Tag Archives: company

Warpstock 2023 videos now available

Videos of Warpstock 2023 presentations from earlier this month, including Arca Noae staff and developers featuring the latest ArcaOS news and how-to sessions are now available on YouTube in the WarpEvents channel.

Video topics include:

  • ArcaOS Roadmap
  • High-Resolution OS/2: The Sequel
  • ArcaOS 5.1
  • Is ArcaOS a DOS Gaming Mecca?
  • ArcaOS under and next to VMWare ESXi
  • UEFI vs Traditional BIOS: Which is Right?
  • …and much more

Clearing up some more upgrade confusion: Subscription downloads

It’s important to remember that when an ArcaOS 5.0 license is upgraded, the existing ArcaOS 5.0 license is converted to an ArcaOS 5.1 license. This does not create a new license for another system. If the ArcaOS 5.0 license has a Support & Maintenance subscription in effect, any remaining time is added to the ArcaOS 5.1 subscription. Several actions take place automatically on Arca Noae’s side of the transaction and other actions should take place on the customer’s side.

First, on the Arca Noae side:

  1. The existing ArcaOS 5.0 Support & Maintenance subscription for that license is terminated as of the date of the upgrade of its associated license to ArcaOS 5.1.
  2. With the termination of the ArcaOS 5.0 Support & Maintenance, access to associated downloads for ArcaOS 5.0 is removed If you have more than one ArcaOS 5.0 license with current support and are only upgrading one of those licenses to 5.1, the associated downloads will still be available for your other ArcaOS 5.0 licenses.
  3. Whatever time was left on the ArcaOS 5.0 Support & Maintenance subscription is added to the included subscription for ArcaOS 5.1. So, if you recently renewed your 5.0 subscription, and it had 12 months before the next renewal, your new ArcaOS 5.1 personal license will now have 18 months of support & updates (6 months from the new ArcaOS 5.1 subscription plus the remaining 12 months from the old ArcaOS 5.0 subscription). You don’t lose anything.

On the customer side, the installation of the ArcaOS 5.0 license being upgraded should be upgraded to ArcaOS 5.1. It is a violation of our license terms to upgrade a 5.0 license to 5.1, install the 5.1 license on another system or partition, and to continue using the 5.0 installation. One license is consumed per bootable installation, regardless of the edition (personal or commercial). If that license has been upgraded, the upgraded license is only valid for the upgraded ArcaOS version. An upgrade does not create a new license for another installation.

If you would like to maintain access to ArcaOS 5.0 downloadable content, but would also like to install ArcaOS 5.1, then we invite you to purchase a new ArcaOS 5.1 license from our store or from your preferred authorized reseller. In that case, the two subscriptions will be separate, and their contents will be available in your ArcaOS Download Center as long as the respective subscription remains in force.

For more information, please refer to this FAQ item.

ArcaOS

Pricing for ArcaOS 5.1

Arca Noae is pleased to announce the pricing schedule for the upcoming ArcaOS 5.1 release.

New licenses for ArcaOS 5.1:

Personal edition:   $139.00 (includes 6 months of Support & Maintenance)
Commercial edition:   $249.00 (includes one year of Support & Maintenance).

Discounted upgrade pricing will be available for all customers with a valid ArcaOS 5.0 license. However, the best upgrade pricing will be available for customers who have an active Support & Maintenance subscription (S&MS) in place. Also, you won’t lose any remaining time on your old subscription—any remaining time will be added to your new ArcaOS 5.1 subscription.

Upgrade to ArcaOS 5.1 for customers with active Support & Maintenance:

Personal edition upgrade:   $59.00
Commercial edition upgrade:   $109.00

As mentioned above, any remaining time on the ArcaOS 5.0 subscription will be added to the included Support & Maintenance for the selected ArcaOS 5.1 product edition.

Upgrade to ArcaOS 5.1 (for customers without active Support & Maintenance):

Personal edition upgrade:   $89.00
Commercial edition upgrade:   $189.00

These include the standard Support & Maintenance subscription term as provided with new licenses: 6 months for the personal edition, and one year for the commercial edition.

In all cases, volume discounts for aggregate commercial purchases or upgrades of 25 licenses or more will apply.

The subscription channel for ArcaOS 5.1 will be separate from the channel for ArcaOS 5.0. This means that 5.0 Support & Maintenance ends when that license has been upgraded to 5.1, and 5.1 Support & Maintenance will have some different content specific to ArcaOS 5.1 (features which are reserved for ArcaOS 5.1 and not available for ArcaOS 5.0).

Support & Maintenance renewals for ArcaOS 5.1 will be:

Personal edition Support & Maintenance:   $70 ($63 early renewal; $87 late)
Commercial edition Support & Maintenance:   $125 ($112.50 early renewal; $187 late)

As always, the best practice is to renew early. This cannot be stressed enough when upgrading to ArcaOS 5.1, as any remaining time on the ArcaOS 5.0 Support & Maintenance subscription will be added to the subscription included with the selected ArcaOS 5.1 product edition.

ArcaOS

I want ArcaOS 5.1!

TO CLARIFY: ArcaOS 5.1 HAS NOT YET BEEN RELEASED. Please read this post all the way to the end to get all information.

ArcaOS 5.1 is complete and waiting for release. The holdup is really related to our distribution system, which is based on the WooCommerce platform.

Until we can produce multiple versions of ArcaOS ISOs, in multiple languages, WE MUST HOLD UP THE ArcaOS 5.1 RELEASE.

While WooCommerce is a capable ecommerce solution, Arca Noae’s requirements to be able to allow ordering of a personalized ISO have now become considerably more complicated than they were for the 5.0 release in 2017. Instead of only spinning the same ISO with personalization data for each customer, we now must continue to have 5.0 ISOs available, and offer 5.1 ISOs in several languages. In addition, instead of maintaining one subscription channel for ArcaOS, we now must maintain two separate channels, one for 5.0 and one for 5.1. Upgraders will also need to change subscription channels when they upgrade ArcaOS. This work has proven more complicated than we had anticipated.

In the meantime, we have taken steps to upgrade our infrastructure to expand our capacity to build and warehouse more ISOs, and we are now at a point where the missing pieces of the puzzle are just the software enhancements for the website to bring everything together.

We have always avoided stating narrow windows for anticipated delivery dates, and take great efforts to avoid the appearance of vaporware. ArcaOS 5.1 is real, and it is coming…soon.

In the interim (and after the release of ArcaOS 5.1), ArcaOS 5.0 will continue to receive critical updates and support, and from time to time, we may even release new bugfix ISOs for ArcaOS 5.0 (generally when an update impacts the installation experience).

It is also important to note that not all languages for ArcaOS 5.1 will be made available when English is released, nor will all non-English languages be released at the same time. Translations of German, Spanish, French, Italian, Russian, and others are in varying states of completion. As we deem a certain language ready for release, we will make it available.

We appreciate everyone’s continued patience. We want to bring you ArcaOS 5.1 as much as you want it!

Join Us at Warpstock 2022 in Orlando

Warpstock 2022 will be live once again, November 4-6 at the Country Inn & Suites, Orlando Airport. Arca Noae staff and developers will be there with the latest ArcaOS news and how-to sessions, as well as a host of other OS/2 experts ready and willing to share their knowledge and expertise.

Register before August 1 and receive a $30 Early Bird discount on a full conference registration or $20 on a daily conference registration! Spouses/family members/guests/office mates attending sessions also receive great discounts, and non-attending guests are FREE. Students with valid student ID are welcome to attend sessions at no charge, with full benefits! (This is a great opportunity for Computer Science majors and aspiring young developers and engineers to gain some exposure to a platform which is still in use in the manufacturing, finance, and insurance sectors around the globe today.)

Major topics of discussion this year will center around ArcaOS 5.1 and new disk and installation options. As always, we welcome questions and feedback from both new and experienced users.

Cryptocurrency acceptance temporarily suspended

Pursuant to CoinPayment Inc’s recent decision to withdraw from the US market, we are temporarily unable to accept cryptocurrency for any store purchases while we evaluate a replacement platform. We apologize in advance for any inconvenience this may cause, and want to assure everyone that we are working hard to get our crypto gateway back up and running as soon as possible.

Apache Log4j vulnerability (CVE-2021-44228)

On Thursday, December 9, 2021, the Apache Log4j project disclosed a critical security vulnerability which may result in remote code execution on systems running Log4j. The exploit has been aptly named Log4Shell (CVE-2021-44228).

Log4j is a logging component which runs under Java on many different platforms, and is useful not only for Java applications, but for other programs, as well. It is commonly bundled with unrelated software, simply as a means of providing a standard logging engine.

Arca Noae has completed a scan of our internal systems and has determined that we are not affected by this vulnerability. Further, ArcaOS has never included any Log4j components, and is also unaffected. However, because the exploitable feature in Log4j has existed for some time, it is possible that Java and other applications may have been installed under ArcaOS which utilize Log4j, and these systems may be at risk.

The feature used for the Log4Shell exploit is in the JNDI (Java Naming and Directory Interface) lookup class which was added to Log4j several years ago during the 2.0 beta cycle. Log4j versions through 2.3 required only Java versions up to 1.6, and so may be utilized by some OS/2-compatible applications.

Risk assessment

To determine whether any of your OS/2 systems may be at risk, start by searching all accessible volumes for log4j-*.jar. If any are found, determine the version of Log4j by examining the content of META-INF/MANIFEST.MF in the core jar file:

[c:\] unzip -c log4j-core.jar META-INF/MANIFEST.MF | less

Note the Implementation-Version line content.

Edge servers as well as firewalled systems running various applications may be at risk, as queries may be submitted to the Log4j engine from other applications and potentially from outside the network.

Mitigation

Although the exploit has been addressed in Log4j 2.16.0, because versions above 2.3 are not currently compatible with OS/2’s available Java Runtime Engine, it is necessary to mitigate the condition by removing the JndiLookup class from the classpath, e.g.:

[c:\] zip -q -d log4j-core-*.jar org/apache/logging/log4j/core/lookup/JndiLookup.class

Additional information

Older (pre-2.0-beta9) versions of Log4j lack this lookup class, and do not appear to be at risk for Log4Shell (though some earlier security advisories may have been issued). Further research may be needed based upon the version(s) of Log4j which may be in use on these earlier systems. Also, this is not the only security advisory for Log4j 2.0-beta9 – 2.3. This notification is only related to CVE-2021-44228.

Links

https://nvd.nist.gov/vuln/detail/CVE-2021-44228
https://nakedsecurity.sophos.com/2021/12/10/log4shell-java-vulnerability-how-to-safeguard-your-servers/
https://www.kb.cert.org/vuls/id/930724