243 oSC16 2016-06-22 2016-06-26 5 00:15 2016-06-22T10:00:00+02:00 10:00 01:30 Saal 90-Minute Workshop 818-saltstack-is-more-than-just-configuration-management Keynote In this presentation, Thomas Hatch, SaltStack CTO and technical founder, will provide a quick overview of the evolution of IT automation and describe his motivations for creating the Salt open source project. Thomas will also define how SaltStack is different than other systems management tools and is the first to deliver a single platform for remote execution, configuration management, cloud control and event-driven automation. Specifically Thomas will provide a glimpse at the future of event-driven automation and how it will change the way IT operations and DevOps teams deploy, control and secure data center infrastructure and application components. Thomas will be joined on stage by Joe Werner, SUSE product management, and Dave Boucha, SaltStack engineering. Joe will highlight how the newest version of SUSE Manager leverages Salt and why Salt was the SUSE automation platform of choice. While Dave will provide a demonstration of SaltStack event-driven automation. In this presentation, Thomas Hatch, SaltStack CTO and technical founder, will provide a quick overview of the evolution of IT automation and describe his motivations for creating the Salt open source project. Thomas will also define how SaltStack is different than other systems management tools and is the first to deliver a single platform for remote execution, configuration management, cloud control and event-driven automation. Specifically Thomas will provide a glimpse at the future of event-driven automation and how it will change the way IT operations and DevOps teams deploy, control and secure data center infrastructure and application components. Thomas will be joined on stage by Joe Werner, SUSE product management, and Dave Boucha, SaltStack engineering. Joe will highlight how the newest version of SUSE Manager leverages Salt and why Salt was the SUSE automation platform of choice. While Dave will provide a demonstration of SaltStack event-driven automation. false rglauser 2016-06-22T11:30:00+02:00 11:30 00:30 Saal Short Talk 784-introduction-to-the-linux-block-i-o-layer SUSE Labs Summit In the last years the kernel's block I/O layer has been subject to quite some substantial changes. Ever increasing IOPS rates delivered by Flash based storage and high end SAN infrastructures demanded a refactoring of the I/O layer towards a lockless, multicore utilizing design. This talk will give a short introduction to both, the classic block layer and the so called multi queue block layer. In the last years the kernel's block I/O layer has been subject to quite some substantial changes. Ever increasing IOPS rates delivered by Flash based storage and high end SAN infrastructures demanded a refactoring of the I/O layer towards a lockless, multicore utilizing design. This talk will give a short introduction to both, the classic block layer and the so called multi queue block layer. false Johannes Thumshirn 2016-06-22T12:00:00+02:00 12:00 00:30 Saal Short Talk 790-hawk-2-0-and-beyond A new look for High Availability clusters SUSE Labs Summit At oSC15, I presented the hawk History Explorer. Since then I have released Hawk 2.0, already available in openSUSE Tumbleweed. In this talk I will demonstrate a live cluster running Hawk 2.0, show some of the new features in 2.0 and also some features that have been added since. http://kri.gs/presentation-hawk-20 At oSC15, I presented the hawk History Explorer. Since then I have released Hawk 2.0, already available in openSUSE Tumbleweed. In this talk I will demonstrate a live cluster running Hawk 2.0, show some of the new features in 2.0 and also some features that have been added since. http://kri.gs/presentation-hawk-20 false Kristoffer Grönlund 2016-06-22T13:00:00+02:00 13:00 00:30 Saal Short Talk 896-exploring-criu How to live-migrate your container? SUSE Labs Summit CRIU (Checkpoint Restore In Userspace) [*] is a tool for freezing and restoring user processes to/from a disk image. It can be seen as a kind of "software suspend" per process. This talk will show the basic design and usages of CRIU, the recent development and adaption by containers, and study a bit details about its implementation in kernel and user-space, as well as a short demo. [*] http://criu.org/ CRIU (Checkpoint Restore In Userspace) [*] is a tool for freezing and restoring user processes to/from a disk image. It can be seen as a kind of "software suspend" per process. This talk will show the basic design and usages of CRIU, the recent development and adaption by containers, and study a bit details about its implementation in kernel and user-space, as well as a short demo. [*] http://criu.org/ false Takashi Iwai 2016-06-22T13:30:00+02:00 13:30 01:00 Saal Long Talk 836-the-type-c-connector-and-usb-3-1 One plug to rule them all SUSE Labs Summit The talk is intended to give an overview about the technology used for the type C connector and USB 3.1. I will cover USB role switching, selection of alternate modes and USB Power Delivery. An overview over the driver support is given. APIs are introduced and explained. The conceptual difficulties of USB Power Delivery are shown. The missing infrastructure in the kernel and user space is identified. The frame work of a solution is discussed. http://www.slideshare.net/OliverNeukum/osc16-63284110 The talk is intended to give an overview about the technology used for the type C connector and USB 3.1. I will cover USB role switching, selection of alternate modes and USB Power Delivery. An overview over the driver support is given. APIs are introduced and explained. The conceptual difficulties of USB Power Delivery are shown. The missing infrastructure in the kernel and user space is identified. The frame work of a solution is discussed. http://www.slideshare.net/OliverNeukum/osc16-63284110 false Oliver Neukum 2016-06-22T14:30:00+02:00 14:30 00:30 Saal Short Talk 782-a-tale-of-rust-and-the-obs Getting the Rust programming language into openSUSE SUSE Labs Summit This talk will be a short introduction to the Rust programming language, why it is useful and why you would want to use it. Then I will discuss the current state of Rust in openSUSE, what the situation is regarding packaging crates and what remains to be done. http://kri.gs/presentation-rust-obs/ This talk will be a short introduction to the Rust programming language, why it is useful and why you would want to use it. Then I will discuss the current state of Rust in openSUSE, what the situation is regarding packaging crates and what remains to be done. http://kri.gs/presentation-rust-obs/ false Kristoffer Grönlund 2016-06-22T15:30:00+02:00 15:30 00:30 Saal Short Talk 914-opensuse-in-numbers-2016 How many users do we have? openSUSE During 2013 we provided some data about numbers of users and downloads of openSUSE. Now in 2016 we have a different scenario: Tumbleweed is the a new kind of rolling distribution that base the quality on automatic tests (openQA) and a better development process. Leap is also a new kind of stable distribution, a chimeric approach that mix the head of a enterprise product (SLE) and the heard of Factory. Those changes are so deep that 2016 deserve an update of the analysis done in 2013 about openSUSE users and downloads! During 2013 we provided some data about numbers of users and downloads of openSUSE. Now in 2016 we have a different scenario: Tumbleweed is the a new kind of rolling distribution that base the quality on automatic tests (openQA) and a better development process. Leap is also a new kind of stable distribution, a chimeric approach that mix the head of a enterprise product (SLE) and the heard of Factory. Those changes are so deep that 2016 deserve an update of the analysis done in 2013 about openSUSE users and downloads! false Alberto Planas 2016-06-22T16:00:00+02:00 16:00 00:30 Saal Short Talk 904-bridging-opensuse-and-sle-gap the GNOME example openSUSE Starting with (upcoming) Leap 42.2 and SLE 12 SP2, a lot of cooperation has been done to bridge gaps between the two distributions. We'll talk of one specific example, GNOME desktop, where openSUSE and SLE teams worked together on improving our common work and how it helped both teams. This is still a work in progress at the time of this writing, we'll be sharing what we achieved, how we did it, what failed (if it did) and how we can improve. Starting with (upcoming) Leap 42.2 and SLE 12 SP2, a lot of cooperation has been done to bridge gaps between the two distributions. We'll talk of one specific example, GNOME desktop, where openSUSE and SLE teams worked together on improving our common work and how it helped both teams. This is still a work in progress at the time of this writing, we'll be sharing what we achieved, how we did it, what failed (if it did) and how we can improve. false Frederic Crozat 2016-06-22T16:30:00+02:00 16:30 01:00 Saal Long Talk 900-opensuse-leap-42-2-roadmap-and-development-process openSUSE This talk will present the ideas behind Leap, the roadmap towards 42.2, how to contribute to Leap and how to help with the release. This talk will present the ideas behind Leap, the roadmap towards 42.2, how to contribute to Leap and how to help with the release. false Ludwig Nussel 2016-06-22T17:30:00+02:00 17:30 01:00 Saal Long Talk 844-how-to-factory-staging-project-work openSUSE Factory Staging Project is very important part of openSUSE Factory development model now, it's a gate to make sure new packages update/change will not break openSUSE Factory totally and we can safety to release newer openSUSE Tumbleweed snapshot. I'll introduce how to Factory Staging Project work in this talk, including the workflow, the tools behind of Staging Project and the client-side tool we are used to. This talk should give openSUSE developers a clear picture about how Staging Master(s) handling Staging Project. Factory Staging Project is very important part of openSUSE Factory development model now, it's a gate to make sure new packages update/change will not break openSUSE Factory totally and we can safety to release newer openSUSE Tumbleweed snapshot. I'll introduce how to Factory Staging Project work in this talk, including the workflow, the tools behind of Staging Project and the client-side tool we are used to. This talk should give openSUSE developers a clear picture about how Staging Master(s) handling Staging Project. false Max Lin 2016-06-22T18:45:00+02:00 18:45 01:15 Saal Entertainment 1030-cellar-tour-june-22-meet-up-point-at-the-kater-murr Entertainment Explore the underground cellars of Nuremberg. Learn about the beer that was stored in these cellars and why it is so, so good. There are only 25 seats for this tour and you must register for it before the tour because of the limited seats that are available. The tour is 75 minutes. If the seats for this tour fill up, don't worry. There are others you can sign up for at http://events.opensuse.org Please ensure you register for one of the tours under "My Registration". There needs to be a minimum of 10 people per tours. Tours that have less than 10 people registered will be canceled. The cost of the tour will be split between the attendees. Example - The cellar tour is 90 € per tour. If there are 20 attendees for the tour, each person would pay 4,50 €. The meet up point for all the tours will start at the Kater Murr - Johannesgasse 14, 90402 Nürnberg Explore the underground cellars of Nuremberg. Learn about the beer that was stored in these cellars and why it is so, so good. There are only 25 seats for this tour and you must register for it before the tour because of the limited seats that are available. The tour is 75 minutes. If the seats for this tour fill up, don't worry. There are others you can sign up for at http://events.opensuse.org Please ensure you register for one of the tours under "My Registration". There needs to be a minimum of 10 people per tours. Tours that have less than 10 people registered will be canceled. The cost of the tour will be split between the attendees. Example - The cellar tour is 90 € per tour. If there are 20 attendees for the tour, each person would pay 4,50 €. The meet up point for all the tours will start at the Kater Murr - Johannesgasse 14, 90402 Nürnberg false Douglas DeMaio 2016-06-22T10:00:00+02:00 10:00 10:00 Seminarraum 1 IndieWeb-Hack-Day 1062-indieweb-hack-day-nuremberg-2016 An all day IndieWeb hack session with introductory talk IndieWeb Hack-Day The importance of owning your data on the web is getting more awareness. To grow it and help people gettings started, we're meeting for an all day IndieWeb gathering packed with brainstorming, working, teaching, helping and hacking on your own site. There will be an introductory talk describing the most basic IndieWeb techniques. It's the perfect chance to both become acquainted with the IndieWeb and implement some of the IndieWeb features on your own website in one go. We'll start the IndieWeb Hack Day with a ~40 minute introductory talk to quickly onboard all those who have never heard of the IndieWeb movement. Then, until early afternoon, there will be barcamp-like sessions to further introduce and discuss some of the IndieWeb technologies. Finally, a couple of hours are spent on hacking and immediately implementing some of these ideas into your own website — or even start it from scratch if you don't have one already. So don't forget to bring your own laptop! The importance of owning your data on the web is getting more awareness. To grow it and help people gettings started, we're meeting for an all day IndieWeb gathering packed with brainstorming, working, teaching, helping and hacking on your own site. There will be an introductory talk describing the most basic IndieWeb techniques. It's the perfect chance to both become acquainted with the IndieWeb and implement some of the IndieWeb features on your own website in one go. We'll start the IndieWeb Hack Day with a ~40 minute introductory talk to quickly onboard all those who have never heard of the IndieWeb movement. Then, until early afternoon, there will be barcamp-like sessions to further introduce and discuss some of the IndieWeb technologies. Finally, a couple of hours are spent on hacking and immediately implementing some of these ideas into your own website — or even start it from scratch if you don't have one already. So don't forget to bring your own laptop! false Joschi Kuphal 2016-06-22T11:30:00+02:00 11:30 00:30 Galerie Short Talk 794-10-minutes-to-openstack-using-saltstack Learn how to deploy and manage multiple OpenStack clusters in an automated way Salt Stack Summit Learn how to use the power of SaltStack to automate and build multiple multi-node OpenStack clusters in just a few minutes. This presentation explains how Salt states can be used to quickly build multiple OpenStack clusters as well as how they can be modified/extended according to your specific needs. This presentation will also demo how the same set of states can be used with salt-cloud to deploy multiple OpenStack clusters on existing cloud infrastructures such as VMware in under 10 minutes. Learn how to use the power of SaltStack to automate and build multiple multi-node OpenStack clusters in just a few minutes. This presentation explains how Salt states can be used to quickly build multiple OpenStack clusters as well as how they can be modified/extended according to your specific needs. This presentation will also demo how the same set of states can be used with salt-cloud to deploy multiple OpenStack clusters on existing cloud infrastructures such as VMware in under 10 minutes. false Nitin Madhok 2016-06-22T12:00:00+02:00 12:00 01:00 Galerie Long Talk 968-writing-a-salt-module Experiences and best practice taken from writing a salt module for ceph Salt Stack Summit This talk is targeted at devops people who will need to automate things that have never been automated before. This talk will explain what is involved in creating a salt module up to the standard of built in modules. The talk will explain how execution modules, state modules and libraries can come together to make your product work for complex projects. The presenter has experience of automating deployment in over 400 research centers around the world over the last 15 years. This talk is targeted at devops people who will need to automate things that have never been automated before. This talk will explain what is involved in creating a salt module up to the standard of built in modules. The talk will explain how execution modules, state modules and libraries can come together to make your product work for complex projects. The presenter has experience of automating deployment in over 400 research centers around the world over the last 15 years. false Owen Synge 2016-06-22T13:00:00+02:00 13:00 01:00 Galerie Long Talk 876-hacking-salt-for-fun-and-profit A fun journey into extending Salt Salt Stack Summit After the SUSE Manager team had chosen Salt as the future engine behind SUSE Manager, Joachim "Joe" Werner, the product manager for SUSE Manager, spent some time to learn the project hands-on. This is a very personal report about that experience, from extending Salt with code to manage WIFI-controlled LED lamps for a demo at the SUSECon conference to first experiments with writing a Salt module for Snapper. This talk is for you if you don't just want to know about using Salt for configuration management, but are more interested in contributing to it or hacking it for your own needs. Basic Python skills recommended to make sense of the example code. ;-) After the SUSE Manager team had chosen Salt as the future engine behind SUSE Manager, Joachim "Joe" Werner, the product manager for SUSE Manager, spent some time to learn the project hands-on. This is a very personal report about that experience, from extending Salt with code to manage WIFI-controlled LED lamps for a demo at the SUSECon conference to first experiments with writing a Salt module for Snapper. This talk is for you if you don't just want to know about using Salt for configuration management, but are more interested in contributing to it or hacking it for your own needs. Basic Python skills recommended to make sense of the example code. ;-) false Joachim Werner 2016-06-22T14:00:00+02:00 14:00 01:00 Galerie Long Talk 792-managing-vmware-infrastructure-using-salt-cloud Learn how to deploy and manage VM's in your VMware environment in an automated way. Also learn how to automate the VMware infrastructure itself using the power of salt-cloud. Salt Stack Summit Want to learn how to deploy VM's on the fly in your VMware infrastructure using the orchestration power of salt-cloud? Attendees will walk away from this workshop/presentation with the tools, skills and knowledge to deploy and manage VM’s in their VMware environment in a reproducible, maintainable and a manageable way using salt and salt-cloud. We will be explaining how VM's can be created and destroyed across multiple vCenters, how they can be easily queried and how various tasks can be performed on vCenters. We will also show you how you can perform simple tasks such as creating/removing snapshots of VM’s, starting/stopping/suspending/resuming VM's, querying VM's for information etc using salt-cloud! This workshop/presentation is a great use case on how Clemson University has used SaltStack Software (salt, salt-cloud) to automate it's VMware environment and the day to day routine tasks performed by the VMware administrators and made it simpler for people with no prior VMware knowledge to easily deploy and manage the VM's in their environment. For more information visit: Getting Started Docs: https://docs.saltstack.com/en/develop/topics/cloud/vmware.html Available Function: http://docs.saltstack.com/en/develop/ref/clouds/all/salt.cloud.clouds.vmware.html Want to learn how to deploy VM's on the fly in your VMware infrastructure using the orchestration power of salt-cloud? Attendees will walk away from this workshop/presentation with the tools, skills and knowledge to deploy and manage VM’s in their VMware environment in a reproducible, maintainable and a manageable way using salt and salt-cloud. We will be explaining how VM's can be created and destroyed across multiple vCenters, how they can be easily queried and how various tasks can be performed on vCenters. We will also show you how you can perform simple tasks such as creating/removing snapshots of VM’s, starting/stopping/suspending/resuming VM's, querying VM's for information etc using salt-cloud! This workshop/presentation is a great use case on how Clemson University has used SaltStack Software (salt, salt-cloud) to automate it's VMware environment and the day to day routine tasks performed by the VMware administrators and made it simpler for people with no prior VMware knowledge to easily deploy and manage the VM's in their environment. For more information visit: Getting Started Docs: https://docs.saltstack.com/en/develop/topics/cloud/vmware.html Available Function: http://docs.saltstack.com/en/develop/ref/clouds/all/salt.cloud.clouds.vmware.html false Nitin Madhok 2016-06-22T15:00:00+02:00 15:00 00:30 Galerie Short Talk 880-bittorrent-peer-to-peer-controlled-by-salt Software distribution with Windows laptops in a corporate network Salt Stack Summit Our task is to distribute software to Windows clients. Our network contains slow links and relay-servers, which must be staged up. Our goals are 1) reduce WAN traffic, 2) allow unlimited size, 3) allow unlimited number of clients in one rollout, and 4) start rollout without delay. Idea :: BitTorrent Peer-to-peer (P2P) reduces WAN traffic because if prefers local content over remote content. Beneficially for the concept, all clients are centrally configured: no peer can be a leach. Clients act as a storage resource for other clients, eliminating the need for relay servers. Realization :: We found that Salt manages a BitTorrent agent nicely with Salt-states. Experience/Result :: We have continuously distributed 2 GB per day to up to 50 Minions for over 2 months. Clients and network are undisturbed, while a Salt-Master on a regular desktop administers 50 Minions effortlessly. We fully meet all of our goals. We observe an increasing and by now high reliability with P2P and Salt (in this order), but glitches still occur in both domains. Live Demo :: How to distribute 500 MB, present at 4 clients, to 8 more clients? During transmission, we will stop the P2P service on some of these 8 clients via salt and then start it again, to simulate clients going temporarily offline. Next Steps :: Making Minions 'more active'. Activating and deactivating the P2P service on demand. Our task is to distribute software to Windows clients. Our network contains slow links and relay-servers, which must be staged up. Our goals are 1) reduce WAN traffic, 2) allow unlimited size, 3) allow unlimited number of clients in one rollout, and 4) start rollout without delay. Idea :: BitTorrent Peer-to-peer (P2P) reduces WAN traffic because if prefers local content over remote content. Beneficially for the concept, all clients are centrally configured: no peer can be a leach. Clients act as a storage resource for other clients, eliminating the need for relay servers. Realization :: We found that Salt manages a BitTorrent agent nicely with Salt-states. Experience/Result :: We have continuously distributed 2 GB per day to up to 50 Minions for over 2 months. Clients and network are undisturbed, while a Salt-Master on a regular desktop administers 50 Minions effortlessly. We fully meet all of our goals. We observe an increasing and by now high reliability with P2P and Salt (in this order), but glitches still occur in both domains. Live Demo :: How to distribute 500 MB, present at 4 clients, to 8 more clients? During transmission, we will stop the P2P service on some of these 8 clients via salt and then start it again, to simulate clients going temporarily offline. Next Steps :: Making Minions 'more active'. Activating and deactivating the P2P service on demand. false Markus Kramer 2016-06-22T15:30:00+02:00 15:30 00:30 Galerie Short Talk 778-opensuse-weblate-translation-tool openSUSE openSUSE has a new tool for translations support: Weblate. It should become a central point of all openSUSE translations in future. In this talk you will become familiar with Weblate. Starting with translation and fixing errors in existing translations will be easy for you. openSUSE has a new tool for translations support: Weblate. It should become a central point of all openSUSE translations in future. In this talk you will become familiar with Weblate. Starting with translation and fixing errors in existing translations will be easy for you. false sbrabec 2016-06-22T17:00:00+02:00 17:00 00:30 Galerie Short Talk 994-security-and-opensuse securing the tumbleweed openSUSE SUSE employs a security team which has as main duty keeping SUSE and openSUSE secure. With openSUSE and SUSE Linux Enterprise being close and deriving from each other, taking care of security in openSUSE development is also benefitial for SUSE Linux Enterprise Development. The talk will give an introduction on what the SUSE Security Team does and how it works, especially in light in cooperating with openSUSE. SUSE employs a security team which has as main duty keeping SUSE and openSUSE secure. With openSUSE and SUSE Linux Enterprise being close and deriving from each other, taking care of security in openSUSE development is also benefitial for SUSE Linux Enterprise Development. The talk will give an introduction on what the SUSE Security Team does and how it works, especially in light in cooperating with openSUSE. false Marcus Meissner 2016-06-22T18:45:00+02:00 18:45 01:15 Galerie Entertainment 1016-city-tour-june-22-meet-up-point-at-the-kater-murr Entertainment Come on the Nuremberg City Tour. There are only 25 seats for this tour and you must register for it before the tour because of the limited seats that are available. See the historical sites in this medieval city in Bavaria. The tour is 75 minutes. If the seats for this tour fill up, don't worry. There are others you can sign up for at http://events.opensuse.org Please ensure you register for one of the tours under "My Registration". There needs to be a minimum of 10 people per tours. Tours that have less than 10 people registered will be canceled. The cost of the tour will be split between the attendees. Example - The city tour is 60 € per tour. If there are 20 attendees for the tour, each person would pay 3 €. The meet up point for all the tours will start at the Kater Murr - Johannesgasse 14, 90402 Nürnberg Come on the Nuremberg City Tour. There are only 25 seats for this tour and you must register for it before the tour because of the limited seats that are available. See the historical sites in this medieval city in Bavaria. The tour is 75 minutes. If the seats for this tour fill up, don't worry. There are others you can sign up for at http://events.opensuse.org Please ensure you register for one of the tours under "My Registration". There needs to be a minimum of 10 people per tours. Tours that have less than 10 people registered will be canceled. The cost of the tour will be split between the attendees. Example - The city tour is 60 € per tour. If there are 20 attendees for the tour, each person would pay 3 €. The meet up point for all the tours will start at the Kater Murr - Johannesgasse 14, 90402 Nürnberg false Douglas DeMaio 2016-06-22T14:30:00+02:00 14:30 03:00 Seminarraum 2 Workshop 928-how-to-contribute-to-an-open-source-project Make your first open source contribution. Technology & Development This workshop covers a practical introduction on how to contribute to an open source project. You will learn about basic git usage (commit, push, rebase), code review and continuous integration. During the workshop you will do a real contribution to an open source project (coala, coala-analyzer.org) and interact with the community. Your knowledge will help you enter our and other open source communities easily. Please bring the following things with you: - A laptop with Git installed and WLAN already configured. - A power cable if you need one. Note: Because coala uses a large CI stack and strict time limit of the workshop, we will not be able to merge your contributions during the workshop. We will get your contributions into an acceptable shape and it will be merged later during the day. This workshop covers a practical introduction on how to contribute to an open source project. You will learn about basic git usage (commit, push, rebase), code review and continuous integration. During the workshop you will do a real contribution to an open source project (coala, coala-analyzer.org) and interact with the community. Your knowledge will help you enter our and other open source communities easily. Please bring the following things with you: - A laptop with Git installed and WLAN already configured. - A power cable if you need one. Note: Because coala uses a large CI stack and strict time limit of the workshop, we will not be able to merge your contributions during the workshop. We will get your contributions into an acceptable shape and it will be merged later during the day. false Lasse Schuirmann 2016-06-23T10:00:00+02:00 10:00 01:00 Saal Long Talk 1044-keynote-from-frank-karlitschek-founder-of-nextcloud Keynote Frank Karlitschek, ownCloud community project lead Frank Karlitschek, ownCloud community project lead false Douglas DeMaio 2016-06-23T11:00:00+02:00 11:00 01:00 Saal Long Talk 780-mysql-firewall Add an extra layer of security to your database Technology & Development MySQL Firewall is an application level firewall filter that intercepts incoming queries and validates them against a database of normalized "safe" queries. As an integral part of the server it takes advantage of the parsing and normalization that is done anyway so it has minimal impact on normal operations. The firewall has multiple modes. In learning mode it collects the incoming query normalization in a scratchpad that can be persisted to disk. In alert mode it will just alert the DBA for an unknown query but still let it pass. And in protecting mode it will reject all unknown queries. The firewall can be used to limit SQL injection or as a complement to the privilege system to support only particular front end applications. We will go through all of the stages of installing, training and arming the MySQL firewall with understandable examples. MySQL Firewall is an application level firewall filter that intercepts incoming queries and validates them against a database of normalized "safe" queries. As an integral part of the server it takes advantage of the parsing and normalization that is done anyway so it has minimal impact on normal operations. The firewall has multiple modes. In learning mode it collects the incoming query normalization in a scratchpad that can be persisted to disk. In alert mode it will just alert the DBA for an unknown query but still let it pass. And in protecting mode it will reject all unknown queries. The firewall can be used to limit SQL injection or as a complement to the privilege system to support only particular front end applications. We will go through all of the stages of installing, training and arming the MySQL firewall with understandable examples. false Georgi Kodinov 2016-06-23T12:00:00+02:00 12:00 00:15 Saal Lightning Talk 950-static-code-analysis-for-all-languages-coala Because Code Quality Matters Technology & Development coala provides a common command-line interface for linting and fixing all your code, regardless of the programming languages you use. It supports way over 50 languages in addition to language independent routines. So, instead of building new analysis tools from scratch you can now build logic only and let coala deal with the user. This talk features a short introduction into the thoughts behind coala, it's ability to speed up research as well as increase productivity. coala provides a common command-line interface for linting and fixing all your code, regardless of the programming languages you use. It supports way over 50 languages in addition to language independent routines. So, instead of building new analysis tools from scratch you can now build logic only and let coala deal with the user. This talk features a short introduction into the thoughts behind coala, it's ability to speed up research as well as increase productivity. false Lasse Schuirmann 2016-06-23T12:45:00+02:00 12:45 01:00 Saal Long Talk 984-opensuse-and-suse-linux-enterprise Apples and Pears from the same tree Technology & Development Content: Leap and the SUSE Linux Enterprise products share a lot of things in common. At the same time, they vary in a lot of aspects. Some of them are caused by fundamental differences in the philosophy and the basic properties of the projects. With the upcoming SP2 of CODE 12 of SUSE Linux Enterprise it's time to look at those differences and similarities, as the codebases will be getting closer again. Content: Leap and the SUSE Linux Enterprise products share a lot of things in common. At the same time, they vary in a lot of aspects. Some of them are caused by fundamental differences in the philosophy and the basic properties of the projects. With the upcoming SP2 of CODE 12 of SUSE Linux Enterprise it's time to look at those differences and similarities, as the codebases will be getting closer again. false Stefan Behlert 2016-06-23T13:45:00+02:00 13:45 01:00 Saal Long Talk 996-reproducible-builds-everywhere-and-beyond The status of reproducing byte-for-byte identical binary packages from a given source Technology & Development The presentation will describe how the Debian reproducible builds team made 85% of the Debian archive reproducible, what steps are left to reach 100% and what steps are needed beyond reproducible builds, so that every user can easily and meaningful benefit from them. While the presentation will be largely about the Debian work on the area, it will also portray many other projects collaborative work on reproducible builds, as our goal is to make reproducible builds the norm for free software: "It's not free software if it's not reproducible." https://reproducible-builds.org The presentation will describe how the Debian reproducible builds team made 85% of the Debian archive reproducible, what steps are left to reach 100% and what steps are needed beyond reproducible builds, so that every user can easily and meaningful benefit from them. While the presentation will be largely about the Debian work on the area, it will also portray many other projects collaborative work on reproducible builds, as our goal is to make reproducible builds the norm for free software: "It's not free software if it's not reproducible." https://reproducible-builds.org false h01ger 2016-06-23T14:45:00+02:00 14:45 00:30 Saal Short Talk 838-reproducible-builds-and-opensuse making NSA's life a bit harder Technology & Development Linux distributions like openSUSE ship binaries and because it is all free/open source software, users also can get the source code, but often it is not possible to verify that the shipped binary was really produced from this source (e.g. without added backdoors) This talk intends to inform about the https://reproducible-builds.org/ initiative in general and openSUSE's progress in that direction in particular. Linux distributions like openSUSE ship binaries and because it is all free/open source software, users also can get the source code, but often it is not possible to verify that the shipped binary was really produced from this source (e.g. without added backdoors) This talk intends to inform about the https://reproducible-builds.org/ initiative in general and openSUSE's progress in that direction in particular. false Bernhard M. 2016-06-23T15:30:00+02:00 15:30 00:30 Saal Short Talk 1064-keynote-georg-greve Keynote Georg is the CEO of Kolab Systems AG and is one of the leading entrepreneurs in the Free Software world: Self-taught software developer, traditionally trained physicist, author, and founding president of the Free Software Foundation Europe (FSFE) and involved in most of the crucial battles for a society that is based on openness and freedom. Georg is the CEO of Kolab Systems AG and is one of the leading entrepreneurs in the Free Software world: Self-taught software developer, traditionally trained physicist, author, and founding president of the Free Software Foundation Europe (FSFE) and involved in most of the crucial battles for a society that is based on openness and freedom. false Douglas DeMaio 2016-06-23T16:30:00+02:00 16:30 00:30 Saal Short Talk 806-deliver-personalization-remain-legally-compliant-and-respect-privacy-with-open-source Community & Project What good is a website when you don’t have the faintest idea who’s visiting it, where they come from, where they go, and what they want? And how can you find out all that whilst respecting your users' privacy and still complying with myriad, pesky national privacy laws and regulations? My answer is simple: go open source! Go Piwik! Piwik is a great, open source web statistics application, similar to Google Analytics, that integrates very well with numerous platforms including Drupal. This has been a hot topic for a few years and the talk has gone through a couple of iterations for some major conferences (like DrupalCon 2013 in Prague and openSUSE Conference 2012 in Thessaloniki and Observe Hack Make in 2013). It is frequently updated to reflect the current legal and regulatory situation, which is still changing and developing (almost daily, it seems). [takeaways] In this talk, the audience will learn: The current state-of-play regarding privacy laws, especially in Europe. How well Drupal and Piwik compliment each other. How to deliver “fair-play” personalization. What good is a website when you don’t have the faintest idea who’s visiting it, where they come from, where they go, and what they want? And how can you find out all that whilst respecting your users' privacy and still complying with myriad, pesky national privacy laws and regulations? My answer is simple: go open source! Go Piwik! Piwik is a great, open source web statistics application, similar to Google Analytics, that integrates very well with numerous platforms including Drupal. This has been a hot topic for a few years and the talk has gone through a couple of iterations for some major conferences (like DrupalCon 2013 in Prague and openSUSE Conference 2012 in Thessaloniki and Observe Hack Make in 2013). It is frequently updated to reflect the current legal and regulatory situation, which is still changing and developing (almost daily, it seems). [takeaways] In this talk, the audience will learn: The current state-of-play regarding privacy laws, especially in Europe. How well Drupal and Piwik compliment each other. How to deliver “fair-play” personalization. false Hans de Raad 2016-06-23T16:30:00+02:00 16:30 00:30 Saal Short Talk 902-designing-in-the-open-open-source-design Experiences as a designer at Mozilla Community & Project Designers in an open source community or environment are not easy; neither for the designer, neither for those working with her/him. Open Source and Free Software communities have an alternative work and collaboration culture compared to classic working environments. In this talk, we can learn though how to add transparency to our workflow, and praise "sharing is caring" more than "made by me". Designers in an open source community or environment are not easy; neither for the designer, neither for those working with her/him. Open Source and Free Software communities have an alternative work and collaboration culture compared to classic working environments. Lately, designers have taken a more and more important role in such communities, originally initiated by developers and programmers. Just think of the Firefox logo, how important it is to such a big movement and community. However, designers are difficult beings; we often can't get over our ego, are perfectionists in unneeded ways and often, like magicians, don't want to share our materials or tricks. That's why it's often hard for a designer to work "in the open". We can learn though how to add transparency to our workflow, and praise "sharing is caring" more than "made by me". Licenses like Creative Commons, Open Document Formats and similar. are the most powerful tools of a designer in an open source community. We are able to become better designers, and better contributors at the same time, following a few simple principles. www.opensourcedesign.net Designers in an open source community or environment are not easy; neither for the designer, neither for those working with her/him. Open Source and Free Software communities have an alternative work and collaboration culture compared to classic working environments. In this talk, we can learn though how to add transparency to our workflow, and praise "sharing is caring" more than "made by me". Designers in an open source community or environment are not easy; neither for the designer, neither for those working with her/him. Open Source and Free Software communities have an alternative work and collaboration culture compared to classic working environments. Lately, designers have taken a more and more important role in such communities, originally initiated by developers and programmers. Just think of the Firefox logo, how important it is to such a big movement and community. However, designers are difficult beings; we often can't get over our ego, are perfectionists in unneeded ways and often, like magicians, don't want to share our materials or tricks. That's why it's often hard for a designer to work "in the open". We can learn though how to add transparency to our workflow, and praise "sharing is caring" more than "made by me". Licenses like Creative Commons, Open Document Formats and similar. are the most powerful tools of a designer in an open source community. We are able to become better designers, and better contributors at the same time, following a few simple principles. www.opensourcedesign.net false Elio Qoshi 2016-06-23T17:00:00+02:00 17:00 00:30 Saal Short Talk 910-kde-neon Delivering KDE Software to Users Community & Project KDE Neon is a relatively new KDE project, providing an easy and elegant way for people to test the latest from KDE Git, or use the latest releases. It is building binary packages but does not consider itself a distribution. We'll look at the motivation behind KDE Neon, the involved technologies and services, and it's place within the KDE community as well as the ecosystem at large. KDE Neon is a relatively new KDE project, providing an easy and elegant way for people to test the latest from KDE Git, or use the latest releases. It is building binary packages but does not consider itself a distribution. We'll look at the motivation behind KDE Neon, the involved technologies and services, and it's place within the KDE community as well as the ecosystem at large. false Harald Sittter 2016-06-23T17:30:00+02:00 17:30 00:30 Saal Short Talk 774-turris-omnia Czech high-preformance opensource router Technology & Development CZ.NIC is working hard on releasing their new router called Turris Omnia. It is open source and open hardware, high-performance ARM box that can become the central server of your home as it can actually do much more than just routing. Why is it interesting? What can it do? Can it run openSUSE? All of that and more will be the topic of this talk. CZ.NIC is working hard on releasing their new router called Turris Omnia. It is open source and open hardware, high-performance ARM box that can become the central server of your home as it can actually do much more than just routing. Why is it interesting? What can it do? Can it run openSUSE? All of that and more will be the topic of this talk. false Michal Hrušecký 2016-06-23T18:45:00+02:00 18:45 01:15 Saal Entertainment 1032-cellar-tour-june-23-meet-up-point-at-the-kater-murr Entertainment Explore the underground cellars of Nuremberg. Learn about the beer that was stored in these cellars and why it is so, so good. There are only 25 seats for this tour and you must register for it before the tour because of the limited seats that are available. The tour is 75 minutes. If the seats for this tour fill up, don't worry. There are others you can sign up for at http://events.opensuse.org Please ensure you register for one of the tours under "My Registration". There needs to be a minimum of 10 people per tours. Tours that have less than 10 people registered will be canceled. The cost of the tour will be split between the attendees. Example - The cellar tour is 90 € per tour. If there are 20 attendees for the tour, each person would pay 4,50 €. The meet up point for all the tours will start at the Kater Murr - Johannesgasse 14, 90402 Nürnberg Explore the underground cellars of Nuremberg. Learn about the beer that was stored in these cellars and why it is so, so good. There are only 25 seats for this tour and you must register for it before the tour because of the limited seats that are available. The tour is 75 minutes. If the seats for this tour fill up, don't worry. There are others you can sign up for at http://events.opensuse.org Please ensure you register for one of the tours under "My Registration". There needs to be a minimum of 10 people per tours. Tours that have less than 10 people registered will be canceled. The cost of the tour will be split between the attendees. Example - The cellar tour is 90 € per tour. If there are 20 attendees for the tour, each person would pay 4,50 €. The meet up point for all the tours will start at the Kater Murr - Johannesgasse 14, 90402 Nürnberg false Douglas DeMaio 2016-06-23T11:00:00+02:00 11:00 01:00 Galerie Long Talk 884-infrastructure-as-code-and-ci-infrastructure-at-openstack A look at one of the largest CI systems and system administration Community & Project Let's look how another open source project administrates their community infrastructure and have setup their testing of software. I want to give an overview how development, documentation, and system administration at OpenStack follow the same workflow, what kind of infrastructure OpenStack uses for testing the changes and what major design decisions have been done. Also, I like to explain how system administration of the community servers is done. Slides at http://www.slideshare.net/jaegerandi/infrastructureascode-and-ci-infrastructure-at-openstack Let's look how another open source project administrates their community infrastructure and have setup their testing of software. I want to give an overview how development, documentation, and system administration at OpenStack follow the same workflow, what kind of infrastructure OpenStack uses for testing the changes and what major design decisions have been done. Also, I like to explain how system administration of the community servers is done. Slides at http://www.slideshare.net/jaegerandi/infrastructureascode-and-ci-infrastructure-at-openstack false Andreas Jaeger 2016-06-23T12:00:00+02:00 12:00 01:00 Galerie Long Talk 924-ceph-and-storage-management-with-openattic Making Ceph and storage management on Linux a breeze Technology & Development openATTIC is an Open Source Storage Management System, sponsored by it-novum. Over the last five years, it has matured into a flexible and robust framework to address today's storage management requirements. Using openATTIC, one can easily manage storage resources like NFS/CIFS shares as well as iSCSI and FibreChannel targets via a modern web interface. Moreover, openATTIC supports a wide range of file systems including Btrfs and ZFS, as well as automatic data replication using DRBD®, the distributed replicated block device and automatic monitoring of shares and volumes using a built-in Nagios/Icinga instance. With version 2.0 which is currently under development, the openATTIC developers have made some significant changes. In addition to replacing the existing XML-RPC API with a RESTful API, the entire Web UI has been rebuilt from scratch using modern web technologies. In addition to traditional storage, openATTIC 2 will also support managing the Ceph distributed object store and file system. This talk will give an overview about openATTIC, it's current state of development as well as an insight into the collaboration with SUSE on porting openATTIC to the SUSE Linux distribution and the ongoing development of additional Ceph management features. openATTIC is an Open Source Storage Management System, sponsored by it-novum. Over the last five years, it has matured into a flexible and robust framework to address today's storage management requirements. Using openATTIC, one can easily manage storage resources like NFS/CIFS shares as well as iSCSI and FibreChannel targets via a modern web interface. Moreover, openATTIC supports a wide range of file systems including Btrfs and ZFS, as well as automatic data replication using DRBD®, the distributed replicated block device and automatic monitoring of shares and volumes using a built-in Nagios/Icinga instance. With version 2.0 which is currently under development, the openATTIC developers have made some significant changes. In addition to replacing the existing XML-RPC API with a RESTful API, the entire Web UI has been rebuilt from scratch using modern web technologies. In addition to traditional storage, openATTIC 2 will also support managing the Ceph distributed object store and file system. This talk will give an overview about openATTIC, it's current state of development as well as an insight into the collaboration with SUSE on porting openATTIC to the SUSE Linux distribution and the ongoing development of additional Ceph management features. false Lenz Grimmer 2016-06-23T13:30:00+02:00 13:30 00:30 Galerie Short Talk 972-ceph-a-gentle-introduction Only the pretty bits Technology & Development Unlike many storage systems ceph storage is here to stay, this talk will explain how this storage solution is winning friends with its simplicity, stability, scalability and performance. This talk will show the elegance of ceph rather than the dirty details, but you can always ask questions. Unlike many storage systems ceph storage is here to stay, this talk will explain how this storage solution is winning friends with its simplicity, stability, scalability and performance. This talk will show the elegance of ceph rather than the dirty details, but you can always ask questions. false Owen Synge 2016-06-23T14:00:00+02:00 14:00 00:30 Galerie Short Talk 800-workshop-owncloud ownCloud with openSUSE openSUSE 1. zypper addrepo http://download.opensuse.org/repositories/isv:/ownCloud:/community/openSUSE_Leap_42.1/isv:ownCloud:community.repo 2. zypper refresh 3. zypper install owncloud 4. zypper install apache2 5. Configuration Firewall : Allow HTTP,HTTPS,SSH 6. zypper install mariadb; create DB & Assign privileges to a new MySQL user to handle database operations for ownCloud. 7. a2enmod php5 (need to enable php5 for apache2) 8. Go to your IP address or domain name followed by "/owncloud" in your browser. 9. Done 1. zypper addrepo http://download.opensuse.org/repositories/isv:/ownCloud:/community/openSUSE_Leap_42.1/isv:ownCloud:community.repo 2. zypper refresh 3. zypper install owncloud 4. zypper install apache2 5. Configuration Firewall : Allow HTTP,HTTPS,SSH 6. zypper install mariadb; create DB & Assign privileges to a new MySQL user to handle database operations for ownCloud. 7. a2enmod php5 (need to enable php5 for apache2) 8. Go to your IP address or domain name followed by "/owncloud" in your browser. 9. Done false Klaas Freitag 2016-06-23T14:30:00+02:00 14:30 00:30 Galerie Short Talk 960-opendoc-automating-documentation Creating a Doc infrastructure for Tumbleweed openSUSE A suggestion for a new approach to documenation. "Breaking the perception that a rolling release cannot be documented" Forums, mailing lists, wikis, release notes, Git commit comments, QA tools like Open QA and many more: A vast abundance of resources offer indicators for documentation. However the data is neither collected nor structured nor viewed at all, mostly because everybody thinks it's a tedious work. But modern knowledge management tools can collect the data, structure it, add semantic analysis and put it into a format that a community can benefit from - with minimal human input. Imagine a website like Stackoverflow or Reddit, but (open source and company-independent) with automated input, but ranked by interest (views), helpfulness and discussion thread length. The input triggers could become an open project, like Open QA's tests. A "Doc Gardener" could then pick up the most important tasks and move them to openSUSE wiki or Enterprise Documentation, at the same time helping the community and spotting pain points of the community. A suggestion for a new approach to documenation. "Breaking the perception that a rolling release cannot be documented" Forums, mailing lists, wikis, release notes, Git commit comments, QA tools like Open QA and many more: A vast abundance of resources offer indicators for documentation. However the data is neither collected nor structured nor viewed at all, mostly because everybody thinks it's a tedious work. But modern knowledge management tools can collect the data, structure it, add semantic analysis and put it into a format that a community can benefit from - with minimal human input. Imagine a website like Stackoverflow or Reddit, but (open source and company-independent) with automated input, but ranked by interest (views), helpfulness and discussion thread length. The input triggers could become an open project, like Open QA's tests. A "Doc Gardener" could then pick up the most important tasks and move them to openSUSE wiki or Enterprise Documentation, at the same time helping the community and spotting pain points of the community. false Markus Feilner 2016-06-23T15:15:00+02:00 15:15 00:15 Galerie Lightning Talk 964-my-last-talk-what-s-that-distribution A distribution quiz for nerds Community & Project I assume this will be the last talk I ever give, because after this every one, every single distribution's community will be out to kill me. Ladies and Gentlemen, bring your hatchets! I have collected quotes, sentences and assumptions that speak for themselves. While I am only showing one sentence each slide, the audience will have to guess the distribution that is meant. Be prepared to discuss: Who is the "Microsoft of open source?" Who thinks they own open source? Who was bought twice, while both buyers don't exist anymore? Who has hired a Gentoo guy as head of package management? Who is still compiling Libre Office and can't open a document therefore? What's that distribution with three, four, five names, constantly changeing? Add your own, this Lightning talk is open source, and a call for your ideas and discussion. I assume this will be the last talk I ever give, because after this every one, every single distribution's community will be out to kill me. Ladies and Gentlemen, bring your hatchets! I have collected quotes, sentences and assumptions that speak for themselves. While I am only showing one sentence each slide, the audience will have to guess the distribution that is meant. Be prepared to discuss: Who is the "Microsoft of open source?" Who thinks they own open source? Who was bought twice, while both buyers don't exist anymore? Who has hired a Gentoo guy as head of package management? Who is still compiling Libre Office and can't open a document therefore? What's that distribution with three, four, five names, constantly changeing? Add your own, this Lightning talk is open source, and a call for your ideas and discussion. false Markus Feilner 2016-06-23T16:00:00+02:00 16:00 00:30 Galerie Short Talk 848-enforcement-of-a-system-wide-crypto-policy An overview of the Fedora way Technology & Development Currently each and every shipped application in distributions enforces its own policy on the allowed cryptographic algorithms/protocols. While for some this is a desirable property, for most non-UI applications and libraries in an operating system it creates an uncertainty on the available security level. The purpose of this talk is to describe the approach we've taken in Fedora to counter the issue, by enforcing system-wide policies, discuss the current outcome, lessons learned, and invite OpenSuse maintainers to participate. URLs: https://fedoraproject.org/wiki/Changes/CryptoPolicy Currently each and every shipped application in distributions enforces its own policy on the allowed cryptographic algorithms/protocols. While for some this is a desirable property, for most non-UI applications and libraries in an operating system it creates an uncertainty on the available security level. The purpose of this talk is to describe the approach we've taken in Fedora to counter the issue, by enforcing system-wide policies, discuss the current outcome, lessons learned, and invite OpenSuse maintainers to participate. URLs: https://fedoraproject.org/wiki/Changes/CryptoPolicy false Nikos Mavrogiannopoulos 2016-06-23T16:30:00+02:00 16:30 00:30 Galerie Short Talk 906-opensuse-maintenance fixing bugs after release openSUSE While openSUSE has a rolling release, which is constantly integrating new versions and bugfixes, we also have releases where the main codebase is frozen and we release bugfix and security updates via online updates. This process has been established for a while and is coordinated by the openSUSE Maintenance Team. Also, last year a new release came with new and changed update origins, openSUSE Leap 42.1. This release inherits some parts of its updates from SUSE Linux Enterprise 12, which might be confusing at times. This talk will offer a refresher on the maintenance processes and also some details you as packager needs to observe, also especially in regards to Leap. While openSUSE has a rolling release, which is constantly integrating new versions and bugfixes, we also have releases where the main codebase is frozen and we release bugfix and security updates via online updates. This process has been established for a while and is coordinated by the openSUSE Maintenance Team. Also, last year a new release came with new and changed update origins, openSUSE Leap 42.1. This release inherits some parts of its updates from SUSE Linux Enterprise 12, which might be confusing at times. This talk will offer a refresher on the maintenance processes and also some details you as packager needs to observe, also especially in regards to Leap. false Marcus Meissner 2016-06-23T17:00:00+02:00 17:00 01:00 Galerie Long Talk 942-orchestrating-docker-containers Managing containers at scale Technology & Development As more and more users are starting to consider Docker in production environments, people have realized that having Docker alone is not enough. Instead, the community is gearing towards orchestration solutions: tools, frameworks and practices that deal with how containers are deployed on production and how administrators can monitor all this without going crazy. In this talk we are going to describe and detail the orchestration solution that we decided to support in SUSE, why we did it and how our users will benefit from it. As more and more users are starting to consider Docker in production environments, people have realized that having Docker alone is not enough. Instead, the community is gearing towards orchestration solutions: tools, frameworks and practices that deal with how containers are deployed on production and how administrators can monitor all this without going crazy. In this talk we are going to describe and detail the orchestration solution that we decided to support in SUSE, why we did it and how our users will benefit from it. false flavio_castelli 2016-06-23T18:45:00+02:00 18:45 01:15 Galerie Entertainment 1020-city-tour-june-23-meet-up-point-at-the-kater-murr Entertainment Come on the Nuremberg City Tour. There are only 25 seats for this tour and you must register for it before the tour because of the limited seats that are available. See the historical sites in this medieval city in Bavaria. The tour is 75 minutes. If the seats for this tour fill up, don't worry. There are others you can sign up for at http://events.opensuse.org Please ensure you register for one of the tours under "My Registration". There needs to be a minimum of 10 people per tours. Tours that have less than 10 people registered will be canceled. The cost of the tour will be split between the attendees. Example - The city tour is 60 € per tour. If there are 20 attendees for the tour, each person would pay 3 €. The meet up point for all the tours will start at the Kater Murr - Johannesgasse 14, 90402 Nürnberg Come on the Nuremberg City Tour. There are only 25 seats for this tour and you must register for it before the tour because of the limited seats that are available. See the historical sites in this medieval city in Bavaria. The tour is 75 minutes. If the seats for this tour fill up, don't worry. There are others you can sign up for at http://events.opensuse.org Please ensure you register for one of the tours under "My Registration". There needs to be a minimum of 10 people per tours. Tours that have less than 10 people registered will be canceled. The cost of the tour will be split between the attendees. Example - The city tour is 60 € per tour. If there are 20 attendees for the tour, each person would pay 3 €. The meet up point for all the tours will start at the Kater Murr - Johannesgasse 14, 90402 Nürnberg false Douglas DeMaio 2016-06-23T11:00:00+02:00 11:00 03:00 Seminarraum 1 Workshop 788-opensuse-wants-you-the-software-portal Support software.opensuse.org with your work Community & Project software.opensuse.org is a very visible and useful piece of infrastructure for the openSUSE project, but it is currently under low maintenance and affected by a number of issues. Most of them are consequences of the lack of manpower and/or derived from the fact that openSUSE has changed quite a lot in recent times at many levels. The goal of this workshop is to get more people involved with the maintenance of software.o.o in the long term (so we don't get out of sync with reality anymore) and also to boost an effort to revamp the portal in order to: - Update the content to the new reality. - Give more visibility to the unofficial ports and complementary projects like Evergreen. - Fix the searching and downloading problems derived from the changes in the current OBS usage. Everybody is welcome, from ruby/web developers to people who simply want to express ideas about how the portal should look like. The current maintainers will be there helping everybody to get their hands dirty. If you want to prepare in advance, take a look to the software.o.o repository[1] (it's a Ruby on Rails application) and this explanation[2] about what needs to be fixed (full of links). [1] https://github.com/openSUSE/software-o-o [2] http://lists.opensuse.org/opensuse-project/2016-02/msg00146.html software.opensuse.org is a very visible and useful piece of infrastructure for the openSUSE project, but it is currently under low maintenance and affected by a number of issues. Most of them are consequences of the lack of manpower and/or derived from the fact that openSUSE has changed quite a lot in recent times at many levels. The goal of this workshop is to get more people involved with the maintenance of software.o.o in the long term (so we don't get out of sync with reality anymore) and also to boost an effort to revamp the portal in order to: - Update the content to the new reality. - Give more visibility to the unofficial ports and complementary projects like Evergreen. - Fix the searching and downloading problems derived from the changes in the current OBS usage. Everybody is welcome, from ruby/web developers to people who simply want to express ideas about how the portal should look like. The current maintainers will be there helping everybody to get their hands dirty. If you want to prepare in advance, take a look to the software.o.o repository[1] (it's a Ruby on Rails application) and this explanation[2] about what needs to be fixed (full of links). [1] https://github.com/openSUSE/software-o-o [2] http://lists.opensuse.org/opensuse-project/2016-02/msg00146.html false Ancor González Sosa 2016-06-23T14:00:00+02:00 14:00 01:00 Seminarraum 1 Long Talk 832-teaching-opensource inspiring the next hackers Community & Project (Similar to presentation given at oSC2015, but different based on evolution of the topic through different conferences.) For Linux to continue to mature and improve through the ages, the engineers who build it, mold it, and shepherd it must be wise, caring, and skilled. The Linux Community needs new participants, insightful governance, and new owners. Yet students in primary, secondary, and even university schools do not have the exposure to opensource and Linux that suggests a sustainably velocity for the porjects that we love. Yes, The Linux Foundation convinces us that opensource is growing (and their metrics are sound), but the growth of the skilled labor that will sustain Linux is noticeably flat. We must become teachers. We must be mentors. We must instill in young programmers the wisdom, the caring, and the skills that secure a promising future for the projects that we love. As an instructor at university, I have the meaningful responsibility to teach students about software engineering and the ethics of technology. In this presentation I explain how I teach, aand even what I teach. My purpose is to inspire the openSUSE Community that this sort of teaching and mentoring needs to happen not only in the schools, but in all teaching opportunities, in our projects, and with our children. (Similar to presentation given at oSC2015, but different based on evolution of the topic through different conferences.) For Linux to continue to mature and improve through the ages, the engineers who build it, mold it, and shepherd it must be wise, caring, and skilled. The Linux Community needs new participants, insightful governance, and new owners. Yet students in primary, secondary, and even university schools do not have the exposure to opensource and Linux that suggests a sustainably velocity for the porjects that we love. Yes, The Linux Foundation convinces us that opensource is growing (and their metrics are sound), but the growth of the skilled labor that will sustain Linux is noticeably flat. We must become teachers. We must be mentors. We must instill in young programmers the wisdom, the caring, and the skills that secure a promising future for the projects that we love. As an instructor at university, I have the meaningful responsibility to teach students about software engineering and the ethics of technology. In this presentation I explain how I teach, aand even what I teach. My purpose is to inspire the openSUSE Community that this sort of teaching and mentoring needs to happen not only in the schools, but in all teaching opportunities, in our projects, and with our children. false craig gardner 2016-06-23T15:00:00+02:00 15:00 00:30 Seminarraum 1 Short Talk 834-opensuse-101 Our Mentoring Program Community & Project This talk is about the the new openSUSE mentoring program that we just started and it's first practical application: Google Summer of Code (GSoC) 2016. Here is what we are going to talk about: * Introduce you to the general ideas of openSUSE 101 and GSoC * Show you our projects participating in GSoC 2016 * Teach you how to get started with mentoring * Advise you on how to help to attract students * Give you a outlook of 101's future * Tell you how to contribute to 101 * Answer the remaining questions you might have If you're interested in helping less experienced/knowledgeable people with Free Software development swing by and let's collaborate! :-) This talk is about the the new openSUSE mentoring program that we just started and it's first practical application: Google Summer of Code (GSoC) 2016. Here is what we are going to talk about: * Introduce you to the general ideas of openSUSE 101 and GSoC * Show you our projects participating in GSoC 2016 * Teach you how to get started with mentoring * Advise you on how to help to attract students * Give you a outlook of 101's future * Tell you how to contribute to 101 * Answer the remaining questions you might have If you're interested in helping less experienced/knowledgeable people with Free Software development swing by and let's collaborate! :-) false Henne Vogelsang 2016-06-23T16:00:00+02:00 16:00 01:00 Seminarraum 1 Long Talk 874-invis-server openSUSE basierte Server für kleine Unternehmen Community & Project invis-Server kümmern sich um Netzwerkorganisation (DHCP, DNS, Active Directory), haben mit dem invis-Portal eine einfach gehaltene Benutzerschnittstelle, und warten mit umfangreicher Software-Ausstattung (Groupware, Warenwirtschaft, Wiki, Cloud, VPN) auf. Der Talk informiert über den aktuellen Entwicklungsstand des openSUSE Spin-Off Projektes "invis-server". Sprache: deutsch Projekt-Vorstellung im openSUSE-Wiki: https://de.opensuse.org/Portal:Invis-Server invis-Server kümmern sich um Netzwerkorganisation (DHCP, DNS, Active Directory), haben mit dem invis-Portal eine einfach gehaltene Benutzerschnittstelle, und warten mit umfangreicher Software-Ausstattung (Groupware, Warenwirtschaft, Wiki, Cloud, VPN) auf. Der Talk informiert über den aktuellen Entwicklungsstand des openSUSE Spin-Off Projektes "invis-server". Sprache: deutsch Projekt-Vorstellung im openSUSE-Wiki: https://de.opensuse.org/Portal:Invis-Server false Stefan Schäfer 2016-06-23T17:00:00+02:00 17:00 01:00 Seminarraum 1 Long Talk 804-opensuse-jeopardy Gameshow for Geek(o)s Community & Project Do you know the "Jeopardy!" TV game show? Do you also know something about Linux and openSUSE? Fine! Then you are the perfect candidate to play a round of openSUSE Jeopardy! As in the TV show, the answers will be given, and the candidates (hopefully) respond with the correct question. This also means: I'll need some candidates ;-) Do you know the "Jeopardy!" TV game show? Do you also know something about Linux and openSUSE? Fine! Then you are the perfect candidate to play a round of openSUSE Jeopardy! As in the TV show, the answers will be given, and the candidates (hopefully) respond with the correct question. This also means: I'll need some candidates ;-) false Christian Boltz 2016-06-23T12:30:00+02:00 12:30 01:00 Seminarraum 2 Long Talk 930-systemd-translate-dependencies-service-in-unit-files-an-overview-of-its-testsuite Technology & Development systemd has been officially introduced by openSuSE since end of 2011 through the first release of openSUSE-12.1. However a couple of the bugs opened against systemd recently shows that there are some misunderstandings about one of the basic but fundamental concept of systemd: service dependencies and orderings and how to translate such constraints into a native unit file. This might also explain why a limited number of packages is still using the old sysV init scripts instead of migrating towards the systemd native unit file. The first part of this short talk will try to explain simply how services are started by systemd and how to translate service dependencies and ordering contraints into a unit file. The second part of the talk will be a short introduction to the systemd testsuite, its content, usage and extensibility. Indeed the systemd source code also contains a test suite for checking the proper functionality of the compiled sources. It was introduced in 2012 and has been extended since then to test for known problems in various areas. It is useful for automatic testing of code changes and helps to provide quality assured code. systemd testsuite will be part of the SuSE Quality Assurance tests for the next SLES release and might also be become part of OpenQA. This talk should fit in "Technology & Development" track. systemd has been officially introduced by openSuSE since end of 2011 through the first release of openSUSE-12.1. However a couple of the bugs opened against systemd recently shows that there are some misunderstandings about one of the basic but fundamental concept of systemd: service dependencies and orderings and how to translate such constraints into a native unit file. This might also explain why a limited number of packages is still using the old sysV init scripts instead of migrating towards the systemd native unit file. The first part of this short talk will try to explain simply how services are started by systemd and how to translate service dependencies and ordering contraints into a unit file. The second part of the talk will be a short introduction to the systemd testsuite, its content, usage and extensibility. Indeed the systemd source code also contains a test suite for checking the proper functionality of the compiled sources. It was introduced in 2012 and has been extended since then to test for known problems in various areas. It is useful for automatic testing of code changes and helps to provide quality assured code. systemd testsuite will be part of the SuSE Quality Assurance tests for the next SLES release and might also be become part of OpenQA. This talk should fit in "Technology & Development" track. false fbui 2016-06-23T14:30:00+02:00 14:30 00:30 Seminarraum 2 Short Talk 940-building-debian-based-live-systems-with-the-open-build-service openSUSE The Debian Live project uses a framework called live-build to build the official Debian Live images. Since version 2.6 the open-build-service supports building live systems based on Debian with the help of live-build. This talk gives an overview over the available features, how they are used to produce the Brocade 5600 vRouter in an enterprise-class build environment and how that enables developers to (nearly) freely choose their development environment. The Debian Live project uses a framework called live-build to build the official Debian Live images. Since version 2.6 the open-build-service supports building live systems based on Debian with the help of live-build. This talk gives an overview over the available features, how they are used to produce the Brocade 5600 vRouter in an enterprise-class build environment and how that enables developers to (nearly) freely choose their development environment. false Jan Blunck 2016-06-23T15:00:00+02:00 15:00 01:30 Seminarraum 2 90-Minute Workshop 894-ruby-on-rails-101 Technology & Development Ruby on Rails is the famous open-source web framework that powers top websites such as Twitter, Hulu, GitHub, and the Yellow Pages. In this workshop, we will teach you the basics of Rails while developing a basic micro blogging app. Please make sure to install Ruby on Rails before the workshop: zypper -q -n install update-alternatives ruby-devel make gcc gcc-c++ libxml2-devel libxslt-devel nodejs sqlite3-devel imagemagick gem install bundler bundle.ruby2.1 install Ruby on Rails is the famous open-source web framework that powers top websites such as Twitter, Hulu, GitHub, and the Yellow Pages. In this workshop, we will teach you the basics of Rails while developing a basic micro blogging app. Please make sure to install Ruby on Rails before the workshop: zypper -q -n install update-alternatives ruby-devel make gcc gcc-c++ libxml2-devel libxslt-devel nodejs sqlite3-devel imagemagick gem install bundler bundle.ruby2.1 install false Christian Bruckmayer 2016-06-23T16:30:00+02:00 16:30 01:30 Seminarraum 2 90-Minute Workshop 892-20-000-leagues-under-suse-studio Or how to build your custom Linux image Technology & Development You all know the amazing SUSE Studio and how to build your custom openSUSE linux with it. Luckily, it abstracts all the complicated technologies behind image building from us. It looks like magic! But actual it is not magic. Powerful tools like openSUSE KIWI and the Open Build Service running behind SUSE Studio. In this workshop, Professor Aronnax and Captain Nemo will dive with us underneath SUSE Studio to find out how it works inside. On our adventure we will discover how openSUSE KIWI works and how you can use advanced possibilities to customize your image. If you want to bring your Studio skills you should attend this workshop! You all know the amazing SUSE Studio and how to build your custom openSUSE linux with it. Luckily, it abstracts all the complicated technologies behind image building from us. It looks like magic! But actual it is not magic. Powerful tools like openSUSE KIWI and the Open Build Service running behind SUSE Studio. In this workshop, Professor Aronnax and Captain Nemo will dive with us underneath SUSE Studio to find out how it works inside. On our adventure we will discover how openSUSE KIWI works and how you can use advanced possibilities to customize your image. If you want to bring your Studio skills you should attend this workshop! false Christian Bruckmayer 2016-06-24T10:00:00+02:00 10:00 01:00 Saal Long Talk 786-apparmor-crash-course Learn how to create and maintain AppArmor profiles in less than an hour! Technology & Development AppArmor is an effective and easy-to-use Linux application security system. AppArmor proactively protects the operating system and applications from external or internal threats, even zero-day attacks, by enforcing good behavior and preventing even unknown application flaws from being exploited. AppArmor security policies, called profiles, completely define what system resources individual applications can access, and with what privileges. A number of default profiles are included with AppArmor, and using a combination of advanced static analysis and learning-based tools, AppArmor profiles for even very complex applications can be deployed successfully in a matter of hours. <p>This talk gives an introduction to AppArmor. I'll show the AppArmor tools to create and update profiles and also explain the profile syntax so that you can understand and manually edit profiles. I'll also show some advanced usage - securing a typical webserver, setting up read-only root access to do backups and how to (ab)use AppArmor for debugging. <p><a href="http://blog.cboltz.de/uploads/apparmor-english-2016-osc.pdf">Slides (PDF)</a> AppArmor is an effective and easy-to-use Linux application security system. AppArmor proactively protects the operating system and applications from external or internal threats, even zero-day attacks, by enforcing good behavior and preventing even unknown application flaws from being exploited. AppArmor security policies, called profiles, completely define what system resources individual applications can access, and with what privileges. A number of default profiles are included with AppArmor, and using a combination of advanced static analysis and learning-based tools, AppArmor profiles for even very complex applications can be deployed successfully in a matter of hours. <p>This talk gives an introduction to AppArmor. I'll show the AppArmor tools to create and update profiles and also explain the profile syntax so that you can understand and manually edit profiles. I'll also show some advanced usage - securing a typical webserver, setting up read-only root access to do backups and how to (ab)use AppArmor for debugging. <p><a href="http://blog.cboltz.de/uploads/apparmor-english-2016-osc.pdf">Slides (PDF)</a> false Christian Boltz 2016-06-24T11:00:00+02:00 11:00 01:00 Saal Long Talk 1040-the-arm-race-the-tortoise-and-the-hare Keynote Norman Fraser, Ph.D. is the CEO of SoftIron Ltd. Norman Fraser, Ph.D. is the CEO of SoftIron Ltd. false Douglas DeMaio 2016-06-24T12:00:00+02:00 12:00 01:00 Saal Long Talk 802-the-state-of-arm-a-64bit-view-of-what-does-doesn-t-work State of the Union on ARM - the software, the hardware and anything in between Community & Project The AArch64 port is now in pretty good shape with most things ported and built. However we know that there is plenty of software that is not optimised and some may not actually work at all. Please come along and moan about anything you have found which doesn't work as well on AArch64 as it does on x86. We (Linaro, ARM and openSUSE) want your feedback on where to direct effort next. This talk will cover the current status of the port with both and upstream and openSUSE specific view, and crucially hardware availability. Only a few things are completely missing, but we know that a lot of software is using the basic 'fallback support' where other architectures have specific optimisations. Some stuff is probably building, but not actually working right. We are keen to fix things that are actively getting in the way of using AArch64 in real systems, but to do that we need feedback from users on what to look at next as we move from mostly enablement to mostly optimisation. GCC, OpenJDK, & LLVM are known to be in good shape, but there is a pile of other stuff that probably isn't. It's very hard to test 'all the software in the world', so please tell us about stuff you've noticed not working well, or incredibly slowly, or that you suspect might be a problem and need work. The AArch64 port is now in pretty good shape with most things ported and built. However we know that there is plenty of software that is not optimised and some may not actually work at all. Please come along and moan about anything you have found which doesn't work as well on AArch64 as it does on x86. We (Linaro, ARM and openSUSE) want your feedback on where to direct effort next. This talk will cover the current status of the port with both and upstream and openSUSE specific view, and crucially hardware availability. Only a few things are completely missing, but we know that a lot of software is using the basic 'fallback support' where other architectures have specific optimisations. Some stuff is probably building, but not actually working right. We are keen to fix things that are actively getting in the way of using AArch64 in real systems, but to do that we need feedback from users on what to look at next as we move from mostly enablement to mostly optimisation. GCC, OpenJDK, & LLVM are known to be in good shape, but there is a pile of other stuff that probably isn't. It's very hard to test 'all the software in the world', so please tell us about stuff you've noticed not working well, or incredibly slowly, or that you suspect might be a problem and need work. false Andrew Wafaa 2016-06-24T13:00:00+02:00 13:00 00:30 Saal Short Talk 920-opensuse-on-arm-boards A review of the Tumbleweed ARM port, Contrib projects and hardware Technology & Development A lot of work has been going on around the openSUSE ARM port. Which hardware is new? Where is openSUSE running? What has improved in the past year? Whom can you contact? Where are things headed? Expect answers to these and more questions around ARM hardware. A lot of work has been going on around the openSUSE ARM port. Which hardware is new? Where is openSUSE running? What has improved in the past year? Whom can you contact? Where are things headed? Expect answers to these and more questions around ARM hardware. false Andreas Färber 2016-06-24T13:30:00+02:00 13:30 00:30 Saal Short Talk 934-an-embedded-usb-cloud-storage-gateway-with-tumbleweed Technology & Development Scale-out block storage offerings, such as Ceph RADOS Block Devices, offer a number of desirable features including fault tolerance, thin-provisioning, online resize and snapshots. Exposing such storage for access via an embedded USB storage gadget can solve a number of factors limiting adoption, namely: - Interoperability + Cloud storage can now be consumed by almost any system with a USB port - Ease of use + Configure once, then plug and play anywhere - Security + Encryption can be performed on the USB device itself, reducing reliance on cloud storage providers This presentation will introduce and demonstrate a USB cloud storage gateway prototype developed during SUSE Hack Week, running on an ARM board with openSUSE Tumbleweed. Scale-out block storage offerings, such as Ceph RADOS Block Devices, offer a number of desirable features including fault tolerance, thin-provisioning, online resize and snapshots. Exposing such storage for access via an embedded USB storage gadget can solve a number of factors limiting adoption, namely: - Interoperability + Cloud storage can now be consumed by almost any system with a USB port - Ease of use + Configure once, then plug and play anywhere - Security + Encryption can be performed on the USB device itself, reducing reliance on cloud storage providers This presentation will introduce and demonstrate a USB cloud storage gateway prototype developed during SUSE Hack Week, running on an ARM board with openSUSE Tumbleweed. false David Disseldorp 2016-06-24T14:00:00+02:00 14:00 00:30 Saal Short Talk 946-uefi-grub2-on-raspberry-pi How to revolutionize the way we boot on ARM, making the world a better place Technology & Development Booting is hard. Booting in the ARM world is even harder. State of the art are a dozen different boot loaders that may or may not deserve that name. Each gets configured differently and each has its own pros and cons. As a distribution this is a nightmare. Configuring each and every one of them complicates code that really should be very simple. To solve the problem, we can just add another layer of abstraction (grub2) on top of another layer of abstraction (uEFI) on top of another layer of abstraction (u-boot). Follow me on a journey on how all those layers can make life easier for the distribution and how much fun uEFI really is. After this talk, you will know how ARM systems boot, what uEFI really means, how uEFI binaries interact with firmware and how we are going to move to uEFI based boot on openSUSE for ARM. Booting is hard. Booting in the ARM world is even harder. State of the art are a dozen different boot loaders that may or may not deserve that name. Each gets configured differently and each has its own pros and cons. As a distribution this is a nightmare. Configuring each and every one of them complicates code that really should be very simple. To solve the problem, we can just add another layer of abstraction (grub2) on top of another layer of abstraction (uEFI) on top of another layer of abstraction (u-boot). Follow me on a journey on how all those layers can make life easier for the distribution and how much fun uEFI really is. After this talk, you will know how ARM systems boot, what uEFI really means, how uEFI binaries interact with firmware and how we are going to move to uEFI based boot on openSUSE for ARM. false Alexander Graf 2016-06-24T14:30:00+02:00 14:30 00:30 Saal Short Talk 986-let-openqa-test-you-own-stuff How openQA helps our team and we help openQA. Technology & Development OpenQA is openSUSE's powerful installation testing environment. It normally tests whole ISO images that need to be mastered first it is not very straightforward to check single packages within the development process of new features or bug fixes. I'll show you how we managed to test our stuff as early as possible without mastering whole ISOs and how we enabled our developers to easily adapt existing openQA tests to changes in YaST's behaviour and user interface to be able to deliver updated openQA tests along with updated YaST versions. OpenQA is openSUSE's powerful installation testing environment. It normally tests whole ISO images that need to be mastered first it is not very straightforward to check single packages within the development process of new features or bug fixes. I'll show you how we managed to test our stuff as early as possible without mastering whole ISOs and how we enabled our developers to easily adapt existing openQA tests to changes in YaST's behaviour and user interface to be able to deliver updated openQA tests along with updated YaST versions. false Christopher Hofmann 2016-06-24T15:00:00+02:00 15:00 01:00 Saal Long Talk 1056-improve-the-quality-of-plasma-with-wayland openSUSE A talk from Martin Graesslin (one of the top Plasma developers) about how to Improve the quality of Plasma with Wayland A talk from Martin Graesslin (one of the top Plasma developers) about how to Improve the quality of Plasma with Wayland false Richard Brown 2016-06-24T18:30:00+02:00 18:30 01:15 Saal Entertainment 1046-suse-band Entertainment Come listen to the SUSE Band jam live on stage in the Saal Room Come listen to the SUSE Band jam live on stage in the Saal Room false Douglas DeMaio 2016-06-24T10:00:00+02:00 10:00 01:00 Roter Salon Long Talk 1090-gnu-health-on-opensuse Community & Project GNU Health is the leading free health and hospital information system. This presentation gives an overview about the philosophy behind GNU Health, its functionality and how it is supported on openSUSE GNU Health is the leading free health and hospital information system. This presentation gives an overview about the philosophy behind GNU Health, its functionality and how it is supported on openSUSE false Douglas DeMaio 2016-06-24T12:00:00+02:00 12:00 00:30 Roter Salon Short Talk 912-cultural-learnings-of-albania-linux-scene-for-make-benefit-glorious-nation-of-opensuse How to jump-start a GNU/Linux and openSUSE community in your country, even if you think it's hard. openSUSE The Albanian people, ruled by a harsh dictator that forced everyone to have a community oriented decision making process for almost everything, were totally confused after the 90s and started to act with aggressive individualism for almost every daily activity in a small. In this reality, a small group of people started promoting GNU/Linux and other FLOSS platforms through a modest community located in a place they called hackerspace. Inspired by regional work of other communities the small community used all the best practices of these communities, and avoided everything else that they considered that would not work in Albania and started working hard. Really hard, until the community was considered self sustainable not only for GNU/Linux initiatives, but also for other FLOSS communities such as Mozilla, Wikipedia, OpenStreetMap and more. During my talk I will share all the learnings accumulated in four years on building and managing a community from scratch in an environment that is considered hostile for any Linux distro as a business, government and personal solution. And maybe our learnings will inspire anyone from the audience create their own openSUSE community in their country, just like we did. The Albanian people, ruled by a harsh dictator that forced everyone to have a community oriented decision making process for almost everything, were totally confused after the 90s and started to act with aggressive individualism for almost every daily activity in a small. In this reality, a small group of people started promoting GNU/Linux and other FLOSS platforms through a modest community located in a place they called hackerspace. Inspired by regional work of other communities the small community used all the best practices of these communities, and avoided everything else that they considered that would not work in Albania and started working hard. Really hard, until the community was considered self sustainable not only for GNU/Linux initiatives, but also for other FLOSS communities such as Mozilla, Wikipedia, OpenStreetMap and more. During my talk I will share all the learnings accumulated in four years on building and managing a community from scratch in an environment that is considered hostile for any Linux distro as a business, government and personal solution. And maybe our learnings will inspire anyone from the audience create their own openSUSE community in their country, just like we did. false Redon Skikuli 2016-06-24T12:30:00+02:00 12:30 00:30 Roter Salon Short Talk 948-sandboxing-gui-applications Technology & Development There are plenty of resources how to do sandboxing or isolation of 'server applications'. But what if I want to isolate my browser or I do not trust 3rd party closed source GUI based applications I still need to use? Until our lord and saviour Wayland is ready and can join holy trinity of Wayland - libinput - cgroups, we still need to overcome basic problem of how to get the damned X display into the container and don't compromise on security. In this short talk I will present my (X based) solution, provide some overview of other methods currently available, and bright future of the xdg-app. There are plenty of resources how to do sandboxing or isolation of 'server applications'. But what if I want to isolate my browser or I do not trust 3rd party closed source GUI based applications I still need to use? Until our lord and saviour Wayland is ready and can join holy trinity of Wayland - libinput - cgroups, we still need to overcome basic problem of how to get the damned X display into the container and don't compromise on security. In this short talk I will present my (X based) solution, provide some overview of other methods currently available, and bright future of the xdg-app. false Ondrej Holecek 2016-06-24T13:00:00+02:00 13:00 00:30 Roter Salon Short Talk 840-syscalls gate to the Linux kernel Technology & Development When applications need to do more than mere calculations (e.g. writing a message or file), they need syscalls or system calls. This talk will give an introduction on the what/why/how applications call into the kernel, look at some illustrative examples and the interesting possibilities to make this interaction visible using strace. This is intended to be an English version of a presentation given in German last year, with slides at https://www.zq1.de/~bernhard/doc/2015CLT/syscalls.pdf and audio recordings at https://www.zq1.de/~bernhard/doc/2015CLT/so_v3_3.ogg When applications need to do more than mere calculations (e.g. writing a message or file), they need syscalls or system calls. This talk will give an introduction on the what/why/how applications call into the kernel, look at some illustrative examples and the interesting possibilities to make this interaction visible using strace. This is intended to be an English version of a presentation given in German last year, with slides at https://www.zq1.de/~bernhard/doc/2015CLT/syscalls.pdf and audio recordings at https://www.zq1.de/~bernhard/doc/2015CLT/so_v3_3.ogg false Bernhard M. 2016-06-24T13:30:00+02:00 13:30 01:00 Roter Salon Long Talk 796-scaling-your-logging-infrastructure-with-syslog-ng From raw data to Big Data Technology & Development The syslog-ng application is an enhanced logging daemon, with a focus on central log collection. It collects logs from many different sources, processes and filters them and finally it stores them or routes them for further analysis. This session focuses on how syslog-ng parses important information from incoming messages, and how it routes logs, feeding downstream systems using arbitrary formats. We will also discuss how the client – relay – server architecture can solve scalability problems. Also, I will present some of the recently introduced “Big Data” destinations of syslog-ng, which can help to scale your infrastructure even further. The syslog-ng application is an enhanced logging daemon, with a focus on central log collection. It collects logs from many different sources, processes and filters them and finally it stores them or routes them for further analysis. This session focuses on how syslog-ng parses important information from incoming messages, and how it routes logs, feeding downstream systems using arbitrary formats. We will also discuss how the client – relay – server architecture can solve scalability problems. Also, I will present some of the recently introduced “Big Data” destinations of syslog-ng, which can help to scale your infrastructure even further. false Peter Czanik 2016-06-24T15:00:00+02:00 15:00 00:30 Roter Salon Short Talk 828-disk-encryption Encrypting storage media and full systems with openSUSE openSUSE Some basics and challenges on disk encryption will be presented. We will go through the creation and use of an encrypted USB stick, as well as full disk encryption using openSUSE. The talk will conclude discussing some common attack scenarios as well as pointing out feature requests / bugs for potential contributors. Some basics and challenges on disk encryption will be presented. We will go through the creation and use of an encrypted USB stick, as well as full disk encryption using openSUSE. The talk will conclude discussing some common attack scenarios as well as pointing out feature requests / bugs for potential contributors. false Andreas Stieger 2016-06-24T16:00:00+02:00 16:00 01:00 Roter Salon Long Talk 978-images-for-the-clouds-with-kiwi-and-obs openSUSE The openSUSE KIWI Imaging System delivers complete operating system images for different hardware and virtualization platforms. The Open Build Service is the one stop solution for building software packages from sources in an automatic, consistent and reproducible way. Combine both to automate image delivery of various Linux Operating System flavours to different virtualization platforms including your custom built software. This talk will show the benefits of using the KIWI / OBS combination for cloud image delivery, explain the basic setup and concepts of OBS and KIWI but also talk about different problems (and the solutions we found for them!) experienced in real-life setups of different sizes. Slides: http://de.slideshare.net/b1-systems/images-for-the-clouds-with-kiwi-obs-63605428 The openSUSE KIWI Imaging System delivers complete operating system images for different hardware and virtualization platforms. The Open Build Service is the one stop solution for building software packages from sources in an automatic, consistent and reproducible way. Combine both to automate image delivery of various Linux Operating System flavours to different virtualization platforms including your custom built software. This talk will show the benefits of using the KIWI / OBS combination for cloud image delivery, explain the basic setup and concepts of OBS and KIWI but also talk about different problems (and the solutions we found for them!) experienced in real-life setups of different sizes. Slides: http://de.slideshare.net/b1-systems/images-for-the-clouds-with-kiwi-obs-63605428 false cschneemann 2016-06-24T17:00:00+02:00 17:00 01:00 Roter Salon Long Talk 1000-gnome-keysign-signing-openpgp-keys-easily-and-securely We're having a party with no beer, but fingerprints... Technology & Development The Web of Trust is the decentralised PKI in the OpenPGP world. It depends on people participating by signing other people's keys. However, when following best practises, the act of signing a key involves secure transfer of the OpenPGP key which contemporary casual key signing protocols for small groups address by exchanging the fingerprint of the key to be signed. The key will then be downloaded over an untrusted channel and the key obtained needs to be manually verified. This presentation shows a novel approach to signing keys which makes it easy to sign a person's key. It enables very small groups of people to casually hold very small key signing parties. The key idea is to automatically authenticate the key material before the transfer via a secure audible or visual channel. A Free Software implementation of the protocol will be shown and people are invited to sign their keys :-) The Web of Trust is the decentralised PKI in the OpenPGP world. It depends on people participating by signing other people's keys. However, when following best practises, the act of signing a key involves secure transfer of the OpenPGP key which contemporary casual key signing protocols for small groups address by exchanging the fingerprint of the key to be signed. The key will then be downloaded over an untrusted channel and the key obtained needs to be manually verified. This presentation shows a novel approach to signing keys which makes it easy to sign a person's key. It enables very small groups of people to casually hold very small key signing parties. The key idea is to automatically authenticate the key material before the transfer via a secure audible or visual channel. A Free Software implementation of the protocol will be shown and people are invited to sign their keys :-) false Tobias Mueller 2016-06-24T10:00:00+02:00 10:00 01:00 Seminarraum 1 Long Talk 1004-monitoring-the-out-of-your-infrastructure Best Practice Monitoring Technology & Development Bergamot Monitoring is a modern Open Source distributed monitoring system. It offers many advanced features needed to effectively monitor large and disperse infrastructures. All while offering an easy migration path from Nagios. This talk will cover how to effectively monitor your infrastructure being on premise, in the cloud or a mix of both. How Bergamot Monitoring can make your cup of tea better, by making sure your aware of issues before your client calls you. How the features of Bergamot Monitoring can provide comprehensive and effective monitoring. Bergamot Monitoring is a modern Open Source distributed monitoring system. It offers many advanced features needed to effectively monitor large and disperse infrastructures. All while offering an easy migration path from Nagios. This talk will cover how to effectively monitor your infrastructure being on premise, in the cloud or a mix of both. How Bergamot Monitoring can make your cup of tea better, by making sure your aware of issues before your client calls you. How the features of Bergamot Monitoring can provide comprehensive and effective monitoring. false Chris Ellis 2016-06-24T12:00:00+02:00 12:00 01:00 Seminarraum 1 Long Talk 982-btrfs-snapshots-and-rollback How it works and how to avoid pitfalls Technology & Development Nearly everybody has probably run into this situation: after applying updates or other changes to the system, it no longer comes up after a reboot. Especially with a rolling release, this can happen very fast. Most of the time, this means that the system needs to be recovered with the help of a rescue system or even a backup. Wouldn't it be much better if you only needed tell grub, boot the status before the changes were made? Btrfs has some nice features that can help with this situation: copy-on-write and subvolumes. SUSE has built a solution around these two features that enables an user to boot an older snapshot. This talk will speak about: - Btrfs, Copy-on-Write and Subvolumes, how does this work, how does this play together? - Rollback on openSUSE - grub2 and rollback - Caveats and risks - Cleanup of snapshots Nearly everybody has probably run into this situation: after applying updates or other changes to the system, it no longer comes up after a reboot. Especially with a rolling release, this can happen very fast. Most of the time, this means that the system needs to be recovered with the help of a rescue system or even a backup. Wouldn't it be much better if you only needed tell grub, boot the status before the changes were made? Btrfs has some nice features that can help with this situation: copy-on-write and subvolumes. SUSE has built a solution around these two features that enables an user to boot an older snapshot. This talk will speak about: - Btrfs, Copy-on-Write and Subvolumes, how does this work, how does this play together? - Rollback on openSUSE - grub2 and rollback - Caveats and risks - Cleanup of snapshots false Thorsten Kukuk 2016-06-24T13:30:00+02:00 13:30 01:00 Seminarraum 1 Long Talk 768-how-to-bring-suse-linux-to-school SUSE/Linux in the ICT Curriculum Community & Project This talk is about how to get Linux and OSS into the schools, more precisely about getting it into the ICT curriculum at public IT-schools. As Manager Training at SUSE I am responsible for bringing SUSE Training to the market in Europe, the Middle East and Africa. For now we focus on commercial training institutes, but if we want to create real brand awareness among the future generation of Sys Admins we need to make sure that as many IT-students as possible work with SUSE/Linux during their study. How can we achieve this? I have some ideas and experience in this matter, but I would like to learn from you how to bring this to the next level. Visit this talk, learn from each other and influence the future! This talk is about how to get Linux and OSS into the schools, more precisely about getting it into the ICT curriculum at public IT-schools. As Manager Training at SUSE I am responsible for bringing SUSE Training to the market in Europe, the Middle East and Africa. For now we focus on commercial training institutes, but if we want to create real brand awareness among the future generation of Sys Admins we need to make sure that as many IT-students as possible work with SUSE/Linux during their study. How can we achieve this? I have some ideas and experience in this matter, but I would like to learn from you how to bring this to the next level. Visit this talk, learn from each other and influence the future! false Emiel Brok 2016-06-24T14:30:00+02:00 14:30 00:30 Seminarraum 1 Short Talk 922-opensuse-backports the better way to build packages for SUSE Linux Enterprise Community & Project Many projects on build.opensuse.org are building cool packages for SUSE Linux Enterprise Server. It's quite easy to just add the build repository and have your cool packages already maintained for openSUSE or other distros built for SLE - or is it? SLE itself has a limited set of packages as a foundation to build on top of and many times additional build and/or run time dependencies are missing, and must be provided in addition to your cool package. Given OBS flexibility, it's not too difficult to work around the missing dependencies but, it's still a hassle. Perhaps an unneeded hassle. Last year the openSUSE Backports project was announced as a project to consolidate the SLE builds within OBS into a common project. This talk will discuss the current status of that project, and how using it as a build target instead of the standard, package-limited SLE build repositories might just make your life easier. Many projects on build.opensuse.org are building cool packages for SUSE Linux Enterprise Server. It's quite easy to just add the build repository and have your cool packages already maintained for openSUSE or other distros built for SLE - or is it? SLE itself has a limited set of packages as a foundation to build on top of and many times additional build and/or run time dependencies are missing, and must be provided in addition to your cool package. Given OBS flexibility, it's not too difficult to work around the missing dependencies but, it's still a hassle. Perhaps an unneeded hassle. Last year the openSUSE Backports project was announced as a project to consolidate the SLE builds within OBS into a common project. This talk will discuss the current status of that project, and how using it as a build target instead of the standard, package-limited SLE build repositories might just make your life easier. false Scott Bahling 2016-06-24T15:00:00+02:00 15:00 00:30 Seminarraum 1 Short Talk 1012-configuration-management-in-production openSUSE The SUSE Operations and Services team has been using two of the most common configuration management and remote execution systems. More details about the development workflow, the master system setup and best practices that are being used will be revealed. Additionally, we'll see pros and cons we faced, plus challenges in jumping to a configuration management driven infrastructure. The SUSE Operations and Services team has been using two of the most common configuration management and remote execution systems. More details about the development workflow, the master system setup and best practices that are being used will be revealed. Additionally, we'll see pros and cons we faced, plus challenges in jumping to a configuration management driven infrastructure. false Theo Chatzimichos 2016-06-24T16:30:00+02:00 16:30 01:00 Seminarraum 1 Long Talk 954-stress-tests-and-performance-monitoring How to get a stable system Technology & Development You are using stress tests for Performance Tuning and getting stable systems or applications. I'll show you jmeter for that. Additional you'll need monitoring tools. You'll get a introduction into different ones and what you can do with it. After that you can use them as a developer in the development or as a system administrator for performance tuning. You are using stress tests for Performance Tuning and getting stable systems or applications. I'll show you jmeter for that. Additional you'll need monitoring tools. You'll get a introduction into different ones and what you can do with it. After that you can use them as a developer in the development or as a system administrator for performance tuning. false Sarah Julia Kriesch 2016-06-24T10:00:00+02:00 10:00 00:30 Galerie Short Talk 1068-kolab-summit-2-0-welcome Kolab Summit https://summit.kolab.org/ Georg C. F. Greve KOLAB SYSTEMS CEO https://summit.kolab.org/ Georg C. F. Greve KOLAB SYSTEMS CEO false Douglas DeMaio 2016-06-24T10:45:00+02:00 10:45 00:30 Galerie Short Talk 1070-kolab-summit-2-0-tech-plan-technical-roadmap Kolab Summit Aaron Seigo KOLAB SYSTEMS CTO Aaron Seigo KOLAB SYSTEMS CTO false Douglas DeMaio 2016-06-24T11:30:00+02:00 11:30 00:30 Galerie Short Talk 1080-kolab-summit-2-0-ibm-power-8 Kolab Summit Dr. Wolfgang Maier IBM Dr. Wolfgang Maier IBM false Douglas DeMaio 2016-06-24T13:00:00+02:00 13:00 00:45 Galerie 45-Minute Talk 1074-kolab-summit-2-0-safe-harbour Kolab Summit Julian Höppner Julian Höppner false Douglas DeMaio 2016-06-24T14:00:00+02:00 14:00 00:30 Galerie Short Talk 1076-kolab-summit-2-0-niche-markets Kolab Summit Hans de Raad Owner at OpenNovations Hans de Raad Owner at OpenNovations false Douglas DeMaio 2016-06-24T15:00:00+02:00 15:00 01:00 Galerie Long Talk 926-a-guided-tour-of-machinery Peace of Mind as a Service openSUSE As a Linux system administrator you are constantly working on tasks like: - Cloning a system from an existing one - Migrating a system to new hardware, a virtual environment or a different distribution - Debugging a broken system - Upgrading a system - Integrating your systems into a configuration management tool Determining and comparing the state of a system in order to work on these tasks is not a trivial thing. You have to know about services, packages, configuration files, etc. This proves to be even harder if one or more of your systems differ in version and/or distribution. You can use Machinery to inspect your Linux systems and use the generated descriptions to be interpreted in an off-line fashion, giving you the ability to compare a system at different points in time or against another system. Peace of mind will be the result of knowing that you can ensure the resulting state of your system and many other types of analysis based on your system descriptions. In this guided tour you will explore the basics of Machinery and see some examples in the wild. All from the safety of your seat. The focus will be on openSUSE systems but stay open to the use of any other distributions. Should you have any questions about Machinery your guide will be there for you at all times. As a Linux system administrator you are constantly working on tasks like: - Cloning a system from an existing one - Migrating a system to new hardware, a virtual environment or a different distribution - Debugging a broken system - Upgrading a system - Integrating your systems into a configuration management tool Determining and comparing the state of a system in order to work on these tasks is not a trivial thing. You have to know about services, packages, configuration files, etc. This proves to be even harder if one or more of your systems differ in version and/or distribution. You can use Machinery to inspect your Linux systems and use the generated descriptions to be interpreted in an off-line fashion, giving you the ability to compare a system at different points in time or against another system. Peace of mind will be the result of knowing that you can ensure the resulting state of your system and many other types of analysis based on your system descriptions. In this guided tour you will explore the basics of Machinery and see some examples in the wild. All from the safety of your seat. The focus will be on openSUSE systems but stay open to the use of any other distributions. Should you have any questions about Machinery your guide will be there for you at all times. false Mauro Morales 2016-06-24T16:00:00+02:00 16:00 01:00 Galerie Long Talk 956-openqa-avoiding-disasters-of-biblical-proportions Technology & Development What do we mean, biblical? 40 years of darkness, earthquakes, volcanos, human sacrifice, mass hysteria, dogs and cats living together... and on that note, did you know that openQA is used by both openSUSE and Fedora? What is so awesome about this tool that traditional distribution enemies are now working together? openQA is an automated testing tool, capable of full system, console, and graphical application testing. This session will give an introduction to openQA's capabilities, share how it is used by openSUSE for the testing of Tumbleweed and Leap, and suggest ideas to attendees as how it could be used for testing their software, operating systems, or virtual machine images. What do we mean, biblical? 40 years of darkness, earthquakes, volcanos, human sacrifice, mass hysteria, dogs and cats living together... and on that note, did you know that openQA is used by both openSUSE and Fedora? What is so awesome about this tool that traditional distribution enemies are now working together? openQA is an automated testing tool, capable of full system, console, and graphical application testing. This session will give an introduction to openQA's capabilities, share how it is used by openSUSE for the testing of Tumbleweed and Leap, and suggest ideas to attendees as how it could be used for testing their software, operating systems, or virtual machine images. false Richard Brown 2016-06-24T17:00:00+02:00 17:00 01:00 Galerie Long Talk 1052-testing-complex-software-in-ci Stories from SSSD and Samba world Technology & Development This talk will show stories from the trenches of developing tests for SSSD and Samba. How we developed complete integration tests that exercise all the capabilities of our software and run in environments without a real network access, without requiring root or sudo or touching the important OS interfaces. The authors of this talk work on SSSD, Samba and libssh - software that communicates over the network, often requires root access and communicates through OS interfaces. In this talk, we will show how we developed complete integration tests that exercise all the capabilities of our software and run in environments without a real network access, without requiring root or sudo or touching the important OS interfaces. In addition, our goal was that the tests must be easy to develop and must run both locally on developer's machine as well as inside popular CI engines of today, like Travis or Semaphore. To meet these goals, we had to leverage existing testing tools, but also build new ones such as pam_wrapper or libpamtest to be able to test OS-level PAM authentication and authorization. This talk will be useful for developers who write tests for software that is normally not easy to test -- attending the talk will show you how to test complex software systems in isolation. This talk will show stories from the trenches of developing tests for SSSD and Samba. How we developed complete integration tests that exercise all the capabilities of our software and run in environments without a real network access, without requiring root or sudo or touching the important OS interfaces. The authors of this talk work on SSSD, Samba and libssh - software that communicates over the network, often requires root access and communicates through OS interfaces. In this talk, we will show how we developed complete integration tests that exercise all the capabilities of our software and run in environments without a real network access, without requiring root or sudo or touching the important OS interfaces. In addition, our goal was that the tests must be easy to develop and must run both locally on developer's machine as well as inside popular CI engines of today, like Travis or Semaphore. To meet these goals, we had to leverage existing testing tools, but also build new ones such as pam_wrapper or libpamtest to be able to test OS-level PAM authentication and authorization. This talk will be useful for developers who write tests for software that is normally not easy to test -- attending the talk will show you how to test complex software systems in isolation. false Andreas Schneider 2016-06-24T12:00:00+02:00 12:00 03:00 Seminarraum 2 Workshop 944-getting-started-with-docker Getting your hands dirty with Docker Technology & Development Docker started is possibly one of the main actors responsible for putting Linux containers into the spotlight. It started as a tool around LXC containers, to become a container solution full of interesting and useful features. In this workshop we are going to teach the most remarkable features of Docker, and how can you and your team benefit from it. Docker started is possibly one of the main actors responsible for putting Linux containers into the spotlight. It started as a tool around LXC containers, to become a container solution full of interesting and useful features. In this workshop we are going to teach the most remarkable features of Docker, and how can you and your team benefit from it. false flavio_castelli 2016-06-24T15:00:00+02:00 15:00 03:00 Seminarraum 2 Workshop 992-linuxtag-style-hacking-contest Technology & Development The Hacking Contest simulates a scenario that could happen in lots of offices every day: The admin leaves the office to fetch some coffee, but doesn't enable the screen lock. In the meantime, an attacker walks into the office and hides some backdoors etc. on the admin's laptop which he/ she can abuse later. Two persons or teams play against each other, each of them has a laptop. The hacking contest consists of three rounds of 15 minutes each. In the first round, the attacker places backdoors etc. on the laptop. In the second round, the laptops are swapped, and the admin hopefully finds and removes the backdoors. The third round includes the most fun - the laptops are switched back again, and the attackers shows off what backdoors were left and how they can be abused. It's allowed to bring notes (on paper) with you, but it's not allowed to bring or use any devices (for example USB sticks). Internet access also isn't allowed. The modifications you do must meet two conditions: - the system and all services must continue to work (additional "features" are of course ok) - you must not do anything that damages data on other partitions or the hardware It wouldn't be a contest without counting points, so here are the rules for that: - making a system insecure is easy, so no points are given in the first round - in the second round, you'll get one point for every backdoor etc. you find, and another point if you can fix it - in the third round, you'll get one point for exploiting a backdoor locally, or two points if you can exploit it over the network - points from a successful access in round 3 are doubled if you get root-access - in the third round, the jury can give extra points for really evil, scary or crafty exploits - or if someone from the security team blacks out If you want to participate in the contest, please send email to hackingcontest@zq1.de Watching the contest taking place does not need registration. The Hacking Contest simulates a scenario that could happen in lots of offices every day: The admin leaves the office to fetch some coffee, but doesn't enable the screen lock. In the meantime, an attacker walks into the office and hides some backdoors etc. on the admin's laptop which he/ she can abuse later. Two persons or teams play against each other, each of them has a laptop. The hacking contest consists of three rounds of 15 minutes each. In the first round, the attacker places backdoors etc. on the laptop. In the second round, the laptops are swapped, and the admin hopefully finds and removes the backdoors. The third round includes the most fun - the laptops are switched back again, and the attackers shows off what backdoors were left and how they can be abused. It's allowed to bring notes (on paper) with you, but it's not allowed to bring or use any devices (for example USB sticks). Internet access also isn't allowed. The modifications you do must meet two conditions: - the system and all services must continue to work (additional "features" are of course ok) - you must not do anything that damages data on other partitions or the hardware It wouldn't be a contest without counting points, so here are the rules for that: - making a system insecure is easy, so no points are given in the first round - in the second round, you'll get one point for every backdoor etc. you find, and another point if you can fix it - in the third round, you'll get one point for exploiting a backdoor locally, or two points if you can exploit it over the network - points from a successful access in round 3 are doubled if you get root-access - in the third round, the jury can give extra points for really evil, scary or crafty exploits - or if someone from the security team blacks out If you want to participate in the contest, please send email to hackingcontest@zq1.de Watching the contest taking place does not need registration. false Bernhard M. 2016-06-24T14:00:00+02:00 14:00 01:30 Hacker Room 90-Minute Workshop 826-key-signing-party Get your key signed by many people in one go Community & Project At this event we would like to offer the opportunity to get your key signed by other openSUSE contributors. Some of our SUSE employees have very well connected GPG keys, don't miss this opportunity. NO SUBMISSIONS ARE POSSIBLE ANYMORE, SORRY. Keylist: ftp://ftp.suse.com/pub/projects/security/osc2016/keylist.txt Signature: ftp://ftp.suse.com/pub/projects/security/osc2016/keylist.txt.asc Here's what you have to do with this file: (0) Verify that the key-id and the fingerprint of your key(s) on this list match with your expectation. (1) Print this UTF-8 encoded file to paper. Use e.g. paps(1) from http://paps.sf.net/. (2) Compute this file's RIPEMD160 and SHA256 checksums. gpg --print-md RIPEMD160 keylist.txt gpg --print-md SHA256 keylist.txt (3) Fill in the hash values on the printout. (4) Bring the printout, a pen, and proof of identity to the keysigning event. You may find it useful to make a badge stating the number(s) of your key(s) on this list and the fact that you verified the fingerprints of your own key(s). Also provide a place to mark that your hashes match. e.g. +----------------------------+ | I am number 001 | | My key-id & fingerprint: ☑ | | The hashes: ☐ | +----------------------------+ Be on time (2016-06-24 14:00 in the Hacker Room) to actually verify the hashes as they are announced! Usually I shouldn't publish the hash values before the event to prevent people from just taking them from this mail and not computing them themselves. But we had some problems last year with mail clients mangling the attachments, which lead to non-matching hash values. So I'll publish the beginning of the RIPEMD160 hash: keylist.txt: A0AC F9EF DD99 97BC 484D (...) If you don't have that for keylist.txt, then your mail client screwed up. Regarding proof of identity: During our last keysigning party we had some ID documents that were quite old (so you used to be quite the heavy metal guy 20 years ago, but now broken by life and without hair it's hard to recognize you), hard to read etc. In such a case it doesn't hurt to bring additional documents, otherwise more security conscious people might not sign you key. Looking forward to seeing you there At this event we would like to offer the opportunity to get your key signed by other openSUSE contributors. Some of our SUSE employees have very well connected GPG keys, don't miss this opportunity. NO SUBMISSIONS ARE POSSIBLE ANYMORE, SORRY. Keylist: ftp://ftp.suse.com/pub/projects/security/osc2016/keylist.txt Signature: ftp://ftp.suse.com/pub/projects/security/osc2016/keylist.txt.asc Here's what you have to do with this file: (0) Verify that the key-id and the fingerprint of your key(s) on this list match with your expectation. (1) Print this UTF-8 encoded file to paper. Use e.g. paps(1) from http://paps.sf.net/. (2) Compute this file's RIPEMD160 and SHA256 checksums. gpg --print-md RIPEMD160 keylist.txt gpg --print-md SHA256 keylist.txt (3) Fill in the hash values on the printout. (4) Bring the printout, a pen, and proof of identity to the keysigning event. You may find it useful to make a badge stating the number(s) of your key(s) on this list and the fact that you verified the fingerprints of your own key(s). Also provide a place to mark that your hashes match. e.g. +----------------------------+ | I am number 001 | | My key-id & fingerprint: ☑ | | The hashes: ☐ | +----------------------------+ Be on time (2016-06-24 14:00 in the Hacker Room) to actually verify the hashes as they are announced! Usually I shouldn't publish the hash values before the event to prevent people from just taking them from this mail and not computing them themselves. But we had some problems last year with mail clients mangling the attachments, which lead to non-matching hash values. So I'll publish the beginning of the RIPEMD160 hash: keylist.txt: A0AC F9EF DD99 97BC 484D (...) If you don't have that for keylist.txt, then your mail client screwed up. Regarding proof of identity: During our last keysigning party we had some ID documents that were quite old (so you used to be quite the heavy metal guy 20 years ago, but now broken by life and without hair it's hard to recognize you), hard to read etc. In such a case it doesn't hurt to bring additional documents, otherwise more security conscious people might not sign you key. Looking forward to seeing you there false Johannes Segitz 2016-06-25T10:00:00+02:00 10:00 07:00 Seminarraum 2 CoderDojo 1060-coderdojo-nurnberg-2-room-2 A free programming club for children and teenagers between 7 and 15, led by experienced mentors CoderDojo CoderDojo is a global movement of free, volunteer-led, community based programming clubs for young people. At a Dojo, young people, between 7 and 17, learn how to code, develop websites, apps, programs, games and explore technology in an informal and creative environment. In addition to learning to code attendees meet like minded people and are exposed to the possibilities of technology. This is the second CoderDojo in Nürnberg. The children should bring their own laptop and NEED TO REGISTER for the dojo in advance at https://coderdojo-nbg.org/termine/termin/2016-06-25/d5b211b2a45a62b75782ee5862369ab7/details.html Children younger than 13 MUST be accompanied by an adult throughout the whole day. Companions must also register as "helpers" using the aforementioned form. It is not necessary for the attendees to have particular skills — it's totally fine to just drop by and learn something new! It's all about the fun. ;) CoderDojo is a global movement of free, volunteer-led, community based programming clubs for young people. At a Dojo, young people, between 7 and 17, learn how to code, develop websites, apps, programs, games and explore technology in an informal and creative environment. In addition to learning to code attendees meet like minded people and are exposed to the possibilities of technology. This is the second CoderDojo in Nürnberg. The children should bring their own laptop and NEED TO REGISTER for the dojo in advance at https://coderdojo-nbg.org/termine/termin/2016-06-25/d5b211b2a45a62b75782ee5862369ab7/details.html Children younger than 13 MUST be accompanied by an adult throughout the whole day. Companions must also register as "helpers" using the aforementioned form. It is not necessary for the attendees to have particular skills — it's totally fine to just drop by and learn something new! It's all about the fun. ;) false Joschi Kuphal 2016-06-25T10:00:00+02:00 10:00 00:30 Galerie Short Talk 1078-kolab-summit-2-0-welcome Kolab Summit Georg C. F. Greve KOLAB SYSTEMS CEO Georg C. F. Greve KOLAB SYSTEMS CEO false Douglas DeMaio 2016-06-25T10:45:00+02:00 10:45 00:45 Galerie 45-Minute Talk 1072-kolab-summit-2-0-the-kolab-experience-the-exciting-future-of-next-generation-clients Kolab Summit Jeroen van Meeuwen SYSTEMS ARCHITECT Jeroen van Meeuwen SYSTEMS ARCHITECT false Douglas DeMaio 2016-06-25T11:30:00+02:00 11:30 00:45 Galerie 45-Minute Talk 1082-kolab-summit-2-0-partner-programme Kolab Summit Aaron & Peter KOLAB SYSTEMS Aaron & Peter KOLAB SYSTEMS false Douglas DeMaio 2016-06-25T13:00:00+02:00 13:00 00:45 Galerie 45-Minute Talk 1084-kolab-summit-2-0-closing-talk Kolab Summit Georg C. F. Greve KOLAB SYSTEMS CEO Georg C. F. Greve KOLAB SYSTEMS CEO false Douglas DeMaio 2016-06-25T14:00:00+02:00 14:00 00:30 Galerie Short Talk 1086-kolab-summit-2-0-panel-discussion Kolab Summit Summit visitors Summit visitors false Douglas DeMaio 2016-06-25T15:00:00+02:00 15:00 00:30 Galerie Short Talk 824-cheetah Fast and secure way to run binaries from ruby Technology & Development Cheetah is fast and secure native way to execute scripts and programs in Ruby. It includes native support for pipeing, streaming input/outputs, mandatory error handling and running in chroot. The session will contain live examples of usage and comparison to native ruby methods like backticks or system call. Cheetah is fast and secure native way to execute scripts and programs in Ruby. It includes native support for pipeing, streaming input/outputs, mandatory error handling and running in chroot. The session will contain live examples of usage and comparison to native ruby methods like backticks or system call. false Josef Reidinger 2016-06-25T15:30:00+02:00 15:30 00:30 Galerie Short Talk 882-introduction-to-performance-analysis-on-opensuse-using-perf Technology & Development The perf tool was introduced with kernel version 2.6.31 but several major releases later, knowing which of its many features to use when and how to interpret the results is still challenging for many users. In this talk I will present a brief overview of the performance counters provided by modern x86 hardware followed by a discussion of the various monitoring capabilities offered by perf, when to use which and how to begin to interpret the results. This is intended as an introductory talk for those with no significant experience using perf or undertaking performance analysis. An understanding of programming and architecture basics will be helpful. The perf tool was introduced with kernel version 2.6.31 but several major releases later, knowing which of its many features to use when and how to interpret the results is still challenging for many users. In this talk I will present a brief overview of the performance counters provided by modern x86 hardware followed by a discussion of the various monitoring capabilities offered by perf, when to use which and how to begin to interpret the results. This is intended as an introductory talk for those with no significant experience using perf or undertaking performance analysis. An understanding of programming and architecture basics will be helpful. false Tony Jones 2016-06-25T18:45:00+02:00 18:45 01:15 Galerie Entertainment 1024-city-tour-june-25-meet-up-point-at-the-kater-murr Entertainment Come on the Nuremberg City Tour. There are only 25 seats for this tour and you must register for it before the tour because of the limited seats that are available. See the historical sites in this medieval city in Bavaria. The tour is 75 minutes. Please ensure you register for one of the tours under "My Registration". There needs to be a minimum of 10 people per tours. Tours that have less than 10 people registered will be canceled. The cost of the tour will be split between the attendees. Example - The city tour is 60 € per tour. If there are 20 attendees for the tour, each person would pay 3 €. The meet up point for all the tours will start at the Kater Murr - Johannesgasse 14, 90402 Nürnberg Come on the Nuremberg City Tour. There are only 25 seats for this tour and you must register for it before the tour because of the limited seats that are available. See the historical sites in this medieval city in Bavaria. The tour is 75 minutes. Please ensure you register for one of the tours under "My Registration". There needs to be a minimum of 10 people per tours. Tours that have less than 10 people registered will be canceled. The cost of the tour will be split between the attendees. Example - The city tour is 60 € per tour. If there are 20 attendees for the tour, each person would pay 3 €. The meet up point for all the tours will start at the Kater Murr - Johannesgasse 14, 90402 Nürnberg false Douglas DeMaio 2016-06-25T10:00:00+02:00 10:00 01:00 Saal Long Talk 1042-keynote-michael-miller Keynote Michael Miller is the President of Strategy, Alliances & Marketing for SUSE Michael Miller is the President of Strategy, Alliances & Marketing for SUSE false Douglas DeMaio 2016-06-25T11:00:00+02:00 11:00 01:00 Saal Long Talk 958-distribute-or-die-arguing-against-additional-repositories Just because we can ship everything in pieces doesn't mean we should openSUSE openSUSE has a wonderful platform with OBS, and tools like software.opensuse.org and 1-Click installs make it very easy for users to get additional software on their machines. This talk will discuss how this is quite often a very bad thing, leading to problems for users as well as extra work for maintainers in both the short and long term. It will discuss the benefits of putting software packages in both of openSUSE's distributions (Leap & Tumbleweed) and propose concrete steps which users and responsible package maintainers can take to ensure everything is put together and working as smoothly as possible. Finally, the session will accept the reality that putting absolutely everything in a distribution is infeasible and discuss possible criteria and guidelines for sensibly defined, maintainable additional repositories that avoid the issues raised earlier in the session. openSUSE has a wonderful platform with OBS, and tools like software.opensuse.org and 1-Click installs make it very easy for users to get additional software on their machines. This talk will discuss how this is quite often a very bad thing, leading to problems for users as well as extra work for maintainers in both the short and long term. It will discuss the benefits of putting software packages in both of openSUSE's distributions (Leap & Tumbleweed) and propose concrete steps which users and responsible package maintainers can take to ensure everything is put together and working as smoothly as possible. Finally, the session will accept the reality that putting absolutely everything in a distribution is infeasible and discuss possible criteria and guidelines for sensibly defined, maintainable additional repositories that avoid the issues raised earlier in the session. false Richard Brown 2016-06-25T12:30:00+02:00 12:30 01:00 Saal Long Talk 1014-opensuse-infrastructure How openSUSE runs its own infrastructure openSUSE How openSUSE runs its own infrastructure How openSUSE runs its own infrastructure false gschlotter 2016-06-25T13:30:00+02:00 13:30 00:30 Saal Short Talk 846-next-opensuse-asia-summit-moving-forward Community & Project The first openSUSE.Asia was awesome in Beijing, China, and this time we also made it great in Taipei , Taiwan. We designed some event made it different, and connected with local community to do more sharing and promotion for openSUSE. Just like last year said , we would like to continue this event in the future, so we will take this opportunity to introduce 2nd summit what it different, and what did we miss. This talk is quite flexible, we invite you to share your local openSUSE community, openSUSE events and openSUSE promotion in brainstorm. Or give your suggestion or advice about openSUSE promotion. Overall, anything about openSUSE promotion is welcome. The first openSUSE.Asia was awesome in Beijing, China, and this time we also made it great in Taipei , Taiwan. We designed some event made it different, and connected with local community to do more sharing and promotion for openSUSE. Just like last year said , we would like to continue this event in the future, so we will take this opportunity to introduce 2nd summit what it different, and what did we miss. This talk is quite flexible, we invite you to share your local openSUSE community, openSUSE events and openSUSE promotion in brainstorm. Or give your suggestion or advice about openSUSE promotion. Overall, anything about openSUSE promotion is welcome. false alcho 2016-06-25T14:00:00+02:00 14:00 01:00 Saal Long Talk 852-obs-and-the-real-cool-stuff How to leverage OBS to the max and see quite undocumented features Technology & Development OBS (Open Build Service) is an awesome piece of software which is yet unmatched by other available software suites. This talk shows how Kopano approached the change in their build system, and how they integrated fully fledged build requirements into OBS. From adding real custom distributions such as Collax (just using DEB, without bootstrapping at all) to integrating with Atlassian Stash - All this is possible with OBS and much more. How did we make OBS accessible for Windows users (using osc), how did we make sure we can make a sane structure based on build-time requirements for packages and not just include everything for distribution in the end? Where can I use curl requests, and how are they structured. And did you know there are authentication tokens? This talk delivers the answers to these questions. This talk will include a QA session in the end with the chance to give an answer on many (unfortunately also undocumented) features. OBS (Open Build Service) is an awesome piece of software which is yet unmatched by other available software suites. This talk shows how Kopano approached the change in their build system, and how they integrated fully fledged build requirements into OBS. From adding real custom distributions such as Collax (just using DEB, without bootstrapping at all) to integrating with Atlassian Stash - All this is possible with OBS and much more. How did we make OBS accessible for Windows users (using osc), how did we make sure we can make a sane structure based on build-time requirements for packages and not just include everything for distribution in the end? Where can I use curl requests, and how are they structured. And did you know there are authentication tokens? This talk delivers the answers to these questions. This talk will include a QA session in the end with the chance to give an answer on many (unfortunately also undocumented) features. false Michael Kromer 2016-06-25T15:00:00+02:00 15:00 01:00 Saal Long Talk 770-porting-opensuse-to-mips A how-to guide for porting to new architectures Technology & Development PowerPC and ARM ports exist for some time already, as well as unofficial SPARC and Motorola 68k efforts. This talk will go into details of how to start such a port with OBS and give an update on the progress made for mipsel. PowerPC and ARM ports exist for some time already, as well as unofficial SPARC and Motorola 68k efforts. This talk will go into details of how to start such a port with OBS and give an update on the progress made for mipsel. false Andreas Färber 2016-06-25T16:00:00+02:00 16:00 00:15 Saal Lightning Talk 918-getting-geeko-some-cross-compilers An update on building GCC cross-compiler packages Technology & Development openSUSE relies on native compilation today, resorting to QEMU linux-user emulation for non-native build targets. Here's a brief update of where we are with building real cross-compilers, including for non-Linux targets such as microcontrollers, from our SUSE-maintained GCC packages. openSUSE relies on native compilation today, resorting to QEMU linux-user emulation for non-native build targets. Here's a brief update of where we are with building real cross-compilers, including for non-Linux targets such as microcontrollers, from our SUSE-maintained GCC packages. false Andreas Färber 2016-06-25T16:30:00+02:00 16:30 00:30 Saal Short Talk 822-config-files-api Future of config files handling Technology & Development YaST has been trying to find a solution to work with configuration files in a way that is easy and reusable, while ensuring the consistency of the resulting configuration. The response is Config Files API (CFA), a generic framework to work with configuration files in Ruby. Although currently is only used in the yast2-bootloader module, CFA will become one of the key components of YaST in the near future. Its design and foundation look beyond YaST, making it a useful resource in any environment needing programatic and semantic management of configuration files. The talk will provide an overall overview of CFA's architecture and down to earth examples on how CFA can be used and extended. YaST has been trying to find a solution to work with configuration files in a way that is easy and reusable, while ensuring the consistency of the resulting configuration. The response is Config Files API (CFA), a generic framework to work with configuration files in Ruby. Although currently is only used in the yast2-bootloader module, CFA will become one of the key components of YaST in the near future. Its design and foundation look beyond YaST, making it a useful resource in any environment needing programatic and semantic management of configuration files. The talk will provide an overall overview of CFA's architecture and down to earth examples on how CFA can be used and extended. false Josef Reidinger 2016-06-25T18:45:00+02:00 18:45 01:15 Saal Entertainment 1038-cellar-tour-june-25-meet-up-point-at-the-kater-murr Entertainment Explore the underground cellars of Nuremberg. Learn about the beer that was stored in these cellars and why it is so, so good. There are only 25 seats for this tour and you must register for it before the tour because of the limited seats that are available. The tour is 75 minutes. Please ensure you register for one of the tours under "My Registration". There needs to be a minimum of 10 people per tours. Tours that have less than 10 people registered will be canceled. The cost of the tour will be split between the attendees. Example - The cellar tour is 90 € per tour. If there are 20 attendees for the tour, each person would pay 4,50 €. The meet up point for all the tours will start at the Kater Murr - Johannesgasse 14, 90402 Nürnberg Explore the underground cellars of Nuremberg. Learn about the beer that was stored in these cellars and why it is so, so good. There are only 25 seats for this tour and you must register for it before the tour because of the limited seats that are available. The tour is 75 minutes. Please ensure you register for one of the tours under "My Registration". There needs to be a minimum of 10 people per tours. Tours that have less than 10 people registered will be canceled. The cost of the tour will be split between the attendees. Example - The cellar tour is 90 € per tour. If there are 20 attendees for the tour, each person would pay 4,50 €. The meet up point for all the tours will start at the Kater Murr - Johannesgasse 14, 90402 Nürnberg false Douglas DeMaio 2016-06-25T10:00:00+02:00 10:00 07:00 Seminarraum 1 CoderDojo 1058-coderdojo-nurnberg-2-room-1 A free programming club for children and teenagers between 7 and 15, led by experienced mentors CoderDojo CoderDojo is a global movement of free, volunteer-led, community based programming clubs for young people. At a Dojo, young people, between 7 and 17, learn how to code, develop websites, apps, programs, games and explore technology in an informal and creative environment. In addition to learning to code attendees meet like minded people and are exposed to the possibilities of technology. This is the second CoderDojo in Nürnberg. The children should bring their own laptop and NEED TO REGISTER for the dojo in advance at https://coderdojo-nbg.org/termine/termin/2016-06-25/d5b211b2a45a62b75782ee5862369ab7/details.html Children younger than 13 MUST be accompanied by an adult throughout the whole day. Companions must also register as "helpers" using the aforementioned form. It is not necessary for the attendees to have particular skills — it's totally fine to just drop by and learn something new! It's all about the fun. ;) CoderDojo is a global movement of free, volunteer-led, community based programming clubs for young people. At a Dojo, young people, between 7 and 17, learn how to code, develop websites, apps, programs, games and explore technology in an informal and creative environment. In addition to learning to code attendees meet like minded people and are exposed to the possibilities of technology. This is the second CoderDojo in Nürnberg. The children should bring their own laptop and NEED TO REGISTER for the dojo in advance at https://coderdojo-nbg.org/termine/termin/2016-06-25/d5b211b2a45a62b75782ee5862369ab7/details.html Children younger than 13 MUST be accompanied by an adult throughout the whole day. Companions must also register as "helpers" using the aforementioned form. It is not necessary for the attendees to have particular skills — it's totally fine to just drop by and learn something new! It's all about the fun. ;) false Joschi Kuphal 2016-06-25T11:30:00+02:00 11:30 01:30 Hacker Room 90-Minute Workshop 872-opensuse-wiki-workshop Help us update the Wiki Community & Project The openSUSE Wiki pages need some love. Come work together with the community to update the wiki pages and delete all the obsolete information that is lingering on our pages. The outdated information needs to be either refreshed or deleted and oSC16 offers the perfect time to come together and makes these necessary decisions. Be there! The openSUSE Wiki pages need some love. Come work together with the community to update the wiki pages and delete all the obsolete information that is lingering on our pages. The outdated information needs to be either refreshed or deleted and oSC16 offers the perfect time to come together and makes these necessary decisions. Be there! false Douglas DeMaio 2016-06-26T10:00:00+02:00 10:00 00:15 Seminarraum 1 Lightning Talk 878-testing-openwrt-using-boardfarm Technology & Development OpenQA rulez when it comes to testing desktop and it is still quite good when it comes to testing server. But when testing routers, we face some different challenges. This talk would introduce to the BoardFarm - test-suite tailored to test routers. OpenQA rulez when it comes to testing desktop and it is still quite good when it comes to testing server. But when testing routers, we face some different challenges. This talk would introduce to the BoardFarm - test-suite tailored to test routers. false Michal Hrušecký 2016-06-26T10:30:00+02:00 10:30 00:15 Seminarraum 1 Lightning Talk 842-quick-cloud-intro How does using a cloud feel End User Many people hear about clouds, but not many have actually used one. That is why I want to give a quick live demo of a cloud (running SUSE OpenStack Cloud software) to give the audience an idea of how using a cloud feels. background: https://en.wikipedia.org/wiki/Cloud_computing Many people hear about clouds, but not many have actually used one. That is why I want to give a quick live demo of a cloud (running SUSE OpenStack Cloud software) to give the audience an idea of how using a cloud feels. background: https://en.wikipedia.org/wiki/Cloud_computing false Bernhard M. 2016-06-26T11:00:00+02:00 11:00 00:15 Seminarraum 1 Lightning Talk 952-free-software-gnu-linux-association-and-its-contribution-to-the-deployment-of-free-software-in-algeria Association strategies to attract people around the free software Community & Project association contribution in increasing the deployment of free software GNU / Linux and its use in Algeria association contribution in increasing the deployment of free software GNU / Linux and its use in Algeria false benalia behchich 2016-06-26T13:00:00+02:00 13:00 03:00 Seminarraum 1 Docker Meetup 1066-docker-meetup-opensuse-conference-z-bau Docker Meetup This special meetup will take place during the openSUSE conference at Z-Bau. There will be docker related talks spread throughout the conference, but we saved a little space for all of you wanting to share your experience, or give a presentation. If you are interested in having a slot on your own, please get in touch. The final agenda will be made available once ready. Sign up at http://www.meetup.com/Docker-Nuremberg/events/230457743/ This special meetup will take place during the openSUSE conference at Z-Bau. There will be docker related talks spread throughout the conference, but we saved a little space for all of you wanting to share your experience, or give a presentation. If you are interested in having a slot on your own, please get in touch. The final agenda will be made available once ready. Sign up at http://www.meetup.com/Docker-Nuremberg/events/230457743/ false Douglas DeMaio 2016-06-26T13:30:00+02:00 13:30 00:15 Seminarraum 1 Lightning Talk 938-easy-patch-and-update-of-docker-images How to keep your Docker images more secure with zypper-docker Technology & Development Docker Hub is a great place in which anyone can pull a wide variety of Docker images. Unfortunately, a good amount of these Docker images contain security issues. We are concerned in SUSE about security issues, and that is why we have come up with a tool that allows us to patch and update Docker images in a safe way. This tool is called zypper-docker, and it is basically a bridge between zypper and Docker, two tools that our users already know and love. In this talk we are going to describe the ideas behind zypper-docker, and what can a user perform with this utility. Docker Hub is a great place in which anyone can pull a wide variety of Docker images. Unfortunately, a good amount of these Docker images contain security issues. We are concerned in SUSE about security issues, and that is why we have come up with a tool that allows us to patch and update Docker images in a safe way. This tool is called zypper-docker, and it is basically a bridge between zypper and Docker, two tools that our users already know and love. In this talk we are going to describe the ideas behind zypper-docker, and what can a user perform with this utility. false Miquel Sabaté Solà 2016-06-26T14:00:00+02:00 14:00 01:00 Seminarraum 1 Long Talk 936-portus-claim-control-of-your-docker-images Securing and managing your on-premise Docker Registry Technology & Development Portus is an open-source authorization service and user interface for the Docker registry. Portus is the perfect companion for your on-premise instance of the Docker registry. It makes possible to have full control over your images thanks to its access control lists. It also empowers collaboration thanks to the 'team' and 'search' features. Portus is an open-source authorization service and user interface for the Docker registry. Portus is the perfect companion for your on-premise instance of the Docker registry. It makes possible to have full control over your images thanks to its access control lists. It also empowers collaboration thanks to the 'team' and 'search' features. false Miquel Sabaté Solà 2016-06-26T10:00:00+02:00 10:00 01:00 Saal Long Talk 1088-opensuse-and-the-open-mainframe-project-an-overview Technology & Development Jens Voelker, IBM Systems, will give a talk on the following: In this session you will hear about the community movement around the mainframe platform and how IBM and others are working within the framework of the Linux Foundation collaborative projects structure to embrace the community. The session will cover the porting of openSUSE to the OS/390 platform and also highlight how the community is leveraging the mainframe platform for projects such as Docker and Blockchain. Jens Voelker, IBM Systems, will give a talk on the following: In this session you will hear about the community movement around the mainframe platform and how IBM and others are working within the framework of the Linux Foundation collaborative projects structure to embrace the community. The session will cover the porting of openSUSE to the OS/390 platform and also highlight how the community is leveraging the mainframe platform for projects such as Docker and Blockchain. false Douglas DeMaio 2016-06-26T11:00:00+02:00 11:00 00:30 Saal Short Talk 998-gnome-3-20-five-years-after-3-0 Design decision, major changes, future visions Technology & Development GNOME 3.20 has just been released on 21st of March. With that release, many visible improvements will be delivered to users around the world. While many people already excitedly use GNOME 3 with the new user experience, some features of the new and elegant desktop like LibreOffice integration or editing photos with non-destructive GEGL operations are not yet wildly known. We also did many things on the plumbing layer such as allowing GNOME to run Wayland. The talk will introduce to some of the design philosophies inherent in GNOME 3 as well as the main changes brought to users and developers. Also, since GNOME 3.20 is another step of a long lasting incrementally improved user experience, the future of GNOME's development will be speculated on. GNOME 3.20 has just been released on 21st of March. With that release, many visible improvements will be delivered to users around the world. While many people already excitedly use GNOME 3 with the new user experience, some features of the new and elegant desktop like LibreOffice integration or editing photos with non-destructive GEGL operations are not yet wildly known. We also did many things on the plumbing layer such as allowing GNOME to run Wayland. The talk will introduce to some of the design philosophies inherent in GNOME 3 as well as the main changes brought to users and developers. Also, since GNOME 3.20 is another step of a long lasting incrementally improved user experience, the future of GNOME's development will be speculated on. false Tobias Mueller 2016-06-26T11:30:00+02:00 11:30 01:00 Saal Long Talk 1054-sssd-more-than-an-ldap-client An overview of the SSSD, its features and roadmap Technology & Development The SSSD project started as a deamon that allows to resolve users and groups in LDAP, but is gaining more features over time. In this talk, I would like to give an overview of the features SSSD has, with focus on what was introduced into the project in the last couple of years or the features we are working on now. In particular, I would like to show how SSSD allows the administrator to easily enroll a client into an Active Directory domain including access control with Group Policies, the options SSSD has for Smart Card authentication or the possibilities to manage secrets with SSSD. In future, we would like SSSD to also manage the local users, traditionally stored in /etc/passwd, which is another topic the talk would outline, at least to show what we are planning. The talk would also include live demo. No previous knowledge about SSSD is required. The presentation would be aimed at administrators and to some degree also Linux distribution or program developers. The SSSD project started as a deamon that allows to resolve users and groups in LDAP, but is gaining more features over time. In this talk, I would like to give an overview of the features SSSD has, with focus on what was introduced into the project in the last couple of years or the features we are working on now. In particular, I would like to show how SSSD allows the administrator to easily enroll a client into an Active Directory domain including access control with Group Policies, the options SSSD has for Smart Card authentication or the possibilities to manage secrets with SSSD. In future, we would like SSSD to also manage the local users, traditionally stored in /etc/passwd, which is another topic the talk would outline, at least to show what we are planning. The talk would also include live demo. No previous knowledge about SSSD is required. The presentation would be aimed at administrators and to some degree also Linux distribution or program developers. false jhrozek 2016-06-26T12:30:00+02:00 12:30 00:15 Saal Lightning Talk 908-opensuse-much-more-than-linux-distributions Projects under the openSUSE umbrella Community & Project The openSUSE project was born to ensure the existence and independence of a free (as in free speech) Linux distribution. But there is something you can take for granted if you create a community of technology enthusiasts - at some point they will start to create cool new things. Thus, openSUSE has become the home of many open source projects like OSEM, Portus, Jangouts, Machinery or zypper-docker. Not to mention tools used to build the distribution that have evolved into generic solutions with a lot of presence outside the openSUSE scope, like the Open Build Service or openQA. This talk will try to provide a good overview of the many cool projects living under the openSUSE umbrella, explaining their goals and current status. The openSUSE project was born to ensure the existence and independence of a free (as in free speech) Linux distribution. But there is something you can take for granted if you create a community of technology enthusiasts - at some point they will start to create cool new things. Thus, openSUSE has become the home of many open source projects like OSEM, Portus, Jangouts, Machinery or zypper-docker. Not to mention tools used to build the distribution that have evolved into generic solutions with a lot of presence outside the openSUSE scope, like the Open Build Service or openQA. This talk will try to provide a good overview of the many cool projects living under the openSUSE umbrella, explaining their goals and current status. false Ancor González Sosa 2016-06-26T12:45:00+02:00 12:45 00:15 Saal Lightning Talk 898-opensuse-targeting-the-education-sector Results from the National School Board Conference openSUSE openSUSE recently attended the National School Board Conference in Boston, Mass., with a focus of introducing and challenging school districts, teachers and administrators to implement the use and teaching open source software in schools within the United States. Find out the results of this effort and see what openSUSE can do to increase participating in open-source projects at schools in the United States. openSUSE recently attended the National School Board Conference in Boston, Mass., with a focus of introducing and challenging school districts, teachers and administrators to implement the use and teaching open source software in schools within the United States. Find out the results of this effort and see what openSUSE can do to increase participating in open-source projects at schools in the United States. false Douglas DeMaio 2016-06-26T13:00:00+02:00 13:00 01:00 Saal Long Talk 980-opensuse-project-meeting Community & Project Got an idea you want to share with the openSUSE Project? Is there something you want to change but need some help to get started? Got a question you want to ask for the Project, it's contributors, or the Board? This is your opportunity, the annual openSUSE Conference Project Meeting will take place at oSC16 on Sunday. Will be also conducted live in #opensuse-project on irc.freenode.net for anyone who isn't lucky enough to attend oSC Got an idea you want to share with the openSUSE Project? Is there something you want to change but need some help to get started? Got a question you want to ask for the Project, it's contributors, or the Board? This is your opportunity, the annual openSUSE Conference Project Meeting will take place at oSC16 on Sunday. Will be also conducted live in #opensuse-project on irc.freenode.net for anyone who isn't lucky enough to attend oSC false Richard Brown 2016-06-26T10:00:00+02:00 10:00 01:00 Seminarraum 2 Long Talk 810-integrating-automated-security-testing-into-your-development-process Technology & Development Automated testing has become a normal part of developer life in the world of agile development processes. However, it is usually only focused on unit testing or behavior testing–either the technical or the functional realm of the application. What about security testing and other non-functional aspects of the application, like performance testing? Especially if you work in strongly regulated environments like government, healthcare and finance, you'll have to continuously demonstrate that guidelines are being followed when it comes to aspects like input validation, auditability and traceability. Drupal 8 already coincides with a great overhaul of the Drupal testing infrastructure, a great moment to look at some of the perhaps not so obvious items to test as well! This presentation will go over a number of tools to deploy for security testing and give some practical advise on how to integrate these with your Continuous Integration setup: static code analysis for coding style and technical debt security testing tools performance and UI testing tools Automated testing has become a normal part of developer life in the world of agile development processes. However, it is usually only focused on unit testing or behavior testing–either the technical or the functional realm of the application. What about security testing and other non-functional aspects of the application, like performance testing? Especially if you work in strongly regulated environments like government, healthcare and finance, you'll have to continuously demonstrate that guidelines are being followed when it comes to aspects like input validation, auditability and traceability. Drupal 8 already coincides with a great overhaul of the Drupal testing infrastructure, a great moment to look at some of the perhaps not so obvious items to test as well! This presentation will go over a number of tools to deploy for security testing and give some practical advise on how to integrate these with your Continuous Integration setup: static code analysis for coding style and technical debt security testing tools performance and UI testing tools false Hans de Raad 2016-06-26T11:00:00+02:00 11:00 03:00 Seminarraum 2 Workshop 850-complete-kopano-oss-communication-stack-with-opensuse-sles How to deploy and run groupware and more in a snap Technology & Development Nowadays communication needs are higher than ever. From E-Mail to instant messaging, all possible media exchange types are required to be up and running 24/7. With providing the only available 100% open source MAPI backend, Kopano delivers not only the classic groupware features but extended WebRTC technologies, Owncloud APIs, CIFS connectors – all to deliver the user a unique monolithic communication experience. Kopano leverages the full LAMP stack to deliver enterprise groupware features and cutting edge technologies such as WebRTC to deliver the best experience to users dealing with their daily communication needs. With the use of MySQL/MariaDB as database engine in the backend, postfix as MTA, nginx or apache2 as webserver, Pacemaker for HA, the modular Kopano stack is set on-top on quite an amount of available open source software. And Kopano loves openSUSE, in fact: The packages that are provided are built on an OBS instance! This workshop shows how to install, configure and run a complete OSS communication stack based on openSUSE/SLES. This workshop will cover all components from MariaDB, nginx or apache up to an optional owncloud instance for files management - In the end you will be able to run a fully featured WebApp or DeskApp and use exciting and productive technologies such as WebRTC, WebDAV - all from one interface. Of course, you also want to be able to sync your mobiles and allow access for the non-geeks that are still jailed to Outlook, and therefore this is covered here as well. To give the admin the chance to run the environment safe and sane, we will cover the normal basic adminstration tasks and highlight the dynamic possibilities of the LDAP backend. In the end the workshop will show some performance optimizations and some best practices in running a larger environment. This session is meant to be an interactive workshop, so we encourage anyone just to have a Leap prepared to join in and ask questions on-the-go. Nowadays communication needs are higher than ever. From E-Mail to instant messaging, all possible media exchange types are required to be up and running 24/7. With providing the only available 100% open source MAPI backend, Kopano delivers not only the classic groupware features but extended WebRTC technologies, Owncloud APIs, CIFS connectors – all to deliver the user a unique monolithic communication experience. Kopano leverages the full LAMP stack to deliver enterprise groupware features and cutting edge technologies such as WebRTC to deliver the best experience to users dealing with their daily communication needs. With the use of MySQL/MariaDB as database engine in the backend, postfix as MTA, nginx or apache2 as webserver, Pacemaker for HA, the modular Kopano stack is set on-top on quite an amount of available open source software. And Kopano loves openSUSE, in fact: The packages that are provided are built on an OBS instance! This workshop shows how to install, configure and run a complete OSS communication stack based on openSUSE/SLES. This workshop will cover all components from MariaDB, nginx or apache up to an optional owncloud instance for files management - In the end you will be able to run a fully featured WebApp or DeskApp and use exciting and productive technologies such as WebRTC, WebDAV - all from one interface. Of course, you also want to be able to sync your mobiles and allow access for the non-geeks that are still jailed to Outlook, and therefore this is covered here as well. To give the admin the chance to run the environment safe and sane, we will cover the normal basic adminstration tasks and highlight the dynamic possibilities of the LDAP backend. In the end the workshop will show some performance optimizations and some best practices in running a larger environment. This session is meant to be an interactive workshop, so we encourage anyone just to have a Leap prepared to join in and ask questions on-the-go. false Michael Kromer