Author Archives: Tim O'Brien

Selecting OSS Components: Three Questions Answered by Nexus Pro


May 7, 2012 By
Tim O'Brien

There are over 400,000 components in the Central repository including everything from servlet containers like Apache Tomcat to critical application infrastructure like Spring and Hibernate.    When you are designing an application or trying to update an application’s dependencies, how do you choose which component to use? Here’s an example of a decision you may […]

Continue reading...

Categories: Uncategorized

Now Available: Nexus OSS 2.0.4


April 30, 2012 By
Tim O'Brien

Sonatype is pleased to announce the release of Nexus OSS 2.0.4. Nexus 2.0.4 OSS is available and ready for download immediately. If you are new to Nexus, or if you are an existing user, go to http://www.sonatype.org/nexus/go, click on the download button and get started. Nexus OSS 2.0.4: A Focus on Usability One of the […]

Continue reading...

Categories: Uncategorized

Can Nexus Scale?


April 20, 2012 By
Tim O'Brien

We’re often asked by customers to prove that Nexus can scale to meet the demands of thousands, and sometimes tens of thousands, of developers. Fortunately, we don’t have to stand up an expensive set of machines for a proof-of-concept as we have the world’s largest collection of active open source projects hosted on a single […]

Continue reading...

Categories: Uncategorized

An Emerging Role in IT Governance: The ALM Architect


By
Tim O'Brien

Whenever I’m at a client I tend to ask, “Who decides what open source packages are acceptable?” Nine times out of 10, people will say something about an “Architecture” group. Maybe there’s a single architecture group that sets standards across the entire department, or, more often, there are several groups that offer a set of […]

Continue reading...

Categories: Uncategorized

Is Analyzing Open Source Projects by Contributors a Valid Metric?


April 19, 2012 By
Tim O'Brien

ReadWriteWeb’s Joe Brockmeier has an interesting piece analyzing OpenStack Essex, while this isn’t an exact overlap with the kind of analysis we’re working on for Insight and Nexus, it’s a view into the social and open source dynamics of a project. Brockmeier’s article is a summary of some analysis that OpenStack contributor Mark McLoughlin assembled […]

Continue reading...

Categories: Uncategorized

Oracle Issues Critical Security Bug Fixes for Databases, Glassfish, and more.


April 18, 2012 By
Tim O'Brien

If you are watching our security feed, you may have noticed this IDG News Service story reporting on a critical security patch from Oracle. Since many of our customers are directly affected by this vulnerability, we thought this announcement was important enough to feature. From the story: “The upcoming patch batch includes six fixes for […]

Continue reading...

Categories: Uncategorized

Is your phone possessed? Or is it Android Malware?


By
Tim O'Brien

Hackers aren’t content enough to infect your laptop, they want your phone. There’s an article over on SecurityNewsDaily that talks about some new Android malware that can take over your phone. Here’s the fun quote: “The new Android malware disguises itself in fully functional copies of apps, including ―Angry Birds Space,∥ and hides its malicious […]

Continue reading...

Categories: Uncategorized

Know the enemy: Havij Automated SQL Injection


By
Tim O'Brien

SQL injection really bugs me. It is almost always the application developer’s fault. Once you notice that a site’s registration form breaks on apostrophes (maybe your last name is Irish) it’s often a sign that you’ll be able to throw in some SQL with that last name. Penetration testing experts use a tool like Havij: […]

Continue reading...

Categories: Uncategorized