return to OCLUG Web Site
A Django site.
May 14, 2010

Pythian
pythian
» Blogrotate #27: The Weekly Roundup of News for System Administrators

Good afternoon and welcome to issue 27. The number 27 according to numerology is “the symbol of the divine light” so I’ll try to do that ideal justice. We’re off to a good start, what with me actually getting this out on schedule and such, so let’s get to it while the day is still [...]

May 10, 2010

Pythian
pythian
» Blogrotate #26: The Weekly Roundup of News for System Administrators

Hi there and welcome to Blogrotate in which I, your humble host and blogger, bring to you interesting stories and events from the past week in the SysAdmin world. It’s been yet another busy week, which is why this is coming out on a Sunday again, so I am going to have to short list this edition but there’s still plenty of tasty nuggets to be found. Read on.

Operating Systems

It’s been discovered that Microsoft released three patches last month without including them in the release notes. Two of the patches were to fix security holes in MS Exchange servers. While this is nothing new it completely removes the ability for a sysadmin to evaluate the impact of the patches on critical corporate systems, which is necessary before rolling out the updates. Not to mention it makes it really difficult to diagnose a change in behaviour if you have no idea there was a change made. See more gory details in Security firm reveals Microsoft’s ‘silent’ patches.

Sun/Oracle removed public firmware downloads is a strange piece by someone called techbert describing how he logged into the sunsolve to download some firmware for his systems only to find that they were no longer publicly available. This is a bad move that will likely annoy a lot of people looking for firmware on old, repurposed or used systems. It’s a good thing that my Sparc 1+ is already patched!

If you are an old fogey like me you may still be using newsgroups over nntp for many things. Even Microsoft provided support for their products using newsgroups, but as of June 2010 they will begin decommissioning the groups in favour of their online community message boards. See the official news release Microsoft Responds to the Evolution of Communities.

Internet

Ars Technica has a look at the current market share for internet browsers. Chrome has surged to a new high while IE has dropped below 60% market share. FireFox and Safari (Mac) have remained fairly static which means that Chrome is taking the bite right our of Microsoft’s share of the pie. For more visit Emil Protalinski and his aritcle Chrome continues surge as IE drops below 60% market share

From the Google Chrome Blog, a piece about performance improvements in the latest Chrome beta claiming “30% and 35% improvement on the V8 and SunSpider benchmarks over the previous beta channel release” and “as much as 213% and 305% on these two benchmarks since our very first beta”. Take a look at Pedal to the Chrome metal: Our fastest beta to date for Windows, Mac and Linux.

Since we’re all about the chrome this week check out this link that Bill provided, a video demonstrating the rendering speed of Chrome. See the youtube video Google Chrome Speed Tests (SFW[1]). I think the results were skewed because a) the french fry chopper introduced resistance to the potato reducing it’s velocity and; b) actual sound waves move faster than paint moving against gravity no matter how much force you put into the paint. Still they are all really neat.

Virtualization

Linux Journal has a nifty little piece by Bill Childers about setting up your own Ubuntu server in the Amazon cloud. Check out Put Your Servers in the Cloud with Amazon EC2 and Ubuntu.

Data Center Knowledge
has an interesting report by Rich Miller called Rackspace Hits 100,000 Customers. Based on the numbers he presents it seems that “the managed hosting unit accounted for less than 1 percent of customer growth, but 77 percent of revenue growth” meaning basically that they’re gaining a lot of cloud customers but it’s not their money maker, it’s just gravy. Still the gains in cloud presence are impressive.

Matt Asay at C-net writes about increasing competition between Red Hat and VMware in the virtualization and middleware markets, and suggests that Red Hat may look at growing by acquiring a NoSQL technology and VMware may enter a bid for Novell to enter the operating system space. See VMware and Red Hat: The war for the data center.

Hardware

The world is hungry for storage capacity and there are limits on storage density using current technology. But wait! There is hope for the future. There is a new paper showing how a combination of thermally-assisted magnetic recording (TAR) and bit-patterned recording (BPR) can be used to “store data at densities of up to one terabit per square inch, and suggest the media could be stable up to ten terabits per square inch”. See Casey Johnston‘s article New hard drive write method packs in one terabit per inch.

And finally a couple of amusing items for you. Head on over to IT World and check out Vintage Tech Ads: The 15 Funniest Videos and also Priceless! The 25 Funniest Vintage Tech Ads.

That’ll have to do it for this week. Leave your own picks in comments and we’ll see you next week.

[1] In a surprising turn of events when I went to do my usual linking of the Internet slang definition for SFW above I found that the definitions themselves included language that would be considered NSFW. So for those who do not know SFW == Safe For Work and NSFW == Not Safe for Work.

May 3, 2010

Pythian
pythian
» Blogrotate #25: The Weekly Roundup of News for System Administrators

Good evening and welcome to this weeks edition of Blogrotate. It’s a bit later than usual this week due to client concerns but I could not let this week go by without something. This week, after all, is the release of Ubuntu 10.04LTS (Lucid Lynx) so I get to leverage my supreme blogging power to promote the product since I use it pretty much everywhere now.

Operating Systems

So as I was saying, the release of Lucid Lynx has the world abuzz. We had a mini install fest here in the SA cluster at Pythian and 2/3 of it went well. It seems that video is the main source of install pain for us in this new version. My own install went well at home except for the proprietary NVidia drivers, and the fglrx (ATI) driver was an issue for a colleague in the office. Luckily we have the knowhow to get around these issues here at Pythian, but I would be concerned for new users trying to upgrade. Despite that I think it’s a bloody good package and well worth trying.

Here’s a short list of some sources of information on the new Ubuntu.

On in other news, let’s all shake our heads in disbelief at Unix copyrights: SCO want a new ruling.

Priya Ganapati at Wired writes about this weeks Palm purchase by HP. It’s long been known that HP had scrubbed the iPaq because that just could not nail the OS, but now they own WebOS so watch for the iPaq to make a comeback (minus the silly name (and resulting lawsuit from Apple) of course). But I digress, check out HP Buys Palm for $1.2 Billion.

If you are running Windows 7 you’ll want to beware of a recently discovered problem. See the Microsoft Ansrews Forum topic Windows 7 deletes all system restore points on reboot.

Virtualization/Cloud

Joel Wineland is Senior Product Developer at Rackspace Managed Hosting. He writes about things to consider when evaluating cloud services. See Creating a Successful Cloud Environment.

Amazon Web Services (AWS) adds a Singapore Data Center so users can run their cloud computing infrastructure in the Asia Pacific region.

Have you considered the security risks of your impending cloud investment? Take a look at 10 Cloud Security Threats by Anil Chopra. My advice is to never trust a hosted cloud service with production, proprietary or sensitive data.

Internet

Media darling and bon vivant Steve Jobs was at it again in a tirade against the evils of Flash. You can get the short (and long) story at Engadget in Steve Jobs publishes some ‘thoughts on Flash’… many, many thoughts on Flash by Paul Miller. When you are done with that head on over to Ars Technica for a rebuttle of sorts in Pot, meet kettle: a response to Steve Jobs’ letter on Flash.

That’s all I’ll have time for this week. As always your comments and stories are welcomed.

Try Lucid Lynx. The power of blog compels you.

April 16, 2010

Pythian
pythian
» Blogrotate #23: The Weekly Roundup of News for System Administrators

Good morning everyone and welcome to another edition of all the news fit to reprint. Last week iPad news was the number one topic on the hearts and minds of most places I visit, let’s see if the iPad can last another week or if a new champion will be crowned. Call or text your votes to … oh wait that’s someone else. :)

Operating Systems

Starting off on a sad note that I missed last week. Ed Roberts, the inventor of the Altair personal computer died on April 2nd at the age of 68. The New York Times has a good article about it, see H. Edward Roberts, PC Pioneer, Dies at 68. You can also check out an audio interview he did with Mark Frauenfelder over at BoingBoing, Remembering Ed Roberts, the father of the personal computer. Geeks everywhere owe this man a debt of gratitude.

Hey look! It’s an iPad related story. If you miss the good old days of Windows 95, now you can run it on your iPad (assuming you were an early adopter and have not smashed it for YouTube). See this video called Windows 95 on iPad completes the Bill Gates vision. For the record I purposely did not link the iPad smashing video because that nonsense is not worth my time.

AntiVirus

Was anyone else up yesterday with email outages that trace back to ClamAV? I know I was. It turns out that ClamAV 0.94 has passed EOL but instead of gracefully disallowing new updates, ClamAV released new virus databases which broke installations of 0.94. You can check out the full EOL release at the ClamAV site in End of Life Announcement: ClamAV 0.94.x. A colleague here (Hi Mo!) found this interesting piece by Neil Schwartzman called ClamAV and the Case of the Missing Mail, proving that we were not alone in our suffering. So once you are done with righteous indignation, be sure to upgrade your AV engine.

VOIP

Sean Michael Kerner at VOIPPlanet is reporting Open Source Asterisk 1.8 Aiming for Long-Term Support. According to the article users had complained that the frequency of releases in the 1.6 version of the software was making it difficult to know when and why to update, and the Asterisk team hopes to have their 1.8LTS out in the third quarter this year.

Virtualization/Cloud

VMWare has released new patches for their ESX/vSphere product line. Check out the charmingly titled [Security-announce] VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues.

If you are working towards vitualization and need a primer in the various technologies available look no further than Containers vs. Hypervisors: Choosing the Best Virtualization Technology by Joe ‘Zonker’ Brockmeier at linux.com.

Rackspace has released a new iPad app which will let you manage your cloud servers remotely using the bleeding edge device. Matthew Weinberger at The Var Guy has details in The Rackspace Cloud Launches iPad Application, and you can check out the marketing version of the news at the RackSpace web site.

Now that Oracle owns Sun, it also owns VirtualBox. Oracle has now released their first maintenance release addressing some outstanding bugs and stabilizing some features such as VT-x and multicore support. You can get the details from Timothy Prickett Morgan in Oracle freshens its VirtualBox.

Software

James Gosling, the father of the Java programming language, has moved on from his position at Sun Microsystems. No word as to what he’ll be doing, but we wish him well. See his new new blog called On a New Road to hear it straight from the horses mouth.

Internet

A BGP error at a Chinese ISP caused it to briefly declare itself the route for approximately 37,000 IP networks, many belonging to US companies. The H Online has a report on this event titled Chinese ISP ‘hijacks’ bits of the web.

The key to corporate web sites has been SEO for quite a long time now. How well your web site is ranked by Google and other search engines is important if you want to be at the top of the results. According to Google’s Webmaster Central blog they are now going to be using the speed of your site as part of their ranking algorithm. See Using site speed in web search ranking for the official announcement. You can also find more on El Reg, see Google tweaks search results with mystery site speedometer.

Hardware

If you are in the market for SSD to speed up your servers, here’s a good place to start. Henry Newman (CTO of Instrumental Inc.) has a 3 part series at the Enterprise Storage Forum that covers most (if not all) you’ll need to know to choose the right fit for your purposes. See all three parts:

  1. Solid State Drives in Enterprise Applications
  2. Solid State Drive Reliability and Performance in Storage Networking
  3. Choosing the Right Solid State Drive for Your Storage Network

Well that’s all the time I will have for this week. I had a ton of other stuff on the list for this week but I have to stop and do some real work eventually. As always leave your own stories in comments and we’ll see you back here next week.

As promised I’ve posted the instructions for Installing TOra with Oracle Support on Ubuntu 10.04 (Lucid Lynx). Be sure to check it out. And don’t forget to upgrade your ClamAV.

April 9, 2010

Pythian
pythian
» Blogrotate #22: The Weekly Roundup of News for System Administrators

Good afternoon and welcome to another edition of Blogrotate. This week has been absolutely insane so it’ll be another short one I’m afraid. Luckily for me the majority of news outlets were binging on iPad related press which left only limited space for real news.

Mobile

Yes normally I do not cover mobile stuff very much, yet even after the above crack about iPads I feel obligated to at least make mention of it. I, personally, do not care about iPads. Wake me when they have those little scrolly deals from Earth: Final Conflict. For those of you who do care, here’s a quick list of places you could go.

And how is the competition doing? Check out BlackBerry sees iPhone shrink in rear view mirror.

Distro Watch

There was not a lot of news on the OS front this week, but here’s a short list of the few OS coming to a device near you.

Security

There’s a new exploit out against Java which has been proven to have the ability to launch apps on the desktop without authorization. Java exploit launches local Windows applications has the full story.

Here’s the list of what’s in store for the next “Patch Tuesday” release from MS. Microsoft Patch Tuesday for April 2010: 11 bulletins.

Data Centers

Have you ever wondered how a data center protects itself against the damaging effects of an earthquake? Check out Earthquakes and Data Centers over at Data Center Knowledge for an interesting read.

Are you looking for a PCI compliant data center? Check out PCI Compliance: Who Manages What? which gives good insight into the processes and highlights some things you should be looking for when you talk to the sales rep.

Hardware

Were you the first on your block to run out and get an Intel i7? Well now AMD throws even more cores at you. Check out New server platform and 12-core Opteron keep AMD in the game.

The clock tells me it’s time I should be going. I am sure I missed lots of good stuff this week, so feel free to add it to comments. You know you want to.

Stay tuned, the return of tOra is at hand. I’ve successfully compiled tOra on Lucid and have the instructions to prove it.

April 2, 2010

Pythian
pythian
» Blogrotate #21: The Weekly Roundup of News for System Administrators

Spring has sprung, the grass is riz. I wonder where them birdies is. Welcome to Blogrotate. It’s Good Friday here in Ottawa, a holiday for us. For this reason it’s going to be a short one this week. That and the fact that it’s 25C and sunny here. :)

Operating Systems

Closure sweet closure. It’s been 7 years but SCO has finally lost it’s silly lawsuit against Novell. Novell smugly posted the results on their site with Decision in the SCO Group vs. Novell Jury trial. For us linux users they state for the record “Novell remains committed to promoting Linux, including by defending Linux on the intellectual property front”. This victory means that the case against IBM is the next to fall, followed by the demise of what was once a giant in the industry. The full history of this case can be found on GrokLaw, try SCO Group v. Novell, Inc for starters. A high level summary can be found at SCO loses again: jury says Novell owns UNIX SVRX copyrights.

Ubuntu 8.04 is approaching end of life. The last LTS (Long Term Support) release will stop getting software updates and security patches at that time. If you are running 8.10 fear not, the next LTS (10.04, Lucid Lynx) is in beta and should be released prior to this date. According to the Ubuntu site there is a clean upgrade path directly from 8.04 to 10.04, see their LucidUpgrades page for more info. Also see Ubuntu 8.10 approaches end-of-life at The H Online.

I’ve been saying this for years regarding every version of Windows, but if you don’t believe me read 90 percent of Windows 7 flaws fixed by removing admin rights.

Hardware

AMD has released it’s new 12 core Opteron CPU, code named “Magny-Cours”. While it’s not news that there’s more cores in a new CPU, there are additional benefits. See AMD’s 12-core chip may cut software costs.

Security

For those of you running Internet Explorer, Microsoft has released a patch to address security issues with it’s widely used browser software outside of it’s normal “patch Tuesday” release cycle. You can read more at C-Net in Microsoft issues emergency patch for 10 IE holes.

Threat Post is reporting that a hacker security researcher has found a way to exploit Adobe Reader with no other plugins required. “The PDF hack, when combined with clever social engineering techniques, could potentially allow code execution attacks if a user simply opens a rigged PDF file” says the aritcle. Check out the full details at Hacker Finds a Way to Exploit PDF Files, Without Vulnerability.

Humorous

Do you like the online comic xkcd? Well now it’s even better using the xkcd CLI (Command Line Interface). Check it out. If you like it, sign the online petition to get them to keep it around.

Well that’s all we’ll have time for this week. Have a great Easter weekend everyone. As always, your comments and favourite news stories are welcome.

March 27, 2010

Pythian
pythian
» Blogrotate #20: The Weekly Roundup of News for System Administrators

Good evening and welcome to the late night edition of Blogrotate. It’s been hectic around here but I did not want to skip a week so I am burning the midnight oil. There was a lot of action in the world of IT this week, here’s a few tidbits we took notice of.

Operating Systems

The Var Guy is reporting that Novell has rejected a bid by Elliott Associates to take over the company for a reported 1.8 billion dollars. Novell Rejects Takeover Bid… But Welcomes Other Bidders has the full story with some links to the back story as well.

The arguments are done and the deliberation begins in SCO vs Novell. The world yawns in anticipation. No Verdict Today, the Final Day, in SCO v. Novell – Deliberations Begin Again Tuesday – Updated at GrokLaw has the details. “Fine lawyering” indeed.

Internet

Tom Krazit at C-Net news reports that DNS registrar GoDaddy may be following in Google’s footsteps, steps that lead out of China. More details and source material links are in GoDaddy to stop registering domains in China

Security

The CanSecWest conference started this week in Vancouver BC, Canada. With it came the 4th annual Pwn2Own contest wherein hackers ply their exploits against various targets. This years target was web browsers. The results so far? See Peter Bright’s article IE8, Safari 4, Firefox 3, iPhone fall on day 1 of Pwn2Own. Ok so the title ruined any suspense I may have built, but it’s still worth reading.

If you are not part of the 1337 gaming crowd you’ve probably never pwn’d anything any may not know what it means. See Wikipedias definition of pwn. After that you can set up a lan party and get fragged because you’re a n00b. Be careful not to camp or backpack, and watch out for headshots.

If you are a user of Cisco IOS on your devices, you need to check out the Summary of Cisco IOS Software Bundled Advisories, March 24, 2010. The patches fix security issues with IPSec, NAT, SIP, H.323 and much much more.

Virtualization

Mark Murphy, Global Alliances Director for Canonical, wrote on his blog that Dell announces support for Ubuntu Enterprise Cloud. According to the blog the Canonical cloud team has been working for 6 months with Dell’s DCS team to “test and validate the integration of the cloud stack on their new PowerEdge-C series [servers]“, and will be offering a series of optimized ‘blueprint’ configurations for the PowerEdge-C servers.

Former MySQL CEO and Sun Sr. VP Marten Mickos will be the new CEO of Eucalyptus, the company behind the Ubuntu Cloud. See Former MySQL CEO to become Eucalyptus Systems CEO at The H Online for more of the story and links to the official press release. Matthew Weinberger at The Var Guy has some more analysis on this subject in “Can Marten Mickos Build Another $100 Million Company?”.

Datacenter

A couple of data center outages this week.

Wikipedia, linked heavily above, suffered an outage to their European data center this week due to overheating. Mark Bergsma from Wikimedia, the company that runs Wikipedia, posted on their tech blog that some of their servers powered down to protect themselves from a worse fate. Services had to be relocated to the Florida cluster causing an outage of at least 1 hour, more for some sites that don’t honour DNS TTL (time to live) properly. You can read more in Mark’s technical blog, called Global Outage (cooling failure and DNS). There is also more at Data Center Knowledge, see Wikipedia’s Data Center Overheats.

The very next day, YouTube suffered a 2 hour outage. I thought it was rather funny because they informed users of the outage via their Twitter feed. Judging by that feed there were more issues yesterday and again today. Is it just me or is this the oddest way to communicate site outages ever? I’d love to hear your opinions.

Eco-IT

The Register is reporting that the University of Wisconsin at Green Bay is planning to save cash by switching all it’s fonts to Century Gothic. Apparently Century Gothic uses up to 30% less ink when printed, saving their organization money. See Switch to Century Gothic to save the planet for the story and links to source materials. Gotta love the tag lines at el Reg. “Arial will doom us all, says American IT director”. Indeed.

That’ll have to do it for this week. I’m off to Tosche station to buy some power converters. As always, comments are welcome.

Hey! CNN just facebooked that their mail server is down! :)

March 19, 2010

Pythian
pythian
» Blogrotate #19: The Weekly Roundup of News for System Administrators

Good morning and welcome once again to the (usually) weekly round-up of news that matters to Sys Admins. We missed last week for reasons previously stated, client work always comes first. This week was yet another fast and furious week so let’s get started.

Operating Systems

In case anyone was wondering about SCO vs. Linux it is still going on. If anyone has a lot of free time on their hands and is interested in lost causes, check out SCO vs. Linux: The story so far at The H Online. Even more details can be found at the prolific GrokLaw in Summary of SCO v IBM.

If you are running Max OSX you may be vulnerable to at least 20 major security flaws in you system. Security researcher Charlie Miller will be presenting full details at the upcoming CanSecWest conference. Read more in Mac OS X: “safer, but less secure” – Update.

If you, like me, are part of the “never put a .0 release into production” school of thought, then you probably have not rolled out Windows 7 on your company desktops. Fear not, SP1 is coming. Check out Microsoft announces Windows 7 SP1 at Computer World.

Internet

Is Google set to leave China and close the www.google.cn site entirely? Read the story on Cnet news in Report: Google to leave China on April 10. The sources seem to be dubious, so I would take this with a grain of salt until the official announcement.

There has been stuff floating around the internet about DNS tunneling exploits for years. The H Online is reporting that hacker Ron Bowes has now released a command line tool and code that could easily be integrated into an exploit. Check out Exploit code with DNS tunnel for more.

Have you upgraded from FireFox 3.0 to 3.6 yet? You probably should soon. See Firefox 3.0 approaches end-of-life.

Security

The Register is reporting that almost 2 weeks after being notified the Energizer site still plagued by data-stealing trojan. The file in question is “UsbCharger_setup_V1_1_1.exe” so try to avoid downloading that one.

There’s reports of a security flaw in milter, part of the spamassassin utility for scanning email. The flaw allows a specially crafted RCPT command to trick postfix into running commands as root. Sendmail servers seem to not be affected. You can find more details in [Full-disclosure] Spamassassin Milter Plugin Remote Root.

Here’s another follow-up to a previous item about the Waledec botnet being taken down by Microsoft. See Waledac Botnet Now Completely Crippled, Experts Say. Microsoft has also waxed poetic on the subject in What we know (and learned) from the Waledac takedown on the technet blog.

Open Source

Ars Technica has a cute item on hidden gems in open source applications, affectionately knows in geek nomenclature as “Easter Eggs”. Check out Cracking open five of the best open source easter eggs for a larf, and read over the comments for a bunch more.

That’s all the time I will have this week. I know there’s a lot more stuff from the last 2 weeks that I could have added, so feel free to leave your favourites in the comments. ‘Til next week.

Who you trying to get crazy with SA, don’t you know I’m loco?

March 5, 2010

Pythian
pythian
» Blogrotate #18: The Weekly Roundup of News for System Administrators

Is it Friday already? Where does the time go? Lots of stuff going on this week–here’s a few of the things that I found interesting.

Operating Systems

Russia Today-TV announced the existence of “Red Star”, the new OS developed in North Korea and based on Linux. I found this by way of Slashdot of course, citing the source as The Korea herald. According to the article it looks very much like the Windows UI, and features a “My Country” icon that allows connection to Korea’s closed internet-like network and the Woori office application. Slightly more information can be found there in the article N. Korea develops own OS.

The upcoming Ubuntu 10.04 (Lucid Lynx) has had the third alpha version released. The alpha versions are not for the faint of heart, and I have had to put in several bug reports myself already. It’s just part of the process though and will hopefully result in a rock solid release next month. The full release announcement can be found on the mailing list: see Lucid Alpha 3 released. A rundown of some of the things you can expect is on The H Online in Canonical releases Ubuntu 10.04 LTS Alpha 3.

Ars Technica has more on an item mentioned last week about the future of Open Solaris. OpenSolaris not dead; might not get all new Solaris features The exact details of which features may be excluded are not clear from the article but I did not get a chance to dig into some of the source material referenced so you may find more by clicking through them.

Internet

Opera 10.5 is out and Ars Technica has a detailed review of the new features, performance improvements and UI changes. There’s a lot of detail in the article, I suggest you read it for yourself. Hands on: Opera 10.50 makes impressive performance gains is the place to go. I think I’ll give the new Opera a try myself.

Local company makes good! I mentioned last week the takedown of the Waledac botnet, this week the Mariposa botnet suffered a similar fate. Ottawa’s own Defence Intelligence detected this botnet in 2009 and started an investigation that ended with the dismantling of the botnet by Spanish authorities. This is a much more important takedown than Waledac because Mariposa actually put sensitive and financial information at risk. You can read more of this story in Spanish arrests mark the end of dangerous botnet. Ottawa, represent!

Virtualization

Microsoft has released new drivers to improve the performance of Red Hat Enterprise Linux systems running under Hyper-V. The new drivers include new network and storage drivers, but still only support a single virtual CPU. These drivers are not officially included in, or supported by Red Hat, but they are fully support by Microsoft. Read Microsoft releases Hyper-V drivers for RHEL for more, and you can check out Microsoft’s side of the story on the technet blog in Red Hat Enterprise Linux and Hyper-V.

How Server Virtualization Impacts Storage. The title says it all. Penned by Heidi Biggar from Hitachi it has a good perspective on current industry trends and growth. We all know that consolidation methods, like virtualization, add bottlenecks on resources like CPU, memory and storage because they are all shared by many instances. Find out what Heidi has to say on the subject.

Data Center

Data Center Knowledge is reporting that the demand for data centers has been growing continually and no change is in sight for 2010. We’re certainly seeing the trend here with many companies making the push for full, real disaster recovery sites. There seems to be a real shortage of data center space and new ones are popping up slowly, so if you have lots of cash this may be a good business to get into. But I digress. The full story is in Strong Data Center Demand Seen for 2010.

Security

The H Online has a good article about the US government’s new cyber security policy. I haven’t had a chance to review the whole document as yet, but I have it bookmarked for later reading. US government publishes parts of its cyber security directive is where to go, which also links the source document.

Hardware

Tom’s Hardware has an interesting Op-Ed piece on the past, present and future of the 3D graphics industry. See Opinion: AMD, Intel, And Nvidia In The Next Ten Years for 10 pages of goodness.

Allyn Malventano has a very detailed review of Western Digital’s first foray into the SSD market. The new 256GB offering performed well through the tests but is still priced a bit too high for the market. The full review is at PC Perspective, see Western Digital SiliconEdge Blue 256GB SSD Review – WD enters the SSD market. You can find the Western Digital product information page on their site.

Well that about wraps it up for this edition. Comments are always welcome. Until next time, may your days be productive and the levels of administratium be non-toxic.

February 26, 2010

Pythian
pythian
» Blogrotate #17: The Weekly Roundup of News for System Administrators

Good afternoon and welcome to another edition of the usually, mostly, kind of weekly news for System Administrators. I was on a much needed holiday for the last couple of weeks. Many thanks to Tim for filling in on the last one. What with clients’ priorities and February being a short month, we did not have the cycles to get a blog out last week, and this one will be short because, frankly, the IT news world has been a bit slow of late. With that I shall cease my preface and move on to . . . 

Operating Systems

The Phoronix media site is reporting that the end may be near for Open Solaris since the purchase of Sun by Oracle. Oracle has been quiet on its plans for the free/open source version of its Solaris operating system, and the Service Life Status for OpenSolaris Operating System Releases does show the GA (General Availability) phase support as “TBD“. See a little more info in Oracle Still To Make OpenSolaris Changes. This one will be worth watching and I’ll update the blog when more is available.

Users running the Max OS X 10.4 “Tiger” beware–the next versions of the popular Firefox web browser will no longer support you. Check out In future Firefox will drop Mac OS X 10.4 Tiger support for more and a link to the Mozilla press release. Apparently, about 25% of Mac/Firefox users are still using 10.4. Time to upgrade, people!

Red Hat has a beta release of RHEL 5.5, and is gearing up for a full release in the near future–probably April or May. You can check out the full 5.5.b1 release notes on the RedHat site.

Internet

Probably the biggest story this week revolves around a secret court injunction requested by Microsoft to take out 277 domain names belonging to the Waledac botnet. By taking these domains off the net it basically cripples the command and control structure for the bots, as they will no longer be able to “phone home” for instructions. This will only be a temporary win I am sure, but anything that reduces the volume of spam is a benefit even if it’s short lived. Peter Bright has more in his article entitled Judge’s restraining order takes botnet C&C system offline. If that’s not enough for you, Google has lots of news items about this. The thing I find funny is that MS did this to reduce the spam being sent to Hotmail, which IMHO has always been a big source of spam due to its disposable accounts.

Google has released a new version of Chrome for Windows, to resolve three high-risk vulnerabilities and some other lesser issues. This is worth an install to make sure you stay safe on the net. More detail is available in Google fixes vulnerabilities in Chrome 4 for Windows.

In a follow-up to a previous post in this blog, Google has now stated that YouTube support for IE6 will officially end as of March 13, 2010. Time to update those NT4 servers folks. See YouTube to kill IE6 support on March 13 over at Ars Technica for more information. There are also details on the Google/Youtube support site in Solve a Problem: Upgrading your browser.

Security

Several Cisco IronPort products are vulnerable to attacks allowing unauthenticated access to files and the ability to execute arbitrary code on the affected devices. Cisco has released patches for these devices and also have workarounds documented for those who are unable to upgrade just yet. See Cisco Security Advisory: Multiple Vulnerabilities in Cisco IronPort Encryption Appliance for the full details.

This one is not really IT-related, but it’s scary none the less. Kelly Jackson Higgins at Dark Reading details the recent revelation that criminals in Utah have planted card skimmers in gas station pumps, meaning that if you pay at the pump, your information could be stolen and used for nefarious purposes. Criminals Hide Payment-Card Skimmers Inside Gas Station Pumps has the full story. Be afraid, be very afraid.

Adobe has released a new version of their download manager to fix a severe flaw allowing specially-crafted web sites to push malicious software to your PC. All versions of the Adobe Download Manager on Windows prior to the 23rd of February, 2010 are affected. Check out Adobe patches critical vulnerability in Download Manager for the gory details.

Too funny to not include

Have you ever wondered how eBay retires their datacenters? With extreme prejudice, it seems. See Retiring A Data Center. With an Axe for a good chuckle.

That’ll do it for this week folks. I hope you enjoyed your trip through this door.

Fetch the aliens, write the blog . . .  brain the size of a bloody planet . . . 

February 5, 2010

Pythian
pythian
» Blogrotate #15: The Weekly Roundup of News for System Administrators

Good morning and welcome to a new Blogrotate. We missed last week’s edition because last week was insanely busy. We take customer service very seriously here at Pythian, so when there is a conflict between client issue and a blog, the client always wins out. ‘Nuff said.

It’s been another busy week here and shows no sign of slowing, but here’s a few of the things we found interesting this week.

Operating Systems

The H Online is reporting that Linus Torvalds named one of the 100 most influential inventors by “The Britannica Guide to the World’s Most Influential People”. More info can be found there, as well as a link to some free sample pages from the book. Of course, Bill Gates was also on the list.

Could it be that Microsoft ranks third in Linux sales? As part of their 2006 agreement with Novell, they were required to purchase $240 million worth of “subscription certificates” to sell or distribute. Microsoft says that so far 475 of the coupons have been used which is equivalent to about a half million dollars worth. See Sold out: Microsoft’s Linux business is booming at The H Online for the skinny, and Microsoft exhausts coupons for SuSE Linux at SD Times for a much more detailed analysis.

Ubuntu has released Ubuntu 8.04.4, the fourth patchset for “Hardy Heron”, which is a long term support release. See the release notes for the full list of updates. Alternately, schedule a change window and apt-get update and apt-get upgrade today!

Did anyone realize that SCO vs. Novell was still a going concern? Well, apparently it is. According to Groklaw SCO and Novell File Proposed Witness Lists. Again. If you enjoy a good licensing battle, I don’t think this qualifies, but you can decide for yourself. Why can’t they both just get along?

Internet

According to the political news site C-Span’s page for Solving Video Problems, it will be discontinuing support for Real Networks RealVideo streaming format citing as the cause lack of interest. They do, however, still support IE6 unlike . . . 

The official Google Enterprise Blog has announced that as of March 1st, site functionality may no longer support IE6. New features for Google apps will be built without support for IE6 as well. Check out the full deal, called Modern browsers for modern applications.

Apache HTTP Server 1.3.42 Released by the Apache foundation spells EOL (end of life) for the popular web server, though some security patches may still be released. I know of a lot of Oracle app servers out there running apache 1.3, so perhaps one of our crack DBAs can chime in with some details on how to handle it, what versions support 2.0, etc.

The popular Squid proxy server released a patch this week for a vulnerability to specially crafted DNS packets which can trigger a queue overflow and eventually a DOS. If you make heavy use of Squid, check out the creatively named Squid Proxy Cache Security Update Advisory SQUID-2010:1.

We have all heard by now of the Google attack from China. Now Google is seeking the help of the NSA to prevent future attacks of this sort. Ars Technica has the full scoop, see In wake of hack, Google negotiating cooperation with the NSA.

Virtualization

VMWare has announced security flaws in a number of its products. Patches have yet to be released, so if you run VMWare, keep your eye out for them. The full info and affected products can be found in the announcement from the VMWare Security Announce mailing list, see [Security-announce] VMSA-2010-0002 VMware vCenter update release addresses multiple security issues in Java JRE.

Cloud

Are you running services in the “cloud”? If so, you’ll need to monitor them. Data Center Knowledge has a roundup of the current players in the cloud-monitoring game. Check out Cloud Monitoring Services: A Resource Guide.

That’s all the time we have for this week, folks. I know there have been other interesting things going on over the last two weeks, so please add them in the comments. Have a wonderful week!

January 22, 2010

Pythian
pythian
» Blogrotate #14: The Weekly Roundup of News for System Administrators

Happy Friday and welcome once again for news from the whacky world of IT. Big Thanks to Tim for pushing out last week’s edition. I was busy banging my head against a particularly nasty wall. If you think my head looks bad, you should see the wall.

I was at the Ottawa VMWare Mini Conference yesterday. It was quite interesting. There were some good keynotes by some good speakers. I especially enjoyed the breakout speaker from Cisco about their direction in the years to come, and I think I drooled a little when he was talking about the Nexus 5000 switch (578 ports ought to be enough for anyone). Also news to me was the Nexus 1000v virtual switch which is a plugin replacement for the standard vSphere 4.0 virtual switch and includes a full Cisco IOS for management. I also really enjoyed the breakout with the Ottawa Senators IT team describing their progression from physical to virtual servers, their challenges, business needs, and lessons learned. There was a lot more, including an enjoyable one by the EMC rep. I’m trying to get my slides and notes together and will likely post more on the mini-con at a later time. I won a door prize! Go me!

Now on to things that are not about me.

Operating Systems

Luke Dicker at Likewise has posted in his blog that their Likewise 5.4 Release included in Ubuntu 10.4 Alpha. We’ve been using likewise with a couple of clients here and it works wonders. Now there will be no reason not to use linux in your company’s AD infrastructure.

A critical vulnerability has been discovered that has been with us since the Windows NT 3,5 days. That’s 1993. This is an exploit against the legacy 16 bit emulation code used to allow old apps to run natively in Windows NT. Check out [Full-disclosure] Microsoft Windows NT #GP Trap Handler Allows Users to Switch Kernel Stack for the full details on the exploit.

linux.conf.au is going on in Wellington NZ this week. If you want to get the rundown of events, check out the coverage over at Linux Journal. Start with Linux.Conf.Au – Day One. You can get links to the other days from there.

Virtualization

Linux Magazine has a nifty article detailing all the cool stuff you can do with the VirtualBox command line interface. From the articleI was surprised at how many things you can do with it, very useful stuff. Check out VirtualBox’s Little Secret: The Command Line.

Internet

FireFox 3.6 was released today. This new version is a performance release, claiming to be 20% faster than 3.5. They have also made improvements to their Java engine, faster awesome bar and a theme like system called personas. You can read the full press release on the FireFox site Mozilla Delivers Firefox 3.6 to Millions of Users. You can download it from here. You can also find a review or 3.6 at Ars Technica, check out Review: Firefox 3.6 brings joy to Web devs, not just users.

It’s that time of year again. 90% of IPv4 address space used; IPv6 move looking messy!!!!!! Scream with meeeee!!!!11

Microsoft is releasing a patch for their vulnerability, found in every version of IE. Please see their Advance Notification for Out-of-Band Bulletin Release for full details.

If you are a perl developer and had trouble accessing cpan mirrors recently you may want to check out MSNBOT must die! on the CPAN testers blog. It seems some bots from Microsoft were hitting the mirrors creating a DOS effect, the bots ignored the robots.txt which is supposed to stop this sort of thing for compliant bots.

I am sure that there are other good stories I have missed here, so don’t be afraid to add your own into comments. Now I’m off to play with all the pens I got from vendor booths yesterday. Mmmm vendor pens. The sweetest pens of all.

January 8, 2010

Pythian
pythian
» Blogrotate #12: The Weekly Roundup of News for System Administrators

Happy New Year! Welcome to the first edition of 2010 (the year we make contact). There’s been a lot of news since I posted last 3 present and party filled weeks ago so I cannot hope to cover it all. Here’s a few that I thought were worth noting.

Has anyone been following the keynote speakers from the Consumer Electronics Show currently going on in Las Vegas? The CES web site has them transcribed for you if you want to have a look. See the Keynotes page for all the goodies. CNet also has lots of space devoted to CES reports, and you can see them on their Live@CES page.

Networking

Sean Michael Kerner at Enterprise Networking Planet writes of the dreaded 2010 exhaustion of IPv4. There is reportedly about 10% of IP space remaining but some large coportations have been releasing unused IP blocks which has helped the situation, hopefully more will get on board with that. I know I have seen many organizations, including the Canadian government, using publicly routable IP addresses as internal IPs instead of making use of the IP ranges reserved for such use. Read the full story in IPv4 Not Dead Yet: 625 Days of IPv4 Addresses Remain.

Internet

Hotmailers Hawking Hoax Hunan Half-Offs is an interesting article for more than just alliteration. It’s an in depth look at how spammers are making use of Hotmail’s auto-reply feature to send advertisements for Chinese discount electronics sites. I honestly don’t know why anyone uses Hotmail which seems to be the biggest source of spam since AOL. My teenagers think Hotmail is the best thing ever, so they must be offering something of use to them. For my money Gmail or Yahoo are a much better choice.

A tip o’ the hat to Chrome, which according to the Market Share section of the Net Applications site has surpassed Safari as the 3rd most popular browser on the ‘net last month. See Browser Market Share for the full list.

Business

Are you an IT professional who is unhappy in your job? You may not be alone. The Computerworld careers site had an in depth look at the effects of the recent (current, ongoing) financial cruch and it’s affect on IT workers. See Surveys: IT job satisfaction plummets to all-time low for more.

On a similar topic to the above, see what Channel Insider thinks will be the top issues facing IT workers in 2010. Check out Careers: 2010 Employer Outlook: 10 Top Trends.

Security

Kelly Jackson Higgins at the security site Dark Reading has a good write-up of a recent test of how well email filters really work. In the test some spoofed Linked In were sent, apparently from Bill Gates himself. It’s surprising how many of them actually made it through. Spear-Phishing Experiment Evades Big-Name Email Products has the full story. My guess is that the Microsoft products that failed did so because they have a whitelist for any communications from their Imperious Leader so they will know when to rise up against their human oppressors.

That’ll be all for this week folks. Tune in next week for more of the wackiness that is the world of IT.

December 18, 2009

Pythian
pythian
» Blogrotate #11: The Weekly Roundup of News for System Administrators

Good morning. Welcome to the last issue of Blogrotate for 2009! I expect the world of IT will move on without us for the next couple of weeks , but slowly, as everyone will be out on holidays. On to the show.

Operating Systems

Mark Shuttleworth is stepping down as the CEO of Canonical. He’ll be replaced by Jane Silber, formerly the COO. Read the full release on Mark’s blog My new focus at Canonical and some information from Jane in her blog Management changes at Canonical.

Recently Microsoft released a statement that they controlled the market share for netbooks with some unusually high percentage. Slashdot has a story about this (with links confirming the previous sentence), stating ARM-Powered Laptops To Increase Linux Market Share. There’s some good links to source material in there so I will not repeat them here. Considering most Linux netbooks I have seen make up for the lack of a Windows license with extended hardware, it’s not surprising. I know several people who have preferred the Linux learning curve over paying extra for a machine with less resources (and an OS that really needs more).

Has anyone ever considered installing Windows a form of literature? Canadian Sci-Fi author Cory Doctrow reports of an attempt to define such a thing in Installing Windows considered as a literary genre.

Software

This week the The Software Freedom Law Center has launched a lawsuit against 14 consumer electronics companies claiming violation of the Gnu Public License open licensing scheme by the companies’ use of the BusyBox embedded Linux platform. You can read more in SFLC launches GPL enforcement smackdown on 14 gadget makers. But wait! There’s more! Bruce Perens has issued a statement on the matter saying “I’d like to point out that I’m not represented in these lawsuits, and that the parties and the Software Freedom Law Center have never attempted to contact me with regard to them”. He goes even further. Read all about it in his Statement on Busybox Lawsuits.

Internet

Emil Protalinski at Ars Technica writes about the issues between Microsoft China and Plurk, the Canadian startup and microblogging site from which MS China seems to have “borrowed” much of their code. The similarities are striking to be sure, and Microsoft has since taken down the China site in response. Read all about it in Accused of plucking Plurk, Microsoft pulls microblog service. You can also check out a related story at PC Magazine called Microsoft Acknowledges Theft of Code from Plurk, then you can venture back to Ars for Plurk: Microsoft went to great lengths to steal code. I smell lawsuit!

Hardware

The US Department of Justice Has issued a release about a Taiwanese LCD panel manufacturer pleading guilty to price-fixing and agreeing to pay 220 Million in fines. You can see the full statement in the DOJ press release.

Virtualization

I’ve mentioned in previous columns about the open source cloud Eucalyptus (available in ubuntu 9.10). Matt Asay at CNet has a Q&A session with Rich Wolski, the CTO at Eucalyptus, discussing the future of open source and the cloud. See Eucalyptus open-sources the cloud for the full story.

InfoWorld review: Desktop virtualization for Windows and Linux heats up has a nice comparison of the major virtualization players VMWare, VirtualBox, and Parallels. While VMWare scores the highest in the comparison, it’s not that much over VirtualBox (2nd place) and Parallels (3rd).

Security

Maggie Koerth-Baker on the recent hacking of the $4.5 million Predator drone, used for surveillance by military, using $26 software. See Hacking the Predator drone: Cheaper than dinner and a movie for more. The source material is from the Wall Street Journal’s article Insurgents Hack U.S. Drones.

Just as decaffeination takes the bite out of coffee, DECAF is to COFEE. Microsoft’s Computer Online Forensic Evidence Extractor is intended to allow law enforcement to scour systems for encrypted data and passwords, Detect and Eliminate Computer Assisted Forensics is intended to block it’s attempts to do so. The battle between measures and countermeasures always interests me, but in this case I especially love the play on words. See Protect yourself from COFEE with some DECAF for the full story.

That’ll do it for this edition/month/year. Come back in 2010 for the sublime pleasure of reading our weekly rehash of news previously rehashed by other sites. As always your comments are welcome.

Happy Holidays everyone!

December 11, 2009

Pythian
pythian
» Blogrotate #10: The Weekly Roundup of News for System Administrators

Happy Friday everyone! I’m back and can see! The laser surgery was not anywhere near as bad as my mind had made it out to be, and I would recommend it to anyone. The results are worth it. For some reason the heat and x-ray vision have not kicked in yet…

Anyways enough about me, let’s look at some news.

Operating Systems

This one might better be suited to a storage section but slashdot has a post about FreeNAS Switching From FreeBSD To Debian Linux. The popular and free NAS server has an active discussion about this on the sourceforge forum. While it seems that generally the community is OK with this, many fear the loss of ZFS support which is currently not available in the standard linux kernel due to licensing incompatibilities between the GPL and Sun’s CDDL.

Red Hat has released its second update this year to its MRG (Messaging, Real-Time, Grid) platform. Sean Michael Kerner has the skinny in Red Hat Speeds Up Real-Time Linux.

Software

In what I hope to be the final update on the Microsoft USB/DVD download tool debacle, MS has finally released the open source version of the tool to comply with the GPL licensing of its “borrowed” code. Peter Galli, the Microsoft open source community manager has more in Windows 7 USB/DVD Download Tool Released Under GPLv2. The source for the tool can be found at the CodePlex open source site.

If you are looking at making the jump to Thunderbird 3, Ryan Paul at Ars Technica has Review: Thunderbird 3 takes flight with tabs, enhanced search. Some folk here at Pythian have already made the jump. I’ll be doing so too as soon as I find the time.

Data Centers

Rich Miller at Data Center Knowledge has an interesting piece about a data center in Quebec, Canada that is built inside a huge concrete silo. From the article “The cylindrical silo, which is 65 feet high and 36 feet wide with two-foot thick concrete walls, previously housed a Van de Graaf particle accelerator. When the accelerator was decommissioned, CLUMEQ decided to convert the facility into a high-performance computing (HPC) cluster known as Colossus”. The article has more, including pretty pictures of the site and its unique cooling systems. See Wild New Design: Data Center in A Silo for the full story.

Do you have servers in the Amazon EC2 cloud? Did they go down for almost an hour on Wednesday? If so, check out Rich Miller’s article Power Outage for Amazon Data Center.

Oh Rich Miller, you were a busy boy this week. According to his article, Canada: We’ll Only Buy Energy Star Servers, Lydia Aouani of Natural Resources Canada made this claim at the DatacenterDynamics conference in Toronto. Having worked extensively in Federal government departments, I doubt this will happen quickly, but it’s nice to know their thinking about it.

Internet

Emil Protalinski at Ars has an interesting look at ad click rates for the different search engines. There’s been a lot of hype that Bing is beating Google in click-through rates, but as Emil rightly points out a higher percentage of fewer people could still mean less actual clicks. See Bing ads over 75% more likely to be clicked than Google ads for more.

After the surprising claim from the Google chief: Only miscreants worry about net privacy stating, to paraphrase, “only bad people need to be worried about privacy” we have Mozilla exec urges Firefox users ditch Google for Bing. Asa Dotzler, Mozilla’s director of community development, contends that users should move to Bing because Bing’s privacy policy is better.

That’s all we’ll have time for this week. I expect there will be one more edition next week before we break for the holidays, then we’ll be back again in early January for more newsy goodness. As always your comments or favourite news stories of the week are welcome.

December 4, 2009

Pythian
pythian
» Blogrotate #9: The Weekly Roundup of News for System Administrators

Here we are again, another Friday. Only it’s actually Thursday for me. I’m writing this early because I am planning to willingly allow someone to shoot lasers into my eyes in an attempt to rid myself of these wretched glasses. Here’s hoping! On to the news so far.

Internet

Big news today as Google introduces the Google Public DNS. The service is not a DNS host or TLD, it’s a replacement for your ISP’s DNS server. Google boasts that there is no parking or search page when DNS lookups fail as many ISPs do (and as Verisign failed to do for the entire net), but I feel the looming “yet” in that statement. Get more info in Google expands plan to run own internet by Cade Metz. Iljitsch van Beijnum has more in Google Public DNS service not ideal for everyone.

In a related story, ICANN to prohibit nonexistent-domain redirect for new TLDs gives some details of a draft memorandum to prevent owners of the next batch of new TLDs from hijacking requests for non-existent domains.

Operating Systems

There’s been tremendous buzz this week about the so called “Black Screen of Death”. It appears, however, that it was much ado about nothing. Microsoft has released a statement about it and they deny everything. According to their research, the registry change that was blamed for the issue was not part of their updates at all. The full response is on technet: Reports of Issues with November Security Updates. According to Emil Protalinski, the company that first reported the problem—Prevx—has apologized. Emil’s report is Microsoft says B(lack)SODs not linked to latest patches.

In more proof that no OS is safe, Dan Goodin at Slashdot reports FreeBSD bug gives untrusted root access. The FreeBSD security officer has issues this advisory with a patch, which may not be the final version.

Virtualization

The new version of VirtualBox has been released. This is a big one with new features such as teleportation (live migration to everyone else), advanced snapshot-ing, and improved video acceleration. While I tend to shy away from VirtualBox on servers, I use it constantly on the desktop, However, it sounds like it might become a viable solution on servers, especially with the teleportation feature. Being prudent, I’ll likely wait a couple more versions for the kinks to be worked out. You can read more about this release in VirtualBox 3.1 adds live migration and branched snapshots.

That’s about all we have time for this week. Join us next week and find out if I can see! I hope they have the machine that goes ‘ping’. It’s my favourite.

November 27, 2009

Pythian
pythian
» Blogrotate #8: The Weekly Roundup of News for System Administrators

Good morning and happy Friday to all. Happy Thanksgiving to all of our friends, family, acquaintances, and well-wishers in the US. Enjoy the turkey and the football. As always, there’s not shortage of news stories, though the week seemed a bit slow because of the holiday. Here are some things we thought were interesting this week.

Operating Systems

Lately it seems like every week a new OS comes out. Windows 7 led the pack, then Ubuntu, then Red Hat. This week’s release? FreeBSD 8.0. There are a lot of changes in this release, so check out the FreeBSD 8.0-RELEASE Announcement.

KDE (The “K” Desktop Environment) is Repositioning the KDE Brand. This does not change the functionality, it’s a change to make a distinction between the community and the desktop itself. This probably will not interest most, but since I use KDE and write this blog I get to tell you about it anyway.

Software

In a follow-up to last week’s article about GPL code being found in a new Microsoft USB/DVD download tool found in Windows 7, Microsoft has delayed opening the source for the tool. This appears to be because they want to remove proprietary code from the release. Emil Protalinski has more in his article, Microsoft delays open sourcing Windows 7 tool. More details can be found on the Port25 blog at MS tech net in, Update on the Windows 7 USB/DVD Tool.

Internet

There’s yet another browser vulnerability for IE6 and IE7. Emil Protalinski at Ars Technica has the details in, IE6 and IE7 vulnerable to latest flaw; IE8 immune.

Not to be outdone, a major IE8 flaw makes ’safe’ sites unsafe, as The Register tells us about XSS issues in IE8.

Science Daily has an article about how Search Engines Are Source of Learning. The article discusses a report from Penn state about their research into how and why people use search engines. Among other things, “They found that search engines are primarily used for fact checking users’ own internal knowledge, meaning that they are part of the learning process rather than simply a source for information”. Hey! That’s how I use them!.

Have you ever wondered how much the internet weighs? Chris Stevens at CNET UK does some math in How heavy is the Internet?

Virtualization

Since we covered VMWare Fusion a couple weeks ago, check out The counter-punch: a review of Parallels Desktop 5 by Dave Girard.

Networking Datacenter

Virginia IT Systems Lack Network Redundancy is a scary little number. According to the article, “…in just five weeks this fall, the Virginia DMV suffered 12 computer system outages, putting individual offices out of business for a total of more than 100 hours”.

Did you ever wonder what the magic was behind World of Warcraft? Data Center Knowledge says WoW’s Back End: 10 Data Centers, 75,000 Cores, 13,000 blades and over 100TB of RAM.

Hardware

Have you ever needed to have a massive amount of storage on a budget? If so, this one may be for you. The folks over at BackBlaze offer a service allowing you to backup your PC for just $5 per month, and they do all of their storage in the cloud. Their solution to the storage problem was to build their own, and they have put all the plans and schematics for doing this on their site so you can too. Check out Petabytes on a budget: How to build cheap cloud storage. Caution: your mind may be blown.

Smoking could be hazardous to your Apple warranty by Jeff Smykil is an interesting read. Apple is refusing warranty service due to potential health hazards from second hand smoke transferred to laptops. Hey, Apple, if I’m sending my laptop in for repair, I expect it to be done by technicians with masks, goggles and rubber gloves (and anti-static straps of course). One would think this should be enough to protect your employees.

Networks Innnnnnnnn Spaaaaaaaaaaaaaaaaaaaaaaaaaace

This one is really really cool. On Nov 23rd Cisco launched what I think might be the worlds largest router into space. Layer8 at Network World has the details in, Internet routing blasts into space. There is an official news release: Cisco Router Sent Into Space Aboard Intelsat Satellite.

Well, that will do it for another week. Be sure to leave some comments with your own top stories this week. I checked the logs, I know people are reading. Let’s start some chatter.

November 6, 2009

Pythian
pythian
» Blogrotate #5: The Weekly Roundup of News for System Administrators

Hi all, and welcome back to blogrotate. It’s been a busy week here at Pythian which reduced the amount of time I had for cruising the news, so this weeks edition will be a short one. Here’s a few of the stories that tweaked our interest this week.

Operating Systems


The Machine SID Duplication Myth
is an article on the Microsoft Technet blog by Mark Russinovich. It goes through an in depth explanation of what SID’s are used for, and notes that Sysinternals has officially retired the NewSID utility as of Nov 03, 2009. This is of particular interest to anyone who created desktops and laptops via saved images as NewSID was a staple utility after the machine was imaged to ensure it did not conflict with other machines on the network.

Michael Larabel published some CentOS 5.4 vs. OpenSuSE 11.2 vs. Ubuntu 9.10 Benchmarks on the Phoronix site. I was suprised to see that CentOS beat the others on the majority of tests run, at least in part due to issues with the ext4 filesystem that both SuSE and Ubuntu use as their defaults.

Over at the Computerworld blog, Steven J. Vaughan-Nichols writes about 5 Reasons why Ubuntu 9.10 is better than Windows 7. I agree with most of what he says, but generally Linux is still not an easy conversion for a die hard Windows user. It sure did spark a huge amount of debate in the commentary.

Mandriva Linux 2010 is out. Check out the release information and feature set at the Mandriva blog site. I’ll have a closer look at this if I ever get the time.

Hardware

In the world of hard drives the trend has always been to bump up the amount of bits the drive can hold to combat the constant increase in data size. Another way of dealing with this could be deduplication of data which should reduce the amount of storage required for the same information. Could a hard drive dedupe data has more on this subject.

Security

Ryan Paul writes HTTPS, SSL attack vector discovered; fix is on the way. This vulnerability was discovered by Marsh Ray and Steve Dispensa from security company PhoneFactor but not publicized pending a fix. There is a temporary workaround from the OpenSSL team, hopefully it’ll be resolved quickly.

Not long after Windows 7 was released, John Leydon at The Register writes that Naked Win 7 still vulnerable to most viruses. He’s reporting on testing done by the Sophos security firm which showed that 7 out of 10 of the malware tested still managed to run in the default configuration. So even if you upgraded to Windows 7 you still need to run that anti virus.

Even Linux is not safe from security threats (nothing ever is IMHO). Bug in latest Linux gives untrusted users root access by Dan Goodin gives you the details. Patches for RedHat linux are already out, keep your system up to date to make sure you get the patch as soon as it’s available.

Virtualization

Red Hat takes on VMware with server virtualization solution by Ryan Paul discusses RedHat’s newest foray into the virtualization market with their solution called Enterprise Virtualization for Servers. This solution uses RedHat’s recently acquired KVM and is prominent in the recent RedHat Enterprise Linux 5.4 release.

So as not to be left out, Cisco, EMC, and VMware join hands and plunge into cloud with their new joint venture called Acadia. You can also read more about this in Cisco, EMC, VMware & Intel Form Acadia.

In the “I totally called it” department

I mentioned in a recent version of this blog that Microsoft was backing a Family Guy episode. I said at the time that I did not see how they could funny it up, apparently Microsoft could not see it either. Joe Fay gives us the skinny in Microsoft drops Family Guy like a hot deaf guy joke. Apparently the humour was not in keeping with the clean, family friendly image that Microsoft wants to convey. Seriously? I suggest someone at Microsoft watch any of the Seth McFarlane shows before signing on with him. I am guessing it was not a matter of foul language however, expletives are an occupational hazard when using Windows.

Til next time, keep your cache full and your swap empty.
Brad

October 23, 2009

Pythian
pythian
» Blogrotate #3: The Weekly Roundup of News for System Administrators

Welcome to volume 3 of Blogrotate. This is a short one this week, which is mostly dominated by the release of Windows 7. I have not had a chance to use it as yet but intend to give it a once over as soon as I get a chance. So, without further ado, on to the roundup.

Operating Systems

The big story this week was obviously the release of Microsoft’s Windows 7.  There are a number of good articles we’ve seen that cover different aspects of the release.  Some of our favourites are below.

Emil Protalinski over at Ars Technica has a look at the things you should know about Windows 7 in his article Windows 7 is here including pricing information, editions available and upgrade vs. fresh install.

Andrew Binstock at InfoWorld has an interesting look at the changes made to the Windows 7 kernel, specifically with regards to multithreaded performance in Windows 7 on multicore: How much faster.

Do you want to know if your system will be able to run Windows 7? See  Emil Protalinski’s article Are you Windows 7 compatible for more.

And on an amusing note, Apple premiered a new Mac ad last night (the same day Windows 7 was released) poking fun at Windows’ broken promises of the past.  This is a hoot, even if you love your Windows.  Careful if you have web filtering, some comments are NSFW.

Canonical and IBM team up on Ubuntu-based Win 7 alternative is an interesting article by Ryan Paul about an attempt to divert companies from using Windows.  The idea is that using a free OS like Ubuntu, and IBM’s Client for Smart Work can allow a company to extend its IT dollar by reducing licensing costs and keeping their old hardware, on which Ubuntu will run just fine.

Happy 5th anniversary to Ubuntu Linux. 5 years later, 5 ways that Ubuntu has made Linux more human is a look at some of the ways Ubuntu has impacted the OS world.

The H has posted an announcement that states CentOS 5.4 released to the public. We’ve been waiting for this since RedHat 5.4 was released in September. Time to upgrade your servers. The official release announcement can be found on the CentOS-Announce mailing list archive post Release for CentOS-5.4 i386 and x86_64.

Networking

Better wifi for mobile computers? Slashdot has an interesting post about a town in Virgina that has launched the first ever network employing unused frequencies, or white space, from the TV spectrum to run the network. See First Public White-Space Network Is Alive and the links therein for more.

Hardware

Slashdot has a post about NCSU’s Fingernail-Size Chip Can Hold 1TB of data. This is really something, but I can barely afford a 16GB now, these will cost a fortune.

Operating Systems (again?)

Last but certainly not least, be on the lookout for the release of Ubuntu 9.10 Karmic Koala which is slated for release on October 29. I’ve mentioned previously that I have been running the beta of Kubuntu for a couple of weeks now and I have to say, even with the beta bugs, I like what I see. More about that next week.

Ubuntu 9.10 Karmic Koala - coming Oct 29, 2009