Welcome!

Linux Containers Authors: Elizabeth White, Stackify Blog, Automic Blog, SmartBear Blog, Liz McMillan

Related Topics: Linux Containers

Linux Containers: Article

The Power of Mozilla Firefox and OpenOffice on Windows

The beginning of a global enabling process

When clients ask me, "Sam, honestly, how do I get started with open source?" it's usually clear that the first step is to install Mozilla Firefox on their Windows machines. The next step is to install the OpenOffice.org suite and help them plan a migration strategy away from MS Office.

Firefox and OpenOffice are tactical assets in the battle for the wider use of open software standards. These two important commodity applications - installed on Windows - are the start of a beautiful new relationship for organizations with their computer systems based on lower total cost of ownership (TCO) and higher productivity. As users exert control by demanding better desktop security and open formats, we must continue to rigorously ask, "What can we still do to accelerate their open source epiphanies?"

In 2010, when the desktop standards war is winding down, we'll look back and say what a very, very good year 2002 was for open source software applications. It was in 2002 that both the Mozilla and the OpenOffice.org development projects delivered their 1.0 releases to the public. Having a Free (and free) and open source browser and office suite running on both the Windows and GNU/Linux operating systems is a milestone worth rejoicing at any time. Its significance in 2002 can be measured by the emergence the following year (2003) of viable desktop Linux solutions. In hindsight, that impact seems even greater today, when the mature enterprise GNU/Linux desktop system is something that's taken for granted.

While the desktop Linux market share last year came in at a slight 3%, according to IDC estimates year-on-year growth is currently well into double digits and may in 2005 or 2006 reach into triple-digit percentages for a time while the absolute base is still small. That this phenomenon is due to the improving quality and maturation of the Linux kernel and leading user interfaces, GNOME and KDE, is not questioned. What really makes the market-share advance for desktop Linux possible is that the two most important commodity user applications that provide Web-page access and document creation services on GNU/Linux also run on practically all versions of Windows, today's dominant operating system.

The New Standard Browser for Windows

Mozilla has made many advances in the technology and user experience of its software since its 1.0 release in 2002. In particular, the project has split the e-mail, calendar, address book, and HTML editor features from the browser to form two separate applications called Thunderbird and Firefox. The latest version of the browser is Firefox 0.9.3. It's available as a free download under the open source Mozilla Public License (www.mozilla.org/products/firefox/releases/#download).

Users of Firefox on both Windows and GNU/Linux have reported to me that they are impressed by Firefox's quick speed at rendering Web pages. And Windows users report they are startled to find a non-Microsoft application that has new and useful functionality compared to their experience with Internet Explorer.

Figure 1 shows Mozilla Firefox 0.9.3, which boasts strong features like pop-up blocking, strong Web-site password management, and tabbed browsing. You can see that 19 different Web sites are open in tabs, visible just below the Personal Toolbar (the Personal Toolbar is the row of folders located below the Main Menu and Object Bar). With Firefox, you can open a folder full of bookmarks within multiple tabs in a single instance of your browser with a single right-click of the mouse. Figure 1 illustrates this action, having been executed on the folder called "OSS News Blogs" that's second from the left on the Personal Toolbar.

Firefox received a blast of attention this past July when US-CERT (United States Computer Emergency Readiness Team), a division of the Department of Homeland Security, issued a security warning (www.kb.cert.org/vuls/id/713878) to users of Microsoft's Internet Explorer ("IE"), stating the following:

Microsoft Internet Explorer (IE) does not adequately validate the security context of a frame that has been redirected by a Web server. An attacker could exploit this vulnerability to evaluate script in different security domains. By causing script to be evaluated in the Local Machine Zone, the attacker could execute arbitrary code with the privileges of the user running IE.

Functional exploit code is publicly available, and there are reports of incidents involving this vulnerability (Scob, Download.Ject, Toofeer, Berbew).

Any program that hosts the WebBrowser ActiveX control or uses the IE HTML rendering engine (MSHTML) may be affected by this vulnerability.

By convincing a victim to view an HTML document (Web page, HTML e-mail), an attacker could execute script in a different security domain than the one containing the attacker's document. By causing script to be run in the Local Machine Zone, the attacker could execute arbitrary code with the privileges of the user running IE.

The solution proposed by US-CERT is a whole gamut of patches and security updates that Windows users need to apply to their systems - some of which don't work, even if common users had the ability to install them - and behavioral changes that are not likely to be in the cards for free-clicking, freedom-loving Microsoft customers.

My favorite solution recommendation in the US-CERT warning is "Use a different Web browser" (see sidebar).

US-CERT Warning's Impact on the Mozilla Project

The warning had the predictable effect of driving millions of Microsoft users to Mozilla's Web site. Bart Decrem, a member of the Mozilla Foundation and a senior contributor to its development project, had this to say about the warning's impact:

We've seen our daily downloads double after the CERT warnings. During the month of July, we logged a whopping 5.5 million product downloads. Firefox usage has been doubling every month for the last six months or so, and the CERT warning added more fuel to the fire, so to speak.

If this as well as our own experience with the OpenOffice.org development and marketing project is any reference, the lion's share of Firefox downloads are for Windows (see Table 1).

The New Standard Office Suite for Windows

Having recently passed its 30-millionth download, OpenOffice has done much better than pundits even still reckon.

The Meaning of an Open File Format

Above all, one thing you can say about an open source office suite that you can download for free is that your software application upgrade cycle and your software application budget are no longer controlled by Microsoft and its respective food chain.

Apart from OpenOffice's decent useability (always improving); its solid look and feel on your desktop; and its complete selection of features for creating and editing text documents, spreadsheets, presentations, graphics, Web pages, mathematical formulas, and accessing databases, OpenOffice has a generous array of file formats it can import, export, save as, and otherwise ingest, digest, and express.

This is a revolutionary toolset that is silently taking over the world's desktop. Table 1 shows that the ratio of operating systems beneath installations of OpenOffice has drifted to the mean in the past year. My own interpretation is that we're seeing more installations of OpenOffice by pure Windows users. Earlier response data reveals more installations by users who are dual-booters of GNU/Linux and Windows or are administering multiple systems. The data trends you see today would be consistent with an increasing frequency of OpenOffice installations by single-system Windows-only users. If that's the case, we may conclude that OpenOffice is moving further mainstream - where it surely needs to go.

Now only the press and the technology analysts need to catch up. Rather than the gimmick or fad that's described in the media and among technology analysts (along with their anemic projection estimates), OpenOffice and StarOffice together have taken about 20% of the global office suite market, by Sun's last public estimate. This, therefore, is possibly the quietest extinction in the history of a species. OpenOffice, along with Firefox, is on a tactical beachhead, making way for further migration if and when individuals and organizations decide it's appropriate.

Conclusion

A high-quality open source browser and office suite running cross-platform on Windows and GNU/Linux first made it possible for GNU/Linux users to access the open Web as well as access their own data in the old and then work unencumbered in the new environment. Now, placing Firefox and OpenOffice on Windows gives companies, schools, and government agencies literally a "new lease" on the life of their IT infrastructure, permitting them to standardize on their two most important commodity applications while ramping out whichever underlying operating system solution for the server and desktop their budget and technical requirements dictate.

What is the value of this new flexibility ushered in by the open software standards associated with a very good cross-platform browser and office suite? Certainly there is substantial financial value (in terms of total cost of ownership) for each individual or enterprise adoption case as well as on aggregate. What should interest us most is the value of new opportunities created in personal and workgroup productivity (imagine always being able to open documents), business model innovation (think Google, think eBay, think Amazon), and homeland security by the ever-widening adoption of commodity software based on open standards.

Firefox and OpenOffice are the beginning of a global enabling process.

SIDEBAR

Use a different Web browser

There are a number of significant vulnerabilities in technologies relating to the IE domain/zone security model, the DHTML object model, MIME type determination, the graphical user interface (GUI), and ActiveX. It is possible to reduce exposure to these vulnerabilities by using a different Web browser, especially when browsing untrusted sites. Such a decision may, however, reduce the functionality of sites that require IE-specific features such as DHTML, VBScript, and ActiveX. Note that using a different Web browser will not remove IE from a Windows system, and other programs may invoke IE, the WebBrowser ActiveX control, or the HTML rendering engine (MSHTML).

-From the US-CERT warning against Microsoft Internet Explorer's vulnerability www.kb.cert.org/vuls/id/713878

More Stories By Sam Hiser

Sam Hiser is co-author of "Exploring the JDS Linux Desktop" (O'Reilly) and a founding contributor to JDShelp.org. He is a GNU/Linux consultant in New York City and a Contributing Editor to Linux.SYS-CON.com.

Comments (1) View Comments

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


Most Recent Comments
Frank Daley 10/01/04 08:54:17 PM EDT

For Mozilla Firefox and OpenOffice.org to win the war, they must be pre-installed as the default applications on PCs from the major vendors such as Dell, HP, IBM and so forth.

Both Firefox and OO.o are gaining market share, however there's a lot more to be done to win the war. Neither teams should lose sight of that main goal to win the war.

@ThingsExpo Stories
SYS-CON Events announced today that Infranics will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Since 2000, Infranics has developed SysMaster Suite, which is required for the stable and efficient management of ICT infrastructure. The ICT management solution developed and provided by Infranics continues to add intelligence to the ICT infrastructure through the IMC (Infra Management Cycle) based on mathemat...
SYS-CON Events announced today that Auditwerx will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Auditwerx specializes in SOC 1, SOC 2, and SOC 3 attestation services throughout the U.S. and Canada. As a division of Carr, Riggs & Ingram (CRI), one of the top 20 largest CPA firms nationally, you can expect the resources, skills, and experience of a much larger firm combined with the accessibility and attent...
SYS-CON Events announced today that Interoute, owner-operator of one of Europe's largest networks and a global cloud services platform, has been named “Bronze Sponsor” of SYS-CON's 20th Cloud Expo, which will take place on June 6-8, 2017 at the Javits Center in New York, New York. Interoute is the owner-operator of one of Europe's largest networks and a global cloud services platform which encompasses 12 data centers, 14 virtual data centers and 31 colocation centers, with connections to 195 add...
SYS-CON Events announced today that Cloudistics, an on-premises cloud computing company, has been named “Bronze Sponsor” of SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Cloudistics delivers a complete public cloud experience with composable on-premises infrastructures to medium and large enterprises. Its software-defined technology natively converges network, storage, compute, virtualization, and management into a ...
In his session at @ThingsExpo, Eric Lachapelle, CEO of the Professional Evaluation and Certification Board (PECB), will provide an overview of various initiatives to certifiy the security of connected devices and future trends in ensuring public trust of IoT. Eric Lachapelle is the Chief Executive Officer of the Professional Evaluation and Certification Board (PECB), an international certification body. His role is to help companies and individuals to achieve professional, accredited and worldw...
In his General Session at 16th Cloud Expo, David Shacochis, host of The Hybrid IT Files podcast and Vice President at CenturyLink, investigated three key trends of the “gigabit economy" though the story of a Fortune 500 communications company in transformation. Narrating how multi-modal hybrid IT, service automation, and agile delivery all intersect, he will cover the role of storytelling and empathy in achieving strategic alignment between the enterprise and its information technology.
Microservices are a very exciting architectural approach that many organizations are looking to as a way to accelerate innovation. Microservices promise to allow teams to move away from monolithic "ball of mud" systems, but the reality is that, in the vast majority of organizations, different projects and technologies will continue to be developed at different speeds. How to handle the dependencies between these disparate systems with different iteration cycles? Consider the "canoncial problem" ...
The Internet of Things is clearly many things: data collection and analytics, wearables, Smart Grids and Smart Cities, the Industrial Internet, and more. Cool platforms like Arduino, Raspberry Pi, Intel's Galileo and Edison, and a diverse world of sensors are making the IoT a great toy box for developers in all these areas. In this Power Panel at @ThingsExpo, moderated by Conference Chair Roger Strukhoff, panelists discussed what things are the most important, which will have the most profound e...
Keeping pace with advancements in software delivery processes and tooling is taxing even for the most proficient organizations. Point tools, platforms, open source and the increasing adoption of private and public cloud services requires strong engineering rigor - all in the face of developer demands to use the tools of choice. As Agile has settled in as a mainstream practice, now DevOps has emerged as the next wave to improve software delivery speed and output. To make DevOps work, organization...
My team embarked on building a data lake for our sales and marketing data to better understand customer journeys. This required building a hybrid data pipeline to connect our cloud CRM with the new Hadoop Data Lake. One challenge is that IT was not in a position to provide support until we proved value and marketing did not have the experience, so we embarked on the journey ourselves within the product marketing team for our line of business within Progress. In his session at @BigDataExpo, Sum...
Web Real-Time Communication APIs have quickly revolutionized what browsers are capable of. In addition to video and audio streams, we can now bi-directionally send arbitrary data over WebRTC's PeerConnection Data Channels. With the advent of Progressive Web Apps and new hardware APIs such as WebBluetooh and WebUSB, we can finally enable users to stitch together the Internet of Things directly from their browsers while communicating privately and securely in a decentralized way.
DevOps is often described as a combination of technology and culture. Without both, DevOps isn't complete. However, applying the culture to outdated technology is a recipe for disaster; as response times grow and connections between teams are delayed by technology, the culture will die. A Nutanix Enterprise Cloud has many benefits that provide the needed base for a true DevOps paradigm.
What sort of WebRTC based applications can we expect to see over the next year and beyond? One way to predict development trends is to see what sorts of applications startups are building. In his session at @ThingsExpo, Arin Sime, founder of WebRTC.ventures, will discuss the current and likely future trends in WebRTC application development based on real requests for custom applications from real customers, as well as other public sources of information,
In his General Session at 17th Cloud Expo, Bruce Swann, Senior Product Marketing Manager for Adobe Campaign, explored the key ingredients of cross-channel marketing in a digital world. Learn how the Adobe Marketing Cloud can help marketers embrace opportunities for personalized, relevant and real-time customer engagement across offline (direct mail, point of sale, call center) and digital (email, website, SMS, mobile apps, social networks, connected objects).
With the introduction of IoT and Smart Living in every aspect of our lives, one question has become relevant: What are the security implications? To answer this, first we have to look and explore the security models of the technologies that IoT is founded upon. In his session at @ThingsExpo, Nevi Kaja, a Research Engineer at Ford Motor Company, will discuss some of the security challenges of the IoT infrastructure and relate how these aspects impact Smart Living. The material will be delivered i...
"My role is working with customers, helping them go through this digital transformation. I spend a lot of time talking to banks, big industries, manufacturers working through how they are integrating and transforming their IT platforms and moving them forward," explained William Morrish, General Manager Product Sales at Interoute, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
SYS-CON Events announced today that Ocean9will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Ocean9 provides cloud services for Backup, Disaster Recovery (DRaaS) and instant Innovation, and redefines enterprise infrastructure with its cloud native subscription offerings for mission critical SAP workloads.
Your homes and cars can be automated and self-serviced. Why can't your storage? From simply asking questions to analyze and troubleshoot your infrastructure, to provisioning storage with snapshots, recovery and replication, your wildest sci-fi dream has come true. In his session at @DevOpsSummit at 20th Cloud Expo, Dan Florea, Director of Product Management at Tintri, will provide a ChatOps demo where you can talk to your storage and manage it from anywhere, through Slack and similar services ...
SYS-CON Events announced today that Linux Academy, the foremost online Linux and cloud training platform and community, will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Linux Academy was founded on the belief that providing high-quality, in-depth training should be available at an affordable price. Industry leaders in quality training, provided services, and student certification passes, its goal is to c...
"delaPlex is a software development company. We do team-based outsourcing development," explained Mark Rivers, COO and Co-founder of delaPlex Software, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.