by the fact that the new applications users want no longer require a monolithic, standard operating system, but simply a standards-compliant Web browser, Cox said. Microsoft argues that users will always want a uniform operating system so that everyone can run the same applications; it also says its operating system monopoly makes things easier for developers by providing them with a huge, homogenous market. Cox's views, not surprisingly, tend in the opposite direction. "There shouldn't be one worldwide operating system," he said. "Peoples' needs are all very different." One Linux innovation last year that was less than a complete success was last year's "Kernel Summit", where many of Linux's main contributors, including Torvalds and Cox, met face to face to coordinate their plans. The official part of the programme wasn't very productive, although things picked up after hours. "The amount of work that got done over beer at 3 am cannot possibly be calculated," he added.

[Feb 12, 2002] The ITW Interview By Matthew Pearce

Alan Cox is one of the most influential IT innovators in the world. A graduate of the University of Wales, Swansea, he has been a key developer of the Linux kernel for nearly a decade. Currently working for Red Hat® writing kernel and application code, Cox was previously responsible for the original Linux multiprocessing support, and for much of the early work on networking. Here we ask him about his changing role at Red Hat, and learn about the benefits Linux brings to business.

itwales.com: You're a leading kernel developer on Linux. What exactly does your role entail?

Alan: Mostly I am involved in making sure changes get integrated and that the changes are of a high enough quality. Often this also means working through longer-term plans for the Linux kernel. It also gets to be fun because many of the contributors have conflicting aims and it is necessary to find problem solutions that work for all cases √ from Linux on a PDA to Linux mainframes.

itwales.com: The Linux kernel is a modular one. What benefits does this bring to the OS user?

Alan: Modularity is an essential part of a reliable system. If you cannot change one part of the system without needing to modify the rest of the system you cannot fix a bug without risking introducing thousands more.

The modularity is more important to developers. With developers working on Linux on all continents its essential that everyone can make changes without full communication.

itwales.com: You recently stated that you plan to work more closely with customers. How do you see your role changing in the near future?

Alan: Red Hat is starting to pick up a number of enterprise customers. These people pay for √ and expect √ a very high standard of service. That includes improving the OS kernel to provide facilities that they depend on in legacy platforms they want to discard. One of the things Red Hat has to be able to do is to deliver those facilities.

itwales.com: The Linux OS is renowned for being stable, fast and virtually virus-immune. How have you achieved this?

Alan: Open development. People have spent ten years looking over each other's code able to refine the existing code and to spot security holes. The same process of peer review that ensures university research quality and that bridges don't fall down has simply been applied to software, which as an engineering discipline should always have been the case.

itwales.com: As a student, you installed Linux on the Swansea Computer Society computer. Is this how you began experimenting with the Linux kernel and became interested in Linux?

Alan: At the time the 386 based PC began to take off it was apparent that this was the better longer-term option for the society. We had two old minicomputers kindly donated by the computer center but we needed to move on. It also appealed to quite a few of the society people because it was not a closed box. The computer society's goal was educational and a bunch of students attempting to debug their own kernel certainly proved that.

itwales.com: Open source' means software is owned by everyone, and anyone can contribute to it. Is the sharing of ideas important to you? Was choosing to work within the free software community an ethical decision?

Alan: Technically the software is still owned by the person who wrote it, but that is more of a credit thing √ which is important in the community. For me it wasn't really an ethical decision, it's simply the right way to do engineering. You don't build reliable bridges by refusing to let anyone see the plans.

There is a real problem in both the US and Western Europe today with people trying to own and control ideas, but that is something bigger than just software or free software. Ironically it is having the same effects on free software as other things √ all the great innovation is moving to Eastern Europe, India and South America.

itwales.com: What are the advantages of an open community when it comes to product development?

Alan: From the developer point of view it means there is a huge range of talent. No matter how obscure a problem or a requirement is there will be someone who wants to solve it and who understands the field.

It also allows the sharing of development work. A large part of a computer system nowadays is generic and the revenue is in customisation and services. In the open community the cost of building the generic parts of a system are shared not duplicated. For researchers it has turned out to be a very big blessing too. It is possible to take an open source OS and modify it to test research theories and algorithms in real world environments without building costly throwaway mock ups. Furthermore, if it works out, it can be folded into the main project.

itwales.com: Linux has yet to be widely adopted as an OS by businesses, but the expense of Windows new XP operating system might change that. How are you targeting businesses?

Alan: Larger companies are adopting Linux rapidly for server systems in particular. Getting further into that market is now mostly about growing the quality of high-end support services.

The desktop is more challenging because desktop users are an extremely varied bunch of people. It demands a high quality and an easy-to-use environment √ which is now mostly there √ and it demands a large application portfolio which tends to be the chicken and egg problem.

At the moment the desktop market for Linux is growing in two areas. Firstly in providing large numbers of easily managed desktops running either custom or very standardised software (such as the Star Office suite), secondly in the technical desktop market where the tools wanted are primarily the powerful development tools Linux has had for many years.

The ever-rising price of MS Office is increasingly pushing companies to look at Star Office both on Windows and on Linux. In many ways the effective forty per cent price hikes in Microsoft pricing have been the biggest driver of Linux on the desktop.

itwales.com: Are the merits of Linux's business applications attracting users?

Alan: The main things that attract business at that level are the pricing, reliability and the reduced business risk. The fact that there are multiple suppliers of the operating system gives a great deal of comfort to companies using it. In addition the license ensures that they can always get a custom change made for their own use, even if the main distributors are not interested. In the open source world one example of this was Y2K. When packages had Y2K problems and were no longer maintained by their authors, anyone or any group of users could fix or pay for fixing work. There was no ⌠enforced upgrade■ risk.

itwales.com: It's been said that in the last year, particularly with IBM's use of Linux technology, Linux has become a mass-market alternative to Windows. Was 2001 a turning point for Linux?

Alan: It didn't strike me as a turning point. There has been a continuous trend in the increasing use of Linux particularly server side. With some of the big names now using and supporting it, visibility has increased.

itwales.com: Do you think Linux markets itself effectively to businesses?

Alan: That is really a job for the vendors, and I think they are doing a good job. There is a difference between effective marketing and claiming to be the one true solution to all problems. Linux is not the one true solution (if such a thing truthfully ever can exist), but we are working on it.

itwales.com: Why should an SME choose Linux as an operating system?

Alan: Because it will save them money and do the job better. If at this time that isn't true for their application set then they shouldn't choose it. The desktop monopoly has perhaps clouded things but with any tool the same fundamental rules apply, be it a hammer or a web server. Is it the right price, is it reliable, will it do the job?

itwales.com: How does it save SME's money, specifically?

Alan: As an SME you can pick from multiple vendors, or download it yourself. You can install it on as many machines as you like without expensive software auditing. If you need specialist features you can go to a company with experience directly in the matter. You can buy support from where you feel happiest, including companies that actually listen to their customers. No single company controls the ability to modify the software.

In many ways the lack of a per seat license to install the software is a side effect of the recognition that it's more efficient to develop openly. The better overall pricing, improved reliability and removal of vendor lock-ins are the really important factors.

itwales.com: How can Linux overcome Microsoft's dominance at the desktop? Will you have to come up with radical new technology?

Alan: In part this depends on the legal settlements. One of the big problems right now is getting Linux pre-installed on a PC. When you investigate why this is hard you end up looking back at questionable monopolist influences.

With the settlement, the large number of civil lawsuits pending, possible EU action, and the question now raised in the US about whether business practices of not paying dividends are in fact allowable or an illicit tax haven there are several chances for justice to be done.

Beyond that, the open source model is faster and more cost effective. It improves more rapidly, and for less investment. It's very hard to compete against a fundamentally more efficient model.

itwales.com: Microsoft recently implied that it's going to seriously target Linux in 2002 as a competitor, plus any vendors that support it (such as IBM). They are especially concerned with the server marketplace, and aim to find out about the use of Linux in their customer base. How can Linux combat this "assault' from the IT giant?

Alan: Primarily by being cheaper, more reliable and higher quality. End users believe their own experiences over a salesman. Company directors talk to each other as well as to sales people. In terms of advertising, IBM have already been running Linux TV advertising in the USA.

itwales.com: In recent years, commentators have warned of a fragmentation of Linux (in a similar fashion to Unix). Because the OS is open source, programmers can come up with different versions, and applications may not run on every version of the OS. Do you think a level of competition will be introduced by this?

Alan: Competition and product differentiation don't have to mean incompatibility, and in fact the incompatibility story is mostly a marketing myth put about by a certain large vendor. The Linux companies care about compatibility a great deal, and one recent result of this was the Linux Standard Base, which defines precisely the base behavior of the core Linux software that applications rely on. You can expect to see compliance statements in the next series of vendor releases.

itwales.com: You resigned from the Usenix ALS committee earlier this year, reportedly because Dmitry Sklyarov, the Russian programmer, was arrested in the US. What do you think of the situation in the US at the moment with regard to the Digital Millennium Copyright act?

Alan: At the moment I consider the USA not a safe place for a software engineer to visit. Money and lobbyists buy many things but when it comes to the courts I don't think that the DMCA aim to send people to jail for even discussing security flaws is going to stand well against the US constitution. Until then I'd rather play safe.

These things happen. Right now the UK Government is busy trying to pass the similar European copyright directive into law in a way which may well make it a criminal offence to help a blind person read an electronic book if it has been protected by some mechanism that interferes with their screen reading software. It also puts web caches that do filtering (for example pornography filtering for schools) on questionable legal ground.

itwales.com: What is your opinion on the Government's involvement with Microsoft? Do you think that governments, as a rule, should use open source technology?

Alan: When the prime minister is appearing at product launches by a company twice found by courts to be abusing a monopoly, and facing billions of dollars in lawsuits you have to ask questions.

Governments should evaluate open source technologies certainly. The fact they get the source code and can audit it has been a reason for some countries to adopt open source, pricing is another. However, I don't think its right that government should have fixed rules beyond ⌠fair review■. There may be situations where proprietary software is genuinely the right choice.

itwales.com: In terms of its skills base and its WDA initiatives, do you think Wales is improving as a venue for software development?

Alan: In some ways √ and the lack of London pricing means it is cheaper for an SME to get the staff (as well as a higher standard of living for the staff) than in the South East. Right now we seem to have a problem in that all the IT literate people move to the South East because there is little Welsh IT employment. As a result of them moving there is no expertise here so there are not enough Welsh IT companies. Thus the cycle continues.

It is a very hard problem, and one I am glad I don't have to solve!

2001

2000

[Nov 23, 2000] Linux.ie Alan Cox Interview "Total domination is bad. The Microsoft dominance already badly misled people about how to choose systems. Instead of 'what tool do I use for the job' it's 'well it was shipped with the box'. Linux is a tool, Windows is a tool and so are numerous other systems. It's really important people go back to looking for the right tool for the job. That will never always be Linux. No single tool can do everything well."

1) Is Linux heading towards a major rather than minor computing role, or is it still too early to tell how things will unfold?

I think it is still hard to predict. The market is changing so fast.

Not only do we have the shift from the desktop to servers and thin client machines happening - and it is happening at least in consumer spaces with things like NTL's TV set internet stuff and the ongoing projects from other big vendors. We also have the exploding mobile market, the phone/PC fusion and more. So it's hard to guess.

Linux does well as a server OS, it does extremely well on the thin client and embedded environments too. The configurability and the fact that it isnt owned by a competitor to the companies using it make it a big win for them.

The desktop will be the hardest battle. The Microsoft lawsuit might help there if there is enough will in the US Government to split Microsoft and force the units to act alone. We now have most of the GUI environment we need for end users.
 

2) What do you think has been most integral to Linux's growing success and visibility in the past 18 months?
a) In terms of the OS itself (eg, why is Linux such a contender?) and
b) In terms of marketing success (eg commercial deals, product announcements, backing of big name players, etc).
The biggest thing of all has been the rest of the world seeing free software going from a crazy concept to a marketed advantage and marketed in a way that the business community understands. The stock market flotations also gave it a definite air of reality.

You can get news out of hype, and there has been a lot of Linux hype from companies either because they sell Linux products or because they see it as a stick to bash Bill Gates with (or both). Hype doesn't actually create a large user base and sustained deployment which Linux unlike Java is getting.

In terms of Linux itself I think the Gnome and KDE desktops have been the big shift in thinking. Linux has picked up people who believe in OpenSource and who want Linux to be part of a bigger community than just the computer wizards.
 

3) Where would you like to see Linux go today?

1. what could be done to most enhance the OS itself and why would that element be important (user interface, killer app, or whatever) and
2. in terms of commercial success.Is total world domination (in the commercial space) important?
   
   The big step is the desktop. There are vendors with clear interests in this sort of area - Helixcode and Eazel for example who are doing real money work on the GNOME desktop. The other big area to deal with is high availability clustering. Wensong Zhang did the first free Linux clustering for web server failover and the like but that is only the baby steps. To do full clustering and to be able to position Linux to replace things like VMS as a highly available (and here we are talking minutes of downtime a year) clustering solution is no small job.
   
   I personally think the desktop or at least the thin client end of the desktop is the most important. Linux has good security features which makes it ideal for things like call centre environments, although perhaps less so for their staff. Building a thin client Linux environment with hotdesking, sensible shared file store and good network efficiency is a golden opportunity.
   
   Total domination is bad. The Microsoft dominance already badly misled people about how to choose systems. Instead of 'what tool do I use for the job' it's 'well it was shipped with the box'. Linux is a tool, Windows is a tool and so are numerous other systems. It's really important people go back to looking for the right tool for the job. That will never always be Linux. No single tool can do everything well.
    

4) If it's important, or if you think that Linux is going to take a larger role in the commercial world anyway, where do you think it will have its greatest success, and how might that change the computing industry?
For example: at first, Linux seemed a desktop OS for enthusiasts, then began to sneak onto servers and has staked out some serious web server territory, of course. But IBM is eyeing it, for example, as being as important to applications as TCP/IP is to the internet. Software companies will port to Linux, they say, because it's easier than porting to Unix flavours or NT. That benefits hardware companies and big app companies like SAP, according to that view. I'm interested how you think things might develop; if you'd agree with the IBM scenario, for example.

Linux is the sum of contributions so it will go where the contributors take it. Right now that is everything from IBM mainframes to pocket computers. Some of it is through investment and funding and a lot of it is because someone just thought it would be neat if Linux did XYZ and had fun working on it.

I can see Linux becoming the generic OS for embedded applications and servers. Where people will pick Linux unless they need some given feature that favours another system. I don't know what will happen on the desktop.

Only time will tell.
 

5) There's much talk now of Linux fragmenting into flavours. Do you think this could happen?

The ISVs don't and won't stand for it. The customers won't stand for it and the community definitely wouldn't. There is a lot of work right now to get definitive standards via the Linux standards base (linuxbase.org). That has real big vendor backing because the vendors want to ship 'Foo for Linux' not 'Foo for Red Hat', 'Foo for Mandrake' etc. Also non-Linux people are quite interested in this too. We may end up creating a common interface for applications on the PC in any Unixlike environment. That is definitely good for customers.

Ultimately nobody who wants to build the Linux space either commercially or for fun has any business or technical reason for creating an incompatible variant. In fact the pressure is entirely to improve compatibility.
 

6) Can Linux and the open source attitudes of the developer community surrounding it co-exist with Linux's commercial success? Do you see strains arising out of these developments?

The developer community on the whole seems not to care too much.
Certainly the developers I work with both in and outside Red Hat are more loyal to Linux than to their companies. There are certainly marketing people who see other vendors as the enemy. Programmers never cared for marketing peoples' views anyway ;)
 

7) Linux companies hit celestial IPO heights recently then have crashed since then. Is this a 'correction'?  A failure of Linux to meet expectations in the commercial world? A pointer that an open source OS won't make anybody money?

I think there is plenty of scope to make money, as it seems to do a lot of people. Its certainly not going to make Microsoft like profits and that's probably a good thing for everyone long term. It is about time people got fair prices.

The stock valuations just remind me that the US technology stock market is basically a gambling den. It seems to be based on riding hype to the highest value you dare then trying not to be the last one to sell. In time I imagine the Linux valuations will settle down.
 

8) Finally, what motivated your own involvement with Linux and why does it remain so central to your life?

Well I got into it by accident. I wanted an OS to debug my multi-user game on and Linux hacking became a sort of hobby.

Now I'm paid to give away code and watch it empower people all over the world - especially developing countries. I don't know many jobs to compete with that one.

Alan

Chat with Alan Cox Contributed by jono on Sunday June 18, @ 11:49PM

At the Linux Expo we had a chat with Alan Cox about everything from kernel hacking to Jolt cola. Check out the transcription by hitting [DETAILS].

Interview with Alan Cox

Please note that this is a transcription of a conversation.

Everyone knows you as the kernel hacker in the Linux world. What do you do when you are not hacking the kernel?

At the moment I am in the middle of trying to buy a house. It involves a house where all the windows need replacing and a few other things like that. Thats one of the things keeping me occupied. Trying to figure out how to get rid of all the hardware is the other. Two things are hard. One of which is finding space for it and the other is getting stuff you don't need back to people, so there is a fair bit of space management going on.

How is Telsa taking all of this?

Better than she took two MicroVAX 2's in the living room a few years ago.

Those are the ones about the size of a fridge aren't they?

Thats about right, yes.

Did you manage to get Linux running on them?

I was just looking after them temporarily while waiting for someone who was a bit late taking them off my hands. They get a little bit touchy after a while.

What else do you do hobbies wise?

Well, Linux is my hobby. I have been playing around with various things; I have a spider plant I am growing and stuff like that.

Any cacti?

The machine room would probably do very well for a cactus.

Getting on to the more technical side, what are the main elements of the kernel that you *enjoy* hacking?

I have great fun with all of it. Most of what I am doing now is coordinated across large amounts of the kernel, so there is not really any specific bit of the kernel that I am concentrating on anymore. In some ways thats more fun, because every day you are dealing with a different piece of the code with a bunch of people.

On average how much time do you spend hacking away?

Dunno, probably about 60 hours a week.

A fair bit then...

I do sleep which is something contrary to rumor.

The Linux community seems to have given you the status of the archetypal hacker. Do you think that you fit the stereotype of a hacker; sitting there with a pointy hat drinking loads of Jolt cola?

Well, unfortunately the Swansea supplier of Jolt cola no longer sells Jolt cola. I am currently investigating whether you can buy it by the crate wholesale.

We have had similar problems. We wanted to buy it from Think Geek but unfortunately they don't ship it over here.

I know there are UK suppliers, so somebody needs to get into the business of selling Jolt in the UK, by the crate load over the Internet.

Yeah...we should maybe think about that.

On the kernel front, the jump from 2.0 to 2.2 everyone thought that happened too slowly, it took over a year to come out. You seem to have gone quite quickly from 2.2 to 2.4 and that kind of worries me. Why has it taken so little time?

Part of it is how many things you stick in each time. With 2.2 we just kept thinking..."we will just squeeze this and this in". We could probably have stopped two or three times in the 2.2 build up. We thought 2.1.40 something was pretty stable, we will go from there; we didn't do that though; we might as well try this as well. It's always longer than you intend anyway. We thought that we want to get a release out, so we won't put journaling in the standard kernel. Journaling is great but it will have to miss if we are to get it out.

Are you going to put the Reiser FS in the 2.5 kernel?

As I understand it we will take all the code for the journaling file systems and create a single layer that everyone can use, so with the ext3, Reiser, JFS, XFS; a lot of what they need is common, so we want to get them together to build the right common code. Also, NWFS, the network file system is apparently now journalled.

What's the first thing your going to be adding to 2.5?

I have no idea. It depends what the first patches are that I get.

How did you originally get into coding the kernel? I assume you did user level stuff before the real low level stuff...

I got involved with a multi user game. Having done that I kind of hacked UNIX like behavior into the Amiga so I could test MUD on it. I wasn't as arrogant as Linus, so I didn't believe I could write my own kernel. Arrogance and stupidity were two of the starting ingredients in some ways! Finally there was a reason to own a PC; PCI had got better but there was nothing to run on it. 386BSD was announced, but I downloaded the earlier release as 386BSD required a floating point chip, and those were about £50 extra; I wasn't far past being a student, and I wasn't very rich. I managed to scrape together this old 386 with 4MB. I did some stuff with the university computer society; the university went Ethernet. We got the new TCP/IP stuff implemented and bang...ok...debug it a bit...bang...debug it a bit...oh it's staying up...log in...bang...and we were actually the first people putting the first Linux networking code on really busy networks. The campus network was busy and had lots of protocols on it, so we were the first people seeing lots of bugs, so we started fixing them because we kind of wanted the university bulliten board up for more than three hours a day. With 0.99 to 1.12 we were having more uptime hours than anyone else. Fred took over the networking for a while, and he wanted to rewrite it, and we were trying to work with the original code, so I sent out a bunch of patches called net2debugged and Linus started applying them, and somehow I ended up in charge of the networking code. 2.0.29 was really the last one that I was in charge of the networking.

One of the most fundamental questions to ask is what is your favorite editor!?

Joe. The first editor I really worked with was Wordstar, and Joe has Wordstar keys.

Have you ever been tempted over to FreeBSD or Windows?

Windows...no. If Linux had not been around then I would probably be using FreeBSD. It is a really technically excellent Operating System.

Do you enjoy the press attention?

I try to keep the journalists away...at shows I can't avoid them. At the show they hassle me, when I leave they don't, and thats fine.

KDE or GNOME?

Currently I run GNOME. Saying that, I run whatever I happen to prefer, it just happens that GNOME fits my desktop how I like it. I am not pro either of them. The reason I didn't use KDE because of the Qt non-free license, but now it's a free license it doesn't matter, so it's just a choice of one or the other.

[2000-06-14 ] Linux Today - Linux Journal An Interview with Alan Cox [Kernel Developer]

Linux Journal: How did you first learn about Linux? What were you doing in your own life at the time?

Alan Cox: I was hacking bits of ideas for my own OS and working on a MUD called AberMUD. I had pondered getting a decent PC, since the Amiga was getting a bit long in the tooth. 386BSD came out, and it looked like there was finally an OS worth running on x86 hardware. Linux came out around the same time, but didn't need an FPU, so I started running Linux.

LJ: What attracted you to it, compared to FreeBSD, proprietary Unix systems, or lucrative areas such as Windows? What made you want to help with development?

Alan: Linux was a lot easier to set up in the early days; MCC Linux and then SLS made it really easy to install by the standards of the time. I looked at the BSD systems, but I liked the way the GPL meant I was writing code that nobody could run off with. I didn't really chose not to hack 386BSD; I was just having too much fun with Linux to bother.

LJ: What part of Linux were you personally interested in and working on? How are you still involved with Linux development?

Alan: Initially, I was working on the networking code after Ross Biro stopped maintaining it, and Fred van Kempen basically dropped the mainstream code to rewrite it. I ended up maintaining the code and getting it going. Nowadays, I do the stable kernel releases and a fair bit of patch merging and debugging of drivers.

LJ: What was most important to you about Linux? What's the very best thing about Linux?

Alan: I think the most important thing about Linux is that it gives people the ability to do what they want. The "Penguin Powered" logos people love should really be "Penguin Empowered". That, I think, is the best thing about Linux, too. We've given the computer back to the user.

LJ: How important was the GNU project, and how did the GNU Hurd factor in to your thinking? Should Linux be known as GNU/Linux?

Alan: I knew about GNU several years before. In fact, in many ways, Linux exists because GNU chose to pursue the Hurd rather than using UZI as their Unix OS core, as they could have done. GNU/Linux is perhaps overstating it, but ignoring the FSF contribution is even worse. Richard has perhaps made a few enemies by insisting on GNU/Linux — but it does remind people.

It's really x11/BSD/GNU/....../Linux.

LJ: What was it like to be working with others over the Internet at a time when several computer luminaries thought that organizing successful software development over the Internet was difficult, if not impossible? Did you realize how revolutionary this approach was?

Alan: I don't think it was revolutionary. People had been doing it for a long time before that, a very long time. The modern Internet and large-scale access just made that project a bit easier — the lack of people and slow networks killed earlier equivalent projects like UZI and OMU, stopping them from spreading.

One thing Linux taught me: far too many people write about software design, but have never run a real-world computing business. The folks who seem to get software design right are mostly engineers. They want it to work, they want to solve the problem and they aren't totally obsessed by reusable components, object orientation, Java ... whatever the meme of the month is.

LJ: What are you doing with your life now? What's a typical day like? How do you find time for work and Linux, and how do you balance free software with the need to make a living (or the desire to become rich)? What do you do for fun?

Alan: I work for Red Hat. I work from home, hacking free software — it's great. It's been a bit busy, but I have a lot of fun when I'm visiting shows and abroad, both meeting the people and also getting to see other places. It isn't just the shows; I've visited the depths of Iceland with a bunch of mad 4x4 drivers, spent a week in a very snowy Vienna, and been to the Glengarry Highland games in Canada.

LJ: Who do you think other than Linus has had the most influence over the Linux community, and why?

Alan: Umm, that might be me, although I try not to. It really depends on which part of the community you mean, or even outside of the community ... People like Eric have had a big influence on business folks, which I certainly don't have.

LJ: What do you think is the most important addition or change needed by Linux in order for it to succeed further? In what direction does Linux development need to go? Where is Linux's future the brightest? What is the #1 biggest threat to Linux today?

Alan: Probably the biggest thing Linux needs now is better applications and user-space tools. We need to take Linux to the level where you can give it to your grandmother, and not expect a phone call back except to say "thanks". The biggest thing the kernel needs now is documentation.

I'm not sure what the threats to Linux really are. The biggest one is probably Linux fragmenting. I don't think that is going to happen in the mainstream, but we are already seeing a few vendors pulling that way in embedded space.

The app vendors and the users, I don't think, will tolerate a vendor going off at a tangent.

LJ: How do you feel about Linux's current popularity? Would you have preferred it stayed contained in the hacker community? Would it have survived on the fringes?

Alan: It was a bit of a surprise. On my first trip to Red Hat, they had about six people, and the new boy was this Donnie Barnes guy. Now they are heading for five hundred.

Linux would have survived on the fringes, I think. There has always been a market for things people can actually play with and tune.

LJ: Would it have survived without the IPOs and financial backing? What impact has the commercialization of Linux had? How do you feel about Linux profiteering and the people who make millions off of other people's volunteered efforts?

Alan: I'm working for a vendor. I get regular mail from people trying to find Linux-aware folks to hire. I think those who wrote code for fun have plenty of opportunity to reap rewards. Even when I wasn't working for Red Hat, it didn't bother me. I wrote it for fun, and the fact that people found it useful was a greater reward than money. We've made it possible to put computers into places that could never have afforded Microsoft products.

LJ: How can Linux compete with Microsoft in the desktop sector, and will we be able to hold the commercial sector if we don't take the desktop as well? Can we take the desktop without ruining the spirit of Linux by dumbing it down? Where will our next areas of growth and expansion be?

Alan: Trying to predict the desktop is hard. Firstly, I think it's safe to say that the PC desktop of today is probably the dinosaur of tomorrow. Most end users want simpler systems. They want to trade flexibility for ease of use, and power for size.

There will be plenty of people who choose the full PC, some because they enjoy it and some because they need all the power. Those, I suspect, are the minority.

The machines of tomorrow are mostly going to be web-oriented, or very mobile (or both). People will expect them to just work. Folks like Palm have taken the first stumbling steps in this direction, with huge success.

Linux is a good OS for building embedded systems with, and to be able to extensively customize. GNOME and KDE will give people a good battle on the desktop and beyond.

LJ: How do you feel about commercial applications being written for Linux, and proprietary software and protocols in general? Do you run Linux more for philosophical reasons or practical reasons? If something that appeared to be better came along, would people jump ship? Conversely, would we stay with Linux even if it somehow degenerated, took a wrong turn, or stopped progressing?

Alan: I don't believe open source works for everything. There are some cases where the ideas in the code truly have value, but not many. I don't currently use any proprietary software generally, except Netscape. And Mozilla is now within a hair's breadth of replacing that.

I like the flexibility and the control of free software. Most of my experiences with proprietary software have either been getting screwed as a user, or being part of a large company that h