Forum OpenACS Q&A: Which Linux version to use?

It seems that most discussions have been based around Red Hat, so
would I be right in saying that would be the prefered environment for
a production system?  If so, 6.2 or 7.1?  If not, which one?

If you run a non-RH distribution, there may be a couple commands in differnt locations (Slackware has free and something else.. which are in /usr/bin instead of /bin.. but other than that, you can go with whatever works for you

However, I installed Mandrake 8.0 yesterday, and much to my surprise it configured all of my hardware properly without so much as me touching a single config file. Everything just worked.

It even figured out that my video card was unsupported, and set up a frame-buffer X display to get me started. [something which RH 7.1 on this same machine refused to do, leaving me with a broken X out of the box. A move which would be death for newbies.]

Thus, i'd probably recommend Mandrake 8 for anyone who is new to linux. You get the benefits of RH, but it's a bit more gentle and the setup just flat out works better.

If you are running Classic ACS, stick with RH 6.2. Getting oracle to run on anything else can be a baffling ordeal.

https://openacs.org/wp/display/77/ is a WimpyPoint presentation where I am trying to document everything as I go along. Comments and suggestions are always welcome!

For the love of ghod, try Debian. You can import .rpm files with the "alien" command.

Especially if this is for a production system. Automatic upgrades to security-hardened packages (such as happens on Debian's 'stable' branch) are key to minimizing security exposure. Just ask the Apache, PHP, and Sourceforge people who were owned because of an unupgraded OpenSSL library.

Debian won't make your toast for you. You still have to do "apt-get upgrade" routinely on your machines. But geez, at least it's possible to stay current without too much pain.

If SuSE can do this too, more power to them. But until Red Hat figures it out, stay the hell away from them.

It's great to hear everyone's point of view with regard to Linux distributions. My own experience has only been with various Red Hat releases but I may try experimenting with a couple of others now.

As far as our project goes, we have decided to almost certainly use a hosting company rather than running our server, so if and when we get funding, we will either be looking at http://openacs.furfly.com or http://www.hub.org. They are the only two companies I am aware of that offer OpenACS hosting. I believe Furfly use Red Hat and Hub use FreeBSD.

If anyone knows of any other hosting companies that offer OpenACS, I'd be interested in hearing about them.

There's a heated discussion on the suse-oracle mailing list. People there are biased (of course ;). But here's what an Oracle employee posted to the list:

FWIW, bet it's a personal preference. Until a while ago I thought that Redhat was better, but after doing a few SuSE installs with 8.1.6, 8.1.7 and iAS, I must say, SuSE is a super optimized platform, my choice now for installing and using Oracle. Oh, that's the 7.0 version, the 7.1 and 7.2 (which is being mentioned here) I haven't had the chane to use yet.

Here's what Michael Hasenstein posted. He works for Suse and is the techie for the Oracle stuff.

Because of recent developments at Oracle I have a very easy time convincing people to use SuSE. I can drop any attempts based on technical merrits, which is kind of tiring after a while, and instead say:

You guys don't have an alternative!

SuSE Linux is the porting platform for 9i. RedHat pulled out at Oracle and don't have anyone doing any certifications beginning of this year. So far RedHat 6.0 got all certs automatically as 8i porting platform, but a) this is very, very old anb b) it's lost now that we have that advantage and c) not even redhat sold that version any more so thay never gained anything from it except for the marketing value.

Larry Ellison will showcase 9i this month in the US and in Europe, and he'll have just one operating system (besides the machine and 9i) with him. Guess which one...

So, I've stopped trying to convince people to try SuSE. I'm quite happy when they use RedHat. As soon as they want to go production and call Oracle they'll find out. For 8i that's not yet much of a problem because except for Apps 11i, where we're the only certified ones, and iAS 9i, where it's going to be us and Turbo (so far only RH 6.0 is certified as porting platform), RedHat is still certified. And even if they should come back to Oracle, we've got a big edge now. We've been at Oracle with onsite engineering help a) as the first ones, and b) as the ONLY ones with no interruptions. Actually, apart from Turbo there's never been anyone else with a continuous presence there from the Linux guys anyway.

I don't think the above falls under any NDA and should be a secret. I believe it's not SuSE's fault the others don't show that much of an Oracle commitment, and more important, users have a RIGHT to know in order to make their choice.

Well, take it with a grain of salt.

Question is, how secure is a site running on  RH 6.2 **with** all the redhat.com patches?  My impression is RH 6.2 is still the distro the  OpenACS community "generally recommends"; esp. for new users.

BTW, when might the community want to change to a newer/better/more recent/secure distro?  I'm no security expert.  But I have heard the firewall shipping with RH 7.1 is better than that bundled with RH 6.2.

With security retaining, if not increasing its importance, the general level of out of the box security seems an important criteria for what the community targets/test to/"certifies" OpenACS on.  Your thoughts?

FWIW,

Louis