bmajik writes: "Sunday, A2B2, who runs VAServ and fsckvps had many of its customer Virtual Private Server (VPS) objects compromised and suffered widespread data loss. The exploit appears to have been based on the HyperVM / kloxo VPS management software that they used. On June 4, a massive list of bugs in kloxo was posted publicly, after what appears to be an attempt at responsible disclosure which met with total disinterest from the vendor, LXlabs. As the VPS management software allows commands to be run on each virtual guest, hundreds if not thousands of customer VPSs have had partial or complete data loss. Note that this was a fully-patched HyperVM installation. Anyone using HyperVM or kloxo is strongly encouraged to disable that software immediately. The crackers in question appear to be with a Chinese group called fag0.cn and have no clear motive apart from causing destruction. There is a long thread on webhostingtalk.com discussing the issue."
bmajik writes: "Microsoft is making a big deal about its new interoperability initiative. The announcement of "principles" include data portability, increased support for standard data file formats, open protocols, open API access, and a list of which MS patents apply to which protocols, and the terms under which those patents may be licensed. Additionally, the announcement includes a covenenant not to sue creators and users of F/OSS software who make use of these open protocols. What do people make of this announcement? Does it change things?"