Bonum Certa Men Certa

Linux Foundation Apparently Celebrates Sysadmin Day With a Microsoft Windows Site!

“Greed is not a financial issue. It's a heart issue.”

--Andy Stanley

Summary: The Linux Foundation shows 'love' to actual GNU/Linux (the real thing) by apparently rejecting it and badmouthing it

WHEN selling the soul of Linux is more profitable than actually promoting this GPL-licensed kernel it's not hard to understand how the Linux Foundation turned from a supposed 'charity' to a massive enterprise and near-monopoly in that space (e.g. events/conferences).

They 'own' They control or manage the Linux trademark. So why would they link to anti-Linux stories (authored by "swapnilbhartiya" yesterday)? Because they just do and most of them don't even use Linux! As someone put it yesterday:

You go to Google, you look for "Linux" news, a site called then shows up with anti-Linux material (this isn't about Linux but bad devices/users). Well done, Swapnil and Jim. The articles posted nowadays in give room for concern. Misleadingly-titled FUD.

"You go to Google, you look for "Linux" news, a site called then shows up with anti-Linux material (this isn't about Linux but bad devices/users)."We've meanwhile noticed lots of spammy blog posts (yesterday, Sysadmin Day) from the Linux Foundation in various "Linux" blogs. "Linux Security Blog" participated and "It's FOSS" did so too. Linux Journal said (in the headline) that "the Linux Foundation Is Having a Sysadmin Day Sale," adding a promotional link with what seems like tracking/referral code. But that in itself isn't the issue. It seems like the site in question uses Windows for the server, but we're not entirely sure. It's very well disguised (see IRC discussion at the bottom).

It would not be unprecedented for the Linux Foundation to use Windows; applicants apply for a job there using LinkedIn (Microsoft), as we've noted before and there's a lot of Microsoft stuff used by the Foundation's staff (see discussion below; I know this from my old interactions with Foundation staff). Over the past months I've had to resort to humour just to get the point across without offending the offenders, for example:

Yesterday I also noticed this text: "Have directly led revenue growth from $20MM to $50MM, from $80MM to $100MM..."

No, that's not the Foundation's chief Jim Zemlin (who sold out Linux... for his 'nonprofit' to make about $100,000,000 per year). That's what his wife's LinkedIn profile says. It's all about money and both strive to grow in just one respect: money! From 20 million to 100 million. What is being achieved? Nothing. A Windows-powered and Mac-powered 'Linux' Foundation (Linux only in name).

“Large corporations, of course, are blinded by greed. The laws under which they operate require it - their shareholders would revolt at anything less.”

--Aaron Swartz

schestowitzHelp needed! Am I crazy or is this site WINDOWS-powered? Help me out here, geeks... 17 01:52
-TechrightsBot-tr/ | NO TITLEJul 17 01:52
schestowitzmy initial tests say yesJul 17 01:52
schestowitzbased on more shallow testsJul 17 01:52
schestowitzI might publish "Celebrates Sysadmin Day With a Microsoft Windows Site!"Jul 17 01:52
schestowitzI mean, LF Celebrates Sysadmin Day With a Microsoft Windows Site!Jul 17 01:52
schestowitzbut I am not yet 100% sure it''s Windows at the back endJul 17 01:53
schestowitzcould be mod-speling [sic] in ApacheJul 17 01:53
schestowitz 17 01:54
-TechrightsBot-tr/#techrights- ( status 404 @ )Jul 17 01:54
schestowitzalso this..Jul 17 01:54
schestowitz 17 01:54
-TechrightsBot-tr/#techrights- ( status 404 @ )Jul 17 01:54
schestowitznote caseJul 17 01:54
schestowitzstill works with the token hereJul 17 01:54
schestowitzbloody hell!Jul 17 01:55
schestowitzLF.... you also apply for a job there using LinkedIn (Microsoft)Jul 17 01:55
XRevan86 – VarnishJul 17 01:56
XRevan86The first link is served by something else. But it won't tell by which.Jul 17 01:57
schestowitzcan you check with me?Jul 17 01:57
schestowitzthis is importantJul 17 01:57
XRevan86It's not HTTP/2 capable.Jul 17 01:58
XRevan86 17 01:59
-TechrightsBot-tr/#techrights- ( status 403 @ )Jul 17 01:59
XRevan86The 403 page looks like something done by Apache TomcatJul 17 01:59
schestowitzI did the same thingJul 17 02:00
schestowitzwhy is the site case insensitive?Jul 17 02:00
schestowitzAlso, see page sourceJul 17 02:00
schestowitzlots of "MS" bitsJul 17 02:00
schestowitzI want to be 100% sure we don't get the story, if any at all, wrongJul 17 02:00
XRevan86schestowitz: Maybe they configured case-insensitive matchingJul 17 02:01
XRevan86It is peculiar.Jul 17 02:02
schestowitzno clues in http headers?Jul 17 02:03
schestowitzAges ago, more than 10 years, I had FF extensions for thatJul 17 02:03
schestowitzbefore Mozilla killed xulJul 17 02:03
XRevan86schestowitz: Not even a Server header.Jul 17 02:03
XRevan86schestowitz: Firefox's devtools can do the job.Jul 17 02:04
XRevan86but I test with curlJul 17 02:04
schestowitzany other tricks we can employ?Jul 17 02:04
schestowitzThis is a big deal if it turns out to be windowsJul 17 02:04
XRevan86If I had experience with Windows servers, maybe I'd know what to look for…Jul 17 02:04
XRevan86or with Java servers for that matter…Jul 17 02:05
XRevan86I know is using Tomcat, and it is case-sensitive.Jul 17 02:05
-TechrightsBot-tr/#techrights-LINUX.ORG.RU — Русская информация об ОС LinuxJul 17 02:05
XRevan86 – GalleryJul 17 02:05
-TechrightsBot-tr/ | ГалереяJul 17 02:05
XRevan86 – 404Jul 17 02:05
-TechrightsBot-tr/#techrights- ( status 404 @ )Jul 17 02:05
XRevan86schestowitz: But maybe it is really mod_spelingJul 17 02:08
XRevan86and they then just turned off HTTP headers that give away configurationJul 17 02:08
XRevan86At least we know it's Java and not ASP.NETJul 17 02:09
schestowitzwhich domain?Jul 17 02:11 17 02:11
cubexyzcheck with netcraft?Jul 17 02:12
-viera/#techrights-Tux Machines: Proxmox VE 6.0 released! []Jul 17 02:12
XRevan86cubexyz: Doesn't tell anything of interest.Jul 17 02:13
schestowitzI thought about itJul 17 02:13
schestowitzbut did not do itJul 17 02:13
schestowitzas I thought it might not even be on their radar yetJul 17 02:13
cubexyzmerely says "unknown"Jul 17 02:13
schestowitzseems like a new site or some internal "office" crapJul 17 02:13
schestowitzhow else can we test?Jul 17 02:14
schestowitzI don't want to get the story wrong, that's allJul 17 02:14
XRevan86> OS: F5 BIG-IPJul 17 02:14
XRevan86It did say that thoughJul 17 02:14
schestowitzas that can be used to discredit everything we ever said re LFJul 17 02:14
XRevan86How can it tell?Jul 17 02:14
cubexyzthere's wappalyzerJul 17 02:14
schestowitzcan you have a go at it?Jul 17 02:14
cubexyzsureJul 17 02:14
schestowitzMaybe they have the OS quite wellJul 17 02:14
schestowitzmind you, they use LOTS of MSFT internalluyJul 17 02:15
schestowitzI know this from their PR repJul 17 02:15
schestowitzbut demonstrating it, like link with proof, would help...Jul 17 02:15
cubexyzmysql, php, wordpress, OWL, bootstrap, jqueryJul 17 02:17
XRevan86cubexyz: I doubt thatJul 17 02:17
XRevan86there's no wordpress thereJul 17 02:17
-viera/#techrights-Tux Machines: Univention Corporate Server 4.4-1/Point Release UCS 4.4-1: performance improvements, app recommendations and UDM REST API Beta []Jul 17 02:18
schestowitzcubexyz: does not look like wordpressJul 17 02:19
schestowitzeven if you look at page sourceJul 17 02:19
schestowitzit looks like a really poorly-made CMS of some kindJul 17 02:19
schestowitzbut I want to know the USJul 17 02:20
XRevan86WordPress is PHP.Jul 17 02:20
schestowitzOSJul 17 02:20
cubexyzno idea, just saying what wappalyzer saysJul 17 02:20
XRevan86This is Java.Jul 17 02:20
schestowitzI imagine the CMS is proprietary anywayJul 17 02:20
schestowitz 17 02:21
-TechrightsBot-tr/#techrights-@schestowitz: We are the LINUX FOUNDATION We OWN Linux dot com! We link to anti -Linux stories Because we just do (and we don't e… 17 02:21
-TechrightsBot-tr/#techrights-@schestowitz: We are the LINUX FOUNDATION We OWN Linux dot com! We link to anti -Linux stories Because we just do (and we don't e… 17 02:21
schestowitz 17 02:21
-TechrightsBot-tr/#techrights-@schestowitz: "swapnilbhartiya" at #zemlinpac continues using the site LINUX dot com to promote #microsoft crap. [facepalm] 17 02:21
-TechrightsBot-tr/#techrights--> Aqua Security Launches Microsoft Azure Marketplace Private Offers | | The source for Linux informationJul 17 02:21
XRevan86I don't think there's a way to tellJul 17 02:24 runs nginx on linuxJul 17 02:25
cubexyzaccording to netcraftJul 17 02:25
XRevan86Does plain Tomcat support "Content-Encoding: gzip"?Jul 17 02:25
schestowitzThat would make sense for the main siteJul 17 02:25
schestowitzbut for sales etc.Jul 17 02:25
schestowitznot sureJul 17 02:25
XRevan86And they're using AWSJul 17 02:27
schestowitzthat's not unusualJul 17 02:27
schestowitzwould be worse if they used MSAzureJul 17 02:28
XRevan86That'd make my dayJul 17 02:28
XRevan86Port scanning (nmap) revealed only that whoever configured configured the firewall restrictivelyJul 17 02:29
XRevan86At least ICMP is openJul 17 02:30
XRevan8680, 113, 443, nothing elseJul 17 02:30
-viera/#techrights-Tux Machines: Network Security Toolkit 30-11210 []Jul 17 02:31
XRevan86The main site has IPv6, doesn't.Jul 17 02:31
schestowitzI guess we still don't know what it runsJul 17 02:33
schestowitzand the checkout (identity) partJul 17 02:33
schestowitzthey got some company from the outside to do itJul 17 02:33
schestowitzand maybe it's not LinuxJul 17 02:33
XRevan86It's most likely Linux just because the odds are generally in that direction.Jul 17 02:34
XRevan86Who'd deploy a Java website on Windows? Some kind of insane Microsoft fan I guess. But then, why not ASP.NET?Jul 17 02:34
schestowitzdon't bet on kt!Jul 17 02:34
schestowitzit!Jul 17 02:34
schestowitzThis is the LFJul 17 02:34
XRevan86oh noJul 17 02:37
XRevan86I've checked nmap's capabilitiesJul 17 02:37
XRevan86-O: Enable OS detectionJul 17 02:37
XRevan86-sV: Probe open ports to determine service/version infoJul 17 02:37
XRevan86> 443/tcp open   ssl/upnp Microsoft IIS httpdJul 17 02:37
XRevan86Guess flipping whatJul 17 02:37
XRevan86> Running (JUST GUESSING): F5 Networks embedded (93%), F5 Networks TMOS 11.6.X (87%), OpenBSD 4.X (87%)Jul 17 02:38
XRevan86> OS CPE: cpe:/o:f5:tmos:11.6 cpe:/o:openbsd:openbsd:4.0Jul 17 02:38
XRevan86> Aggressive OS guesses: F5 BIG-IP Edge Gateway (93%), F5 BIG-IP Local Traffic Manager load balancer (TMOS 11.6) (87%), OpenBSD 4.0 (87%Jul 17 02:38
XRevan86Just like netcraft, it thinks it's most likely something from F5Jul 17 02:38
XRevan86but HTTP server probing gave a better ideaJul 17 02:39
XRevan86schestowitz: Good thing I didn't bet.Jul 17 02:39
XRevan86You seem speechless %)Jul 17 02:40
cubexyzisn't port 443 just HTTP over SSL... not necessarily M$ Jul 17 02:41
XRevan86cubexyz: That's "-sV: Probe open ports to determine service/version info"Jul 17 02:41
XRevan86that's its guessJul 17 02:42
cubexyzhmmm, yeah Jul 17 02:43
cubexyzdoesn't look goodJul 17 02:44
schestowitzmaybe I will publish IRC noted to accompany thisJul 17 02:44
schestowitz*IRC notesJul 17 02:44
schestowitzas we are not sureJul 17 02:44
schestowitzGet a load of this todayJul 17 02:44
schestowitz 17 02:44
-TechrightsBot-tr/ | Microsoft and Red Hat, inspiredJul 17 02:44
XRevan86schestowitz: The evidence is:Jul 17 02:45
XRevan861. case-insensitivity for no apparent reasonJul 17 02:45
XRevan862. nmap -sV guesses HTTP is handled by "Microsoft IIS httpd"Jul 17 02:45
schestowitzI think it is probableJul 17 02:46
schestowitzas soon as I saw the site and then the structure (marketing cruft appended to URL)Jul 17 02:47
schestowitzThen I checked page sourceJul 17 02:47
schestowitzBeen there, seen that... red flagsJul 17 02:47
schestowitzAlso "cloud" Jul 17 02:47
schestowitzI know they used MS for office thingsJul 17 02:47
schestowitzlike in-office commsJul 17 02:47
schestowitzTheir PR reps used that to communicate with me ages agoJul 17 02:47
schestowitzDan Brown and others...Jul 17 02:48
XRevan86 well, at least this didn't work :DJul 17 02:49
-TechrightsBot-tr/#techrights- ( status 400 @ )Jul 17 02:49
schestowitzjoke or some element of truth to it?Jul 17 02:50
cubexyzdidn't M$ give the win7 code to russia recently?Jul 17 02:50
schestowitzI get the jokeJul 17 02:50
cubexyzor not recently... it may have been a while agoJul 17 02:50
XRevan86 some element of truth to itJul 17 02:51
-TechrightsBot-tr/#techrights-GitHub - irsdl/IIS-ShortName-Scanner: latest version of scanners for IIS short filename (8.3) disclosure vulnerabilityJul 17 02:51
XRevan86Tried using, no effect.Jul 17 02:56
-TechrightsBot-tr/ | http-iis-short-name-brute NSE ScriptJul 17 02:56
XRevan86StackOverflow isn't either.Jul 17 02:57
XRevan86nmap -sV detects Varnish on StackOverflowJul 17 02:59
XRevan86> via: 1.1 varnishJul 17 02:59
XRevan86I thought they're on Windows ServerJul 17 02:59
schestowitzno, not likelyJul 17 02:59
schestowitzthe (co)founder has some MSFT connectionsJul 17 02:59
schestowitzbooks etc.Jul 17 02:59
schestowitzCodingHorror guyJul 17 03:00
schestowitzthe site, however, isn't so... and he clarified to me he never worked for Microsoft directlyJul 17 03:00
XRevan86Wikipedia states that Stack Overflow is written in C#Jul 17 03:00
XRevan86Considering that .NET Core is a very new thing, it is most likely on Windows.Jul 17 03:01
XRevan86 17 03:01
-TechrightsBot-tr/ | Stack Overflow - WikipediaJul 17 03:01
XRevan86I guess they have a separate server as a reverse proxy for security and reliability.Jul 17 03:01
XRevan86it is also case-insensitiveJul 17 03:03
XRevan86no Varnish will change that :)Jul 17 03:03
schestowitzthat's quite commonJul 17 03:03
XRevan86So yea, nmap detected it right.Jul 17 03:03
schestowitzonly hours ago at work I deat with Jul 17 03:03
XRevan86it figured it's Varnish, and it isJul 17 03:03
schestowitzapache behind nginx, on Ubuntu/DebianJul 17 03:04
schestowitzno varnishJul 17 03:04
schestowitznginx stuff as reverse proxy Jul 17 03:04
XRevan86schestowitz: Apache httpd is redundant in this case in most cases.Jul 17 03:04
schestowitzalso helps hide fro probers like nmapJul 17 03:04
XRevan86schestowitz: The Stack Overflow is different in that they have to get a separate server to do the job.Jul 17 03:05
XRevan86Because Varnish reportedly doesn't work on Windows.Jul 17 03:05
XRevan86* The Stack Overflow caseJul 17 03:05
XRevan86schestowitz: nginx in front of Apache httpd introduces almost no overhead.Jul 17 03:06
schestowitzyes, or a VMJul 17 03:06
schestowitzit does not have to run on the host/backendJul 17 03:06
XRevan86So… why wouldn't you, rightJul 17 03:06
schestowitzyou could even run it as a VM under WindowsJul 17 03:07
XRevan86schestowitz: True, but I doubt that's very efficient either.Jul 17 03:07
XRevan86It's a high-load website.Jul 17 03:08
-viera/#techrights-Tux Machines: Seven Concerns Open Source Should Worry About - Part 1 []Jul 17 03:09
XRevan863. they don't bother this much on the main website to hide set-up informationJul 17 03:12
XRevan86Overall it looks like it was an outsource job, and no one cared enough to do it differently. But cared enough to cover the tracks a little bit.Jul 17 03:14
XRevan86If they really wanted to hide the fact that this is Windows, they'd reverse proxy it.Jul 17 03:15
XRevan86But I guess since it's likely not in their network (I didn't check), the overhead from proxying is unpleasant.Jul 17 03:16
-viera/#techrights-Tux Machines: Top 15 Best Forum Software For Linux in 2019 []Jul 17 03:18
schestowitzmight be worth checking host locationJul 17 03:24
schestowitzLF is in Portland IIRCJul 17 03:24
schestowitzif not SFJul 17 03:24
schestowitzI think it's ambiguous and some are 'home workers'Jul 17 03:24
schestowitzI'm pretty sure Jim Zemlin isSF-based, or somewhere near in CAJul 17 03:24


Recent Techrights' Posts

WIPO UDRP D2024-0770 Debian vendetta response
Reprinted with permission from Daniel Pocock
Links 12/04/2024: Reporters Without Borders Rep Kicked Out of Hong Kong
Links for the day
Gemini Links 12/04/2024: Funny Thing, Manual Scripts, and More
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, April 11, 2024
IRC logs for Thursday, April 11, 2024
[Video] Trainline Finally Issues a Refund, But It Took 9 Days and Showed How 'Modern' Systems Fail Travelers
They treat people like a bunch of animals or cattle, not like valuable customers
DebConf22 Kosovo segregation of women exposed
Reprinted with permission from
Links 11/04/2024: Web Diversity and More Crackdowns in Russia
Links for the day
Gemini Links 11/04/2024: Activity and Motivation in Geminispace, gwit Implementations
Links for the day
First They Came for Iranian Developers...
Red Hat/IBM and 'cancel culture'
[Video] A Debian Project Leader Needs to Also be a Technical Project Leader
We do not vouch for one (or none) horse in this race
Aggressive Efforts (and Threats) for Those Who Speak About What Happened in the Balkans
Acting in this way in an effort to censor people typically results in a second scandal on top of the original scandal
How Kosovo won DebConf21
Reprinted with permission from Daniel Pocock
[Video] How the Media Blamed SSH and Linux (for Nearly a Whole Fortnight!) Instead of Microsoft's GitHub and Systemd
Microsoft-connected sites have said a whole bunch of lies
Anzacathon: a hackathon for Anzac day at home
Reprinted with permission from Daniel Pocock
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, April 10, 2024
IRC logs for Wednesday, April 10, 2024
On Julian Assange, Now 5 Years in Belmarsh Prison: The Good News, the Bad News, and Ugly Noise
Some time this spring (or summer) we'll revisit the Appelbaum case
Links 10/04/2024: Starvation as Weapon in Sudan, Sonos v. ITC Explained
Links for the day
Gemini Links 10/04/2024: JSON explore and Downtime
Links for the day
Links 09/04/2024: Netflix Layoffs and Cox Will Try to Bring Copyright Liability of ISPs to SCOTUS
Links for the day
Links 10/04/2024: Biden Reportedly Considers Dropping the Charges Against Julian Assange
Links for the day
Wikileaks, Dickileaks & Ubuntu Underage girl
Reprinted with permission from the Free Software Fellowship
Gemini Links 10/04/2024: Tanana River, Picotron, and Citation on Gemini
Links for the day
Elio Qoshi & Redon Skikuli missing from OSCAL agenda
Reprinted with permission from the Free Software Fellowship
Links 10/04/2024: TikTok Trouble, East Asian Companies Receive Subsidies From American Taxpayers
Links for the day
This is What Techrights Would Look Like If We Participated in 'CSS Naked Day'
All cascading style sheets (CSS) should be optional
Microsoft Hiring People Who Attempt to Murder Colleagues
magnet for sociopaths
Francophone GNU/Linux
Moving in a positive direction
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, April 09, 2024
IRC logs for Tuesday, April 09, 2024
Over-Enforcement of a Code of Conduct (CoC) Would Ruin Events, Maybe Not for Corporate Posters, Sponsors, Posers, and Speakers
a shrine for corporate supremacy
The "F" in Free Software Doesn't Stand for "Censorship"; Attempts to Censor Mere Links to Articles About DebConf22 in Kosovo
It's about an article we'll reproduce here later this week
Daniele Scasciafratte & Mozilla, OSCAL, Albania dating
Reprinted with permission from the Free Software Fellowship
Gemini Links 10/04/2024: Notifications, Motivation, Profectus Graphical Browser for the Smallnet
Links for the day
Abuse & Sex Crimes at FOSDEM and Open Source tech events
Reprinted with permission from the Free Software Fellowship