OSNews

There are F/OSS products that are well documented and easy to use (apache, Nagios, OpenSSL, etc.) and we use this software daily. And there is commercial software that their documentation blows goats (Verity). And I have had the joy in trying to figure out how a commercial product works when the documentation doesn't cover it.

As I stated in my reply to SEJeff, we are not just a *nix shop, we also have a lot of Windows servers. So our solutions to particluar problems cannot be just *nix. For example we use Nagios for monitoring because it works with both *nix and Windows machines. We also have a desire to do Asset and Configuration Management for several thousand assets. Can a F/OSS piece of software do this across several platforms, possibly. My recommendation was Tivoli, something that I know works and can be extended to perform a variety of functions besides Asset Management and CM.

We do not have the programming staff to modify and write code for F/OSS software to make it work in our environment, and to write it for multiple platforms. We also have to deal with US Government security requirements, one of those being a code review. Most of the security people I have come across are not programmers so asking them to perform a code review of a particular piece of software is a waste of time. And I have been at the losing end of too many arguments trying to get F/OSS software used for a particular project, so I choose the commercial product.

I had the opportunity to listen to RMS at HOPE 6, and while I agree with him about free software at an individual level, I do not think his ideas translate well in a corporate environment.