Oracle + Open Source

two worlds inexorably colliding

Archive for November, 2007

Another Take on Unbreakable Linux Support

Nov 30

Posted by Sean Hull in open-source, oracle | No Comments

A lot of folks are sounding the alarm bells over Unbreakable Linux.  Given that this direction at Oracle speaks squarely to my topic here at Oracle + Open Source, I thought I should at least comment.

Oracle’s decided to provide their own support for Linux.  Are they rolling their own distro?  Well actually, no.  They’re doing what CentOS and a few other folks out there are doing.  They’re rebuilding from RedHat’s distro, effectively repackaging their Enterprise Linux distro and in the process testing rigorously, and reporting bugs and issues back, or fixing those themselves.   What’s the deal?

Due to various license requirements with the GPL, RedHat’s distributing Linux must be done as source, so that means third parties can freely recompile that source, effectively using those same tweaks and packaging it up as their own.  Well gee, that’s not fair is it?

I have to admit I’m on the fence on this one.  Honestly folks, the open-source community, of which I consider myself a part of, has been championing Linux, and pitching it to Wall Street,  and big business for over a decade.  So in that vein, hey we’ve done it, and we’re continuing to do it.  That’s great.

It does seem a little odd though that CentOS and Oracle can redistribute RedHat’s sweat and tears.  Or does it?   The logic at CentOS goes if you want support, you can buy RedHat.  If you don’t, you’re free to go ahead and install CentOS as you like.  So despite CentOS being free, Oracle charging a license fee for the support they’re providing, that seems to make sense too.  The truth is that with open-source, we effectively throw IP (intellectual property) to the wind, and let it land wherever it likes.  So if Oracle wishes to capitalize on this, more power to them.

The truth is that the complaints from some camps miss a really important point.  Despite Oracle’s marketing message about making Linux Unbreakable, and Larry’s various trumpeting, Oracle actually does contribute a *LOT* to the Linux community.  Take for example this huge site of open-source projects all by or directly supported by Oracle.   Or another example, Oracle’s rolling Apache into it’s middle tier Fusion product.  Or take another, it’s building of a better driver for PHP.  All of these are very real, very measurable contributions back to the community.

Obviously it’s in Oracle’s interest for open-source technologies to work, as a lot of their customers want that interoperability.  So do I, frankly.  I’ve been working as an independent consultant for over twelve years providing professional services for Oracle and open-source technologies, and making a healthy income, thank you.

I’ll also admit that some of the folks in the Unbreakable Linux team I know personally, and very much respect professionally.  I’ve also met a few of the folks who head up the initiative at Oracle OpenWorld.  They’re all bright, approachable technologists who are as excited about open-source as they are about the Oracle core database product.

I know this may disappoint some of my open-source colleagues, but hey what’d you expect from Mr. “Oracle + Open Source”, hmm?

DBJ: Eight Ways to Hack Oracle

Nov 29

Posted by Sean Hull in databasejournal | No Comments

I just published the first half of a two part series over at Database Journal called Eight Ways to Hack Oracle.

The article is really an overview of vulnerabilities in the core database product, and how to protect against them.  Part one covers SQL Injection, a way of putting malformed entries into a web page in order to trick the application to run your query.  This can be very dangerous, and is a lot more common than you might think.  Next we cover default passwords, those are obvious right?  Except you’d be surprised how many there are, and how much of a pest they turn out to be.  Next we talk about brute force methods to get into the database, and how affective they are.  And lastly we speak about sneaking information out of the database, and how it can be done.

In part two of the series we cover listener vulnerabilities, privilege escalation which allows some of those underprivileged and default passworded accounts like scott/tiger to become extremely useful.  Lastly we hit on operating system and filesystem vulnerabilities, and how to protect against them.

Underground PHP/Oracle Manual

Nov 19

Posted by Sean Hull in open-source, oracle | 5 Comments

 In the spirit of a long line of O’Reilly “missing manuals”, and hacker opuses, take a look at Chris Jones opus: The Underground PHP and Oracle Manual.

It’s a short week, so we’ll catch up with you all next week.  Happy Holidays!!

Oracle OpenWorld 2007: Thursday Dispatch

Nov 15

Posted by Sean Hull in openworld, oracle | 1 Comment

Although this years event was huge, and as such a bit of a jumble at times, I enjoyed it very much.  I made many many new contacts this year, spontaneous hellos, introductions, business connections, and so on.
picture-1.png

There is a *LOT* of new stuff going on in the Oracle space, what with various new acquisitions, and no one person probably understands it all.

I’ll also say that I ran into an incredible number of new terms which I like to think of as reframing, or looking at things in a new way.  You might also call them buzzwords, so take your pick.  Some you may have heard before, some appear in a new context, and some are old and familiar.  At any rate go ahead,  mull over them and digest:

  • information fabric
  • information as a service
  • service oriented architecture
  • what’s the cookbook for doing that?
  • oracle by example
  • business process management – from order to cash
  • extreme transaction processing
  • data virtualization
  • coherence
  • data masking
  • it comes baked in or built in
  • moving from reactive to proactive
  • we can triage their problem
  • the democratic, approachable, modern leader
  • preintegrated
  • comprehensive
  • hot pluggable
  • go around the corner to find the treasure of an idea
  • drinking the open-source koolaid

So long Oracle OpenWorld, see you in 2008!!

Oracle OpenWorld 2007: Wednesday Dispatch

Nov 14

Posted by Sean Hull in openworld, oracle | No Comments

Well, Oracle has definitely drank the web 2.0 koolaid. It’s exciting to see it happen. From a new wiki, to a video cast, and even an unconference!

unconference.png

OTN has also been podcasting for some time via the OTN Techcasts which I like. We even see some twittering, and meeting with bloggers.  I also see an Oracle user on twitter, and Justin Kestelyn.

Overall I think Oracle’s moves to promote social networking and transparency are good ones.  Perhaps it will be widgets and OpenSocial next, or maybe mashups!!

Oracle OpenWorld 2007: Tuesday Dispatch

Nov 13

Posted by Sean Hull in openworld, oracle | No Comments

It seems that Friedman’s “flat world” is now doctrine.

img_0563.JPG

Certainly The World Is Flat is a powerful book, and a powerful idea about what is happening to our global marketplace of ideas, products, and services. But once something becomes a marketing slogan you know it has reached another level of headiness, and universal application. Folks in technology may have had a particular propensity toward those ideas because of such outsourcing pressures on our skills in recent years.

But hold on, haven’t you heard about the new trend? The world is *not* flat, or so says the Economist, after reading Pankaj Ghemawat new book Redefining Global Strategy: Crossing Borders in a World Where Differences Still Matter. I agree wholeheartedly. Granted the pressure to outsource has been felt, but if economic numbers are to be trusted, it is quite small as a percentage of the whole, and now it seems the pendulum is swinging back the other way.

Rob Preston at Information Week argued something similar, that “The new ‘Flat World’ tilts back and forth and does not stay horizontal for long!

Still it looks cool as a slogan on a stairwell anyway… Cheers!!


  

Oracle OpenWorld 2007: Monday Dispatch

Nov 12

Posted by Sean Hull in open-source, openworld, oracle | No Comments

Gosh I really love that word “open”.  When I hear it, I just get all warm inside.  I’ve always liked that Oracle used the word in it’s big annual conference name.  And this year’s show is bigger than ever.  I heard a rumor that there were 50,000 people here this year.  With an ever increasing round of acquisitions, the exhibitor and user communities just keep growing.

As you can see from this photo, they’ve totally blocked off Howard Street.  The video billboard there is at the 3rd street end.  I managed to catch it showing a frame of an open world!img_0566.JPG

Behind the billboard are tents where the lunchtime cafeteria was, because all the other square footage is now taken by exhibitors big and small.

And wow, were there a lot of vendors.  Even MySQL AB was here, as I blogged about earlier.  Open-source is a huge and growing component to the Oracle landscape now.  Oracle users seem to concur.  In 2000 when I was writing my book “Oracle and Open Source” no one would have believed that.  But the market pressures are working their magic, whether we like it or not.  I talked at length with Anand Pandey, a Senior Consultant with MySQL.  He handed me a very interesting whitepaper “Open Source in the Enterprise: New Software Disrupts the Technology Stack“.  A very interesting read indeed.

Stay tuned for more tomorrow.

MySQL AB At Oracle Open World?

Nov 8

Posted by Sean Hull in mysql, open-source, oracle | 1 Comment

Incredible, but true.  It seems that MySQL AB will be exhibiting next week at Oracle Open World.  This of course isn’t the first time a competitor would advertise or exhibit on it’s rival’s home turf.  Still it certainly signals a changing landscape, and heats up the battle for market share.

Here’s a longer list of exhibitors at the conference.  I don’t see Enterprise DB there, but anything’s possible.  You will see RedHat as well as Suse, now owned by Novell, represented there as well.  Also if you make it to the conference, be sure to visit the Oracle pavilion section, where there are sure to be smaller booths for the Open Source Group, as well as Oracle Unbreakable Linux Support program.

Sum, Decode + Reworking a Group By

Nov 8

Posted by Sean Hull in oracle | No Comments

SQL can be tricky. Here’s a way to display date based summations across one row of output…

Suppose you have quarterly totals for 2006 like this:

SELECT TO_CHAR(orderdt, 'Q') Q, sum (price) the_total
FROM my_orders
WHERE orderdt >= '01-JAN-2006'
AND orderdt < '01-JAN-2007'
GROUP BY TO_CHAR(orderdt, 'Q')
ORDER BY 1;

The results would be like this:


Q THE_TOTAL
- -----------
1 1000
2 1500
3 1300
4 2000

Now let’s throw some SUM and DECODE functions into the mix.


SELECT
SUM (DECODE(TO_DATE(orderdt, 'Q'), '1', sale_price, 0)) Q1,
SUM (DECODE(TO_DATE(orderdt, 'Q'), '2', sale_price, 0)) Q2,
SUM (DECODE(TO_DATE(orderdt, 'Q'), '3', sale_price, 0)) Q3,
SUM (DECODE(TO_DATE(orderdt, 'Q'), '4', sale_price, 0)) Q4
FROM my_orders
WHERE orderdt > '01-JAN-2006'
AND orderdt < '01-JAN-2007'
GROUP BY TO_CHAR(orderdt, 'Q');

Results would then look formated I think how you would like:


Q1         Q2         Q3         Q4
---------- ---------- ---------- ----------
1000       1500       1300       2000

What’s New With Firebird?

Nov 6

Posted by Sean Hull in open-source | No Comments

picture-1.png

Though I haven’t seen much of them in the news lately, I thought I’d do some digging.

  • June 19th xStarter job scheduler
  • July 13 IB LogManager v2.8.0
  • August 27 – Firebird 2.0.2
  • August 31 – Firebird 2.0.2 recalled (oops!)
  • September 27 Firebird v2.0.3 released
  • October 5th – IBReplicator Server v2.5.1
  • October 22nd 2.1 beta 2 released
  • November 5th, released for Mac OS X Leopard.

There are of course many other news flashes, so if you’d like to catch up on Firebird, take a look at the .