TY - JOUR T1 - Community Building: NetBSD in Hindsight JF - Open Source Business Resource Y1 - 2008 A1 - David Maxwell A1 - Lubomir Sedlacik AB - The NetBSD Project is one of the oldest modern open source software projects. It provides an operating system that runs on over 50 hardware architectures (also called ports), including the IBM PC, Motorola PowerPC, and Sun UltraSPARC machines. Founded in May of 1993, the project has supported the operating system's active development and managed contributions from thousands of individuals. Prior to the New York City BSD Users Group Conference held in October, 2008, NetBSD developers from across the globe held a face to face meeting for planning and problem solving. Four developers from Sweden, Canada, the US, and Slovakia took a few minutes to think about how the NetBSD community has evolved over the past fifteen years. This article summarizes those perspectives and provides insight into how an open source community maintains development momentum while managing contributions from a large number of volunteers with varying skill levels from across the globe. PB - Talent First Network CY - Ottawa UR - http://timreview.ca/article/195 IS - October 2008 U1 - Coverity David Maxwell is Coverity's Open Source Strategist. An open source security specialist, he has over 20 years of experience as an open source user and developer, and is particularly active in the NetBSD community. He currently sits on the advisory board for the BSD Certification Group and the program committee for the annual BSDCan conference. He was NetBSD Security Officer from 2001-2005 and a contributor to the O'Reilly title "BSD Hacks." Maxwell has previously worked as a lead kernel developer for Nokia, and architected the Internet Service offering for Fundy Cable in New Brunswick. U2 - NetBSD Project Lubomir Sedlacik is a software engineer at Sun Microsystems by day and pkgsrc hacker by night. He helped to establish the pkgsrc security and release engineering teams and spent countless hours working on Solaris support in pkgsrc. He is also one of the organizers of the annual pkgsrc conference, pkgsrcCon. ER - TY - JOUR T1 - Coverity Report JF - Open Source Business Resource Y1 - 2008 A1 - David Maxwell AB - On May 20, 2008, static analysis tool vendor Coverity released a report entitled "Open Source Report 2008". The report includes information gathered over the first two years of the Coverity Scan project which was developed as part of a contract from the US Department of Homeland Security. Coverity provides its analysis tools to open source projects in order to identify quality and security flaws in the codebases. Once identified, the developers of the open source projects are given the information in order to facilitate hardening of the software. The report includes information about the progress made by various projects using the Scan service. Additionally, the Scan databases constitute one of the largest and most diverse collections of source code to be built and analyzed while tracking changes to those code bases over a two-year period. This data provides a substantial set of samples for considering some questions about the nature of software. The report investigates relationships between codebase size, defect counts, defect density, function lengths, and code complexity metrics. This article highlights some of the results from the report. PB - Talent First Network CY - Ottawa UR - http://timreview.ca/article/156 IS - June 2008 U1 - Coverity David Maxwell is Coverity's Open Source Strategist, and is tasked with the continuation and expansion of Coverity's DHS-sponsored open source scans. An open source security specialist, Maxwell has over 20 years of experience as an open source user and developer, and he is particularly active in the NetBSD community. He currently sits on the advisory board for the BSD Certification Group and the program committee for the annual BSDCan conference. He was also a NetBSD Security Officer from 2001-2005 and a contributor to the best-selling O'Reilly title "BSD Hacks." Maxwell has previously worked as a lead kernel developer for Nokia, and architected the Internet Service offering for Fundy Cable in New Brunswick. ER - TY - JOUR T1 - Ensuring the Quality of Open Source Software JF - Open Source Business Resource Y1 - 2007 A1 - David Maxwell AB - Open Source Software (OSS) has been embraced by individuals for decades, but only recently have organizations around the globe looked upon open source as an attractive and practical alternative to proprietary software. In addition to its appealing price tag, usually free, OSS can be inspected, modified, and freely redistributed according to the terms of its license. In spite of this, open source developers still find their code quality and security challenged by a question that has followed them from the beginning: "If it's free, how good can it be?" PB - Talent First Network CY - Ottawa UR - http://timreview.ca/article/58 IS - November 2007 U1 - Coverity David Maxwell is Coverity's Open Source Strategist, and is tasked with the continuation and expansion of Coverity's DHS-sponsored open source scans. An open source security specialist, Maxwell has over 20 years of experience as an open source user and developer, and he is particularly active in the NetBSD community. He currently sits on the advisory board for the BSD Certification Group and the program committee for the annual BSDCan conference. He was also a NetBSD Security Officer from 2001-2005 and a contributor to the best-selling O'Reilly title "BSD Hacks." Maxwell has previously worked as a lead kernel developer for Nokia, and architected the Internet Service offering for Fundy Cable in New Brunswick. ER -