Open Source Audits in Merger and Acquisition Transactions: Get the Free Ebook
Drudge Bot last edited by
This new ebook covers the open source audit process and highlights important considerations for code compliance, preparation, and documentation.
The influence of open source software on every aspect of business has been on the rise for years, and it should come as no surprise that its influence during merger and acquisition (M&A) transactions has grown as well. In particular, open source audits are part of required due diligence in M&A or initial public offering (IPO) processes. Not only do such audits highlight potential instances of copyright infringement, but they give buyers and investors a landscape view of important open source components in their target:undefined:’:undefined:s technology stack.
These issues and more are covered in-depth in a new ebook,Open Source Audits in Merger and Acquisition Transactions, from Ibrahim Haddad and The Linux Foundation, which provides an overview of the open source audit process and highlights important considerations for code compliance, preparation, and documentation.
Today:undefined:’:undefined:s software products and technology stacks incorporate many open source components, and the implementation of these components can mean complex licensing and inter-dependency issues. Part of the goal with a proper source code audit is to avoid unpleasant surprises post-acquisition. Source code scanning tools have the ability to discover and match snippets of open source code that have been incorporated within software tools and platforms. In addition, these tools can identify modifications to open source code that developers may have deployed.
:undefined:“:undefined:Every M&A transaction is different, but the need to verify the impact of acquiring open source obligations is a constant,:undefined:”:undefined: writes Haddad. :undefined:“:undefined:Open source audits are carried out to understand the depth of use and the reliance on open source software. Additionally, they offer great insights about any compliance issues and even about the target:undefined:’:undefined:s engineering practices.:undefined:”:undefined:
Haddad also notes that open source audits can expose obligations. :undefined:“:undefined:Open source licenses usually impose certain obligations that must be fulfilled when code is distributed,:undefined:”:undefined: he notes. :undefined:“:undefined:One example is the GNU General Public License (GNU GPL), which requires derivatives or combinations to be made available under the same license as well. Other licenses require certain notices in documentation or have restrictions for how the product is promoted.:undefined:”:undefined:
According to Haddad, there are three common types of open source audits that are performed in M&A situations:
- Traditional audit, in which the auditor gets complete access to all the code and executes the audit either remotely or on site.
- Blind audit, in which the auditor does the work remotely and without ever seeing the source code.
- :undefined:“:undefined:Do It Yourself:undefined:”:undefined: audit, where the target company or the acquirer performs most of the actual audit work themselves using the tools with the option for a random verification of results from the auditing company.
Is a merger and acquisition scenario the only time an organization should consider an open source audit? No, regular audits can provide much value, and companies such asBlack Duck Software have specialized in doing them in many types of business scenarios. :undefined:“:undefined:While it:undefined:’:undefined:s undeniable that an open source audit is essential before any successful M&A or IPO, it:undefined:’:undefined:s no less important as part of a software team:undefined:’:undefined:s regular operations,:undefined:”:undefined: notes ablog post from White Source Software. :undefined:“:undefined:Put it this way, if you have license compliance or security issues affecting your open source components, isn:undefined:’:undefined:t it better to identify and deal with those issues sooner rather than later?:undefined:”:undefined:
Many important issues arise during audits, including potential security threats and lapses in version control. Everything you need to know, including recommended practices and mistakes to avoid, can be found in this ebook.
The postOpen Source Audits in Merger and Acquisition Transactions: Get the Free Ebook appeared first onThe Linux Foundation.
Make ISO from DVD
In this case I had an OS install disk which was required to be on a virtual node with no optical drive, so I needed to transfer an image to the server to create a VM
Find out which device the DVD is:lsblk
Output:NAME MAJ:MIN RM SIZE RO TYPE MOUNTPOINT sda 8:0 0 465.8G 0 disk ├─sda1 8:1 0 1G 0 part /boot └─sda2 8:2 0 464.8G 0 part ├─centos-root 253:0 0 50G 0 lvm / ├─centos-swap 253:1 0 11.8G 0 lvm [SWAP] └─centos-home 253:2 0 403G 0 lvm /home sdb 8:16 1 14.5G 0 disk /mnt sr0 11:0 1 4.1G 0 rom /run/media/rick/CCSA_X64FRE_EN-US_DV5
Therefore /dev/sr0 is the location , or disk to be made into an ISO
I prefer simplicity, and sometimes deal with the fallout after the fact, however Ive repeated this countless times with success.dd if=/dev/sr0 of=win10.iso
Where if=Input file and of=output file
I chill out and do something else while the image is being copied/created, and the final output:8555456+0 records in 8555456+0 records out 4380393472 bytes (4.4 GB) copied, 331.937 s, 13.2 MB/s
Recreate postrgresql database template encode to ASCIIUPDATE pg_database SET datistemplate = FALSE WHERE datname = 'template1';
Now we can drop it:DROP DATABASE template1;
Create database from template0, with a new default encoding:CREATE DATABASE template1 WITH TEMPLATE = template0 ENCODING = 'UNICODE'; UPDATE pg_database SET datistemplate = TRUE WHERE datname = 'template1'; \c template1 VACUUM FREEZE;