Evil Sunday: NetWare Vulnerability and Novell's Way Out of a Windows Dependency

Dr. Roy Schestowitz

2007-08-06 04:29:36 UTC
Modified: 2007-08-06 04:29:36 UTC

The Do-No-Evil Saturday series might sometimes give the wrong impression. It seems to insinuate that Novell news which does not fit the theme of this Web site is always positive. It is not the case however. Last week, for example, a serious vulnerability was found in the NetWare client for Windows.

Novell has released an update for its NetWare Client, which fixes a critical vulnerability. A buffer overflow can be triggered remotely in the NWSPOOL.DLL file, allowing code to be injected and executed with system privileges. Novell Client v4.91 SP4 for Windows 2000/XP/2003 is affected. Novell do not provide any further details.

For its open source strategy, it is important that Novell transforms and migrates its existing userbase to GNU/Linux. There is no time to rely on legacy. The underlying insecurities of Windows give Novell a bad name and there are other factors that escape one's mind. For instance, if Novell wishes to encourage the use of OpenOffice.org, then OpenDocument (ODF) is an excellent bridge. One blogger argues that the best way to deploy OpenDocument and make it a reality is by requiring the use of Linux. This makes perfect sense.

Let's not forget that OOXML, as opposed to ODF, is tied to particular platforms, which means that without Microsoft Office, it is simply incomplete. FSFE called the 'translator' a hoax. There are many more observation in a new article from Groklaw. If Novell wishes to encourage Linux sales, it must embrace ODF without hesitation or compromises. It is a mutual relationship. ODF encourages platform independence and vendor-independent platforms/environments thrive in a symbiotic relationship with real standards such as ODF. As long as Novell supports Microsoft's OOXML, its SUSE sales will be cannibalized at best.

Recent Techrights' Posts

Video: University in Peru Honours Richard Stallman: Tomorrow, January 20, Richard Stallman speaks in France
January 20: Richard Stallman Talk in Europe: evening time in Europe, around midday in the United States and Canada
FOSDEM is Called "FOSDEM" Because of Richard Stallman (RMS): The overlap there seems timely; yesterday RMS spoke in French-speaking (in part) Switzerland where questions in French were accepted
Links 19/01/2025: TikTok (Fentanylware) Now Banned in the US, Convicted Felon Talks to Fentanylware CEO and Pooh-Tin About Undoing the Ban Despite the Supreme Court Unanimously Upholding It: Links for the day
FTC Realises Microsoft Buying Fake 'Clients' to Fake "Revenue" (Microsoft 'Buying' Services and Products From Itself!): Ponzi scheme
Total Lock-down Ambitions - Part III - The Web Browser as DRM Pusher: A lot of "streaming" stuff is DRM
IBM Termination Story and Information From Microsoft About Mass Layoffs: In 2 weeks of 2025 Microsoft already had 2 waves of layoffs
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Saturday, January 18, 2025: IRC logs for Saturday, January 18, 2025
Links 18/01/2025: Restoring the Great Wall of China and Economic Expansion in China: Links for the day
Guardian Digital (linuxsecurity.com) is Spamming the Web With Microsoft's Promotional LLM Slop About UEFI 'Secure' Boot (Which is Against Real Security): This is an attack on honest journalism
Links 18/01/2025: TikTok's Endgame, "Car Freedom", and Spying in Cars 'Fines' GM (Settlement): Links for the day
Links 18/01/2025: Apple Getting Out of Hey Hi (AI) Slop (Too Much Misinformation), Chaffbots/Chatbots Try to Settle Copyright Infringement Lawsuits: Links for the day
What Fake News Sites Are Doing to GNU/Linux: The LLM slop about Linux serves two purposes
Links 18/01/2025: Microsofters Upset at Microsoft's Ridiculous Rebrands (Excuse for Massive Price Hikes), Chaffbot Company ('Open'AI) Faces More Lawsuits: Links for the day
Gemini Links 18/01/2025: Surge in Illnesses, ctags, and Gemsync: Links for the day
Slopwatch: Too Lazy to Write Real Articles, Offloading to Chatbots Instead (LLM Slop About "Linux"): The Web was already full of garbage before the LLM frenzy. Now it's even worse.
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Friday, January 17, 2025: IRC logs for Friday, January 17, 2025
RMS 'Inauguration' in Montpellier (Government Administration) on January 20th: Happy hacking
Even Technical Articles and HowTos From UNIXMen Nowadays Seem to be LLM Slop: We've just permanently removed the RSS feed of UNIXMen
The FSF's 2024 End-of-Year Fundraiser Succeeds: Over $400k to Support Software Freedom: That's worth bringing up again because the SFC is trying to 'crash' this achievement of the FSF
[Meme] Fentanylware (TikTok) Banned in the United States, Next Up European Union (EU): And the United Kingdom (UK)
President Biden is Right, "Free Press is Crumbling" and the United States Exports Its Media-Hostile Culture to Other Continents: perhaps Biden should pay closer attention to how Donald Trump-inspired Americans take their battles to other continents
Links 17/01/2025: TikTok Banned by the United Stated (SCOTUS Rejects Appeal): Links for the day
Software Freedom Conservancy Inc (SFC) Makes It Obvious It's Just a Copycat Trying to Exploit or Leech Off the FSF's (and GNU's) Work: They swim next to the rich people (who "match")
Links 17/01/2025: Fentanylware (TikTok) Herds Its (Drug) Users Into Even More Harmful "Apps": Links for the day
Guardian Digital, Inc (linuxsecurity.com) Uses Microsoft-Controlled Front Groups and LLM Slop in Order to Spread Microsoft-Directed Anti-Linux FUD: Microsoft garbage likely produced by Microsoft LLMs, spewing out Microsoft FUD
Likely Fake 'Article' About Linux Mint 22.1: BetaNews fired up its plagiarism machine (LLM)
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Thursday, January 16, 2025: IRC logs for Thursday, January 16, 2025