this post was submitted on 28 Apr 2024
37 points (91.1% liked)

Open Source

31886 readers
427 users here now

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

founded 5 years ago
MODERATORS
top 6 comments
sorted by: hot top controversial new old
[–] trainden@lemmy.blahaj.zone 20 points 8 months ago
[–] halm@leminal.space 8 points 8 months ago

Friends? More like feudal lords picking and choosing which projects they can benefit from supporting.

[–] autotldr@lemmings.world 5 points 8 months ago

This is the best summary I could come up with:


While I was at Open Source Summit North America in Seattle, I was reminded of this when, in a keynote, Sirish Chandrasekaran, GM of Amazon Relational Database Service (Amazon RDS), said: "For the PostgreSQL core server, AWS employs one core team member, six committers, and seven major contributors."

Marc Linster, EDB's Chief Technology Officer, analyzed who did what with PostgreSQL 16 in great detail.

As someone who's worked in open source for many years and from a holistic standpoint, having someone to make sure that things are being reviewed for correctness is really, really compelling.

The performance improvements just by adopting Rust for specific workloads that are in that sweet spot are incredibly compelling."

In particular, Nalley mentioned that the Rustls TLS library uses AWS Libcrypto for Rust (aws-lc-rs) for cryptography by default, with the option to enable Federal Information Processing Standards (FIPS) support.

Thinking of security and Rust, Nalley added that he was a little frustrated at the first Rust version of that master Linux administrator command sudo "because it had a huge dependency tree initially, and I think that number was north of 50, (actually, it was a mind-boggling 135 dependencies), which means the attack surface is 50 times larger.


The original article contains 835 words, the summary contains 202 words. Saved 76%. I'm a bot and I'm open source!

[–] danielquinn@lemmy.ca 5 points 8 months ago
[–] TCB13@lemmy.world 5 points 8 months ago

Yes, they're friends if the open-source projects are designed / made in a way that makes the "hyper-cloud" profit more. What BS of an article.

Those "hyper-cloud" providers (and SaaS providers in general) keep increasing profits by reconfiguring the entire development industry in a way that favors the sell of their services and takes away all the required knowledge developers used to have when it came to developing and deploying solutions. Companies such as Microsoft and GitHub are all about re-creating and reconfiguring the way people make software so everyone will be hostage of their platforms. We now have a generation of developers that doesn’t understand the basic of their tech stack, about networking, about DNS, about how to deploy a simple thing into a server that doesn’t use some orchestration with service x or isn’t a 3rd party cloud xyz deploy-from-github service.

Consulting companies who make software for others also benefit from this “reconfiguration” as they are able to hire more junior or less competent developers and transfer the complexities to those cloud services. The “experts” who work in consulting companies are part of this as they usually don’t even know how to do things without the property solutions. Let me give you an example, once I had to work with E&Y, one of those big consulting companies, and I realized some awkward things while having conversations with both low level employees and partners / middle management, they weren’t aware that there are alternatives most of the time. A manager of a digital transformation and cloud solutions team that started his career E&Y, wasn’t aware that there was open-source alternatives to Google Workplace and Microsoft 365 for e-mail. I probed a TON around that and the guy, a software engineer with an university degree, didn’t even know that was Postfix was and the history of email.

All those new technologies keep pushing this “develop and deploy” quickly and commoditizing development - it’s a negative feedback loop that never ends. Yes I say commoditizing development because if you look at it those techs only make it easier for the entry level developer and companies instead of hiring developers for their knowledge and ability to develop they’re just hiring “cheap monkeys” that are able to configure those technologies and cloud platforms to deliver something. At the end of the they the business of those cloud companies is transforming developer knowledge into products/services that companies can buy with a click.

[–] foremanguy92_@lemmy.ml 1 points 8 months ago