The Spread Firefox community site got hacked – but how many others don’t we know about?

Posted on By Mark Wilson

The Spread Firefox community marketing site has been compromised twice in the last few months. Lots of the comments on the web criticise the site administrators for a) letting this happen, and b) their choice of technology to run the website but I think it’s interesting (and commendable, if a touch worrying) that they came clean and told registered users that their details may have been compromised.

I wonder how many sites have been compromised and users haven’t been notified that their details are now in someone else’s possession…

Microsoft’s view on managing heterogeneous environments

Posted on By Mark Wilson

It was interesting to hear Kirill Tatarinov (Microsoft Corporate VP for Enterprise Management) comment (at last Friday’s UK re-run of the key Microsoft Management Summit 2005 presentations) on Microsoft’s support for heterogeneous environments through its management products (especially as they are finally waking up to the idea that organisations want to run – and do run – non-Microsoft guest operating systems under Virtual Server).

At both the partner breakfast briefing and the main event, the message was that basically, Microsoft will embrace other environments but will not (for example) write Linux agents for Microsoft Systems Management Server (SMS), Microsoft Operations Manager (MOM), or any other Microsoft management product. To quote Tatarinov:

“[it’s] not part of our DNA and I don’t think this is something that we should be doing.”

Microsoft’s view is that products should be scalable and interoperable, providing open interfaces (e.g. WS-Management) alongside technologies such as the MOM connector framework and the SMS software development kit (SDK) to work with other products in the management space.

That may be a smart move – if only to avoid another law suit for supposed anti-competitive behaviour – but it also helps Microsoft to present itself as a team player, at a time when people are starting to take SMS seriously, when MOM is really gaining traction, and when the whole area of systems management for infrastructure built on Microsoft technologies is finally being addressed through the dynamic systems initiative (DSI).

Microsoft management technologies – product roadmap

Posted on By Mark Wilson

My recent post on Microsoft’s dynamic systems initiative (DSI) outlined the various waves of new products which Microsoft is releasing in the management space over the next few years. What follows is a summary of some of the other product roadmap information that I picked up from last Friday’s Best of the Microsoft Management Summit 2005 event:

System Center is Microsoft’s overarching brand for integration of it’s management products, in the same way that Computer Associates (CA) has Unicenter, Hewlett-Packard (HP) has OpenView and IBM has Tivoli.

Microsoft System Center Data Protection Manager 2006 is the first “System Center” branded product – launched last week in New York with an EMEA launch slated for 12 October 2005. The first release provides server backup and recovery for Windows – v2 (as part of the second wave of System Center products) will add support for Exchange Server, SQL Server and SharePoint.

Established products like Microsoft Systems Management Server 2003 (SMS) and Microsoft Operations Manager 2005 (MOM) are also part of the System Center suite and the launch of the SMS 2003 inventory tool for Microsoft updates integrates the Windows Software Update Services (WSUS) scanner into SMS – effectively a locally hosted version of Microsoft Update.

Windows Server 2003 Release 2 (R2) is due for release later this year and will bring a number of new features to Windows Server 2003:

  • New storage and management capabilities (Simple SAN, virtual disk service v1.1, common log file system, WS-Management, Microsoft Management Console v3.0).
  • Enhancements to Active Directory (AD) (federated services, ADAM in-the-box, AD as a NIS master).
  • .NET Framework enhancements (simplified data access and remoting, advanced transactions, ASP.NET v2.0).
  • Services for Unix (Unix application subsystem and utilities – no longer a separate download, database connectivity).

Microsoft are positioning R2 as a minor release – i.e. it has no kernel changes and will actually ship on two CDs, the first is effectively Windows Server 2003 with SP1 and the second has the extra functionality.

Microsoft Virtual Server 2005 R2 (formerly planned as Virtual Server 2005 service pack 1) is Microsoft’s answer for production virtual environments and will include:

  • Non-Windows guest support.
  • Network installation of guest operating systems.
  • Clustering support.
  • Greater scalability.
  • 64-bit host support.
  • Performance enhancements.
  • MOM management pack.
  • PXE booting.
  • A licensing program for the virtual hard disk (.VHD) file format.

Microsoft System Center Reporting Manager 2005 is due early in 2006 (so I guess the name will change) but is currently expected to include:

  • Integration of data from MOM, SMS and AD.
  • An extensible schema.
  • Facilitation of better business decision making.
  • Offline data warehouse.
  • Consolidated view of a multi-site hierarchy.
  • Streamlined querying.
  • Consolidated management.

Another new System Center product is Microsoft System Center Capacity Manager, a sizing solution (initially for Exchange Server 2003 and MOM 2005) which will provide:

  • Assessment of architecture choices for future deployment.
  • “What-if?” analysis.
  • Performance modelling for current deployments.
  • Identification of future bottlenecks.
  • Prediction of the user experience.
  • Understanding of the impact of changes.
  • Optimised upgrade path.

Further out on the development path are new versions of MOM and SMS. MOM v3 is expected to go into limited beta testing at the end of this year with a public beta early in 2006. SMS v4 is further out in the plan, expected in the first half of 2007 (as part of the Longhorn Server wave) with a limited beta in early 2006 which will be expanded later in the year.

Microsoft’s view is that every vendor’s management product has its agent(s), communications protocol, database and user interface, but MOM’s strength is in its knowledge, with management packs built by the product groups. Their goal is to capitalise on that strength and it is expected that MOM v3 will offer:

  • Model-based operations (more than just today’s management packs).
  • Service-oriented monitoring (using SDM models defined in Visual Studio 2005).
  • Improved task and command support.
  • Extensive software development kit (SDK) and authoring tools (making it easier to produce management packs and import knowledge, e.g. from the Internet).
  • Deep platform integration.
  • Role-based user interface.
  • Probable-cause analysis (a vehicle for managing uptime).

SMS v4 is about building on SMS 2003 (which some might consider to be the first solid SMS release), providing:

  • Model-based operations.
  • Desired configuration management.
  • IT policies and industry compliance.
  • Security interface for both intranet and Internet deployment (i.e. RPC over HTTPS).
  • Integration with Windows network access protection (NAP) to implement quarantine for patching etc.
  • Simple, role-based user interface.
  • Unified operating system deployment, pulling together RIS, ADS and the SMS operating system deployment feature pack.

Of course, much of this is still some way off, and product feature sets are always subject to change, but Microsoft is certainly making moves towards becoming a significant player in the enterprise management space – or at least for the management of their own platform.

Microsoft’s Dynamic Systems Initiative

Posted on By Mark Wilson

The Microsoft Management Summit is one of Microsoft’s annual conferences and last Friday, the most popular presentations were re-run in the UK. Microsoft clearly took the event seriously, bringing across from Redmond the Corporate VP for Enterprise Management (Kirrill Tatarinov); the Systems Management Server and Operations Manager Program Managers (Bill Anderson and Vlad Joanavic); and a Director of Product Management for Enterprise Management (Michael Emanuel).

Largely due to the quality of the speakers, the event was well worth attending – particular Michael Emanuel’s Dynamic Systems Initiative (DSI) presentation. I’ve seen DSI presentations before, but this was inspirational – largely due to the charismatic way in which he described the differences between desired and actual states as “ought-ness” and “is-ness” (with associated “was-ness”, “could-ness”, “good-ness” and “should-ness”).

I’ll try to explain it all below (with a few additions from previous DSI presentations)!

It is generally regarded that infrastructure costs fall rapidly whilst performance rises (a derivative of Moore’s Law). What is less well known is that as the infrastructure costs drop, the support costs associated with supporting systems rise. Typically, 70% of an organisation’s IT budget is spent on maintenance, with just 30% on new systems. The trouble is that our increasingly well connected, but highly distributed IT systems are becoming incredibly complex. Add to that, the organisational complexity with infrastructure architects, developers, systems administrators, service architects, business stakeholders, testers, IT management and even outsourced/offshore partners – wouldn’t it be great to do something to control the management costs and let them track the decreasing cost of the infrastructure?

IT complexity and cost

Businesses tend to be dynamic. All too often, IT is not. Microsoft’s answer is the DSI, which is about helping IT organisations to capture and use knowledge to design more manageable systems and automate ongoing operations, resulting in reduced costs and more time for IT to focus on what is most important to the business.

It sounds logical enough… so why don’t we do this already? Basically because IT infrastructure architects and IT operations managers don’t tend to talk the same language! In general, designers think about scalability, security and identity but gloss over the management element. With 80% of the cost of a project committed by design decisions at the end of the design phase (but only 8% of the cost incurred), it is all too often too late to change things when they reach production and don’t fit well within an operational model. DSI is about encouraging a full lifecycle view so that operational awareness can be built into applications and services right from the initial design, using models to capture knowledge (i.e. bottling what is known for re-use) throughout the lifecycle.

The key is that systems should be designed for operations with manageability architected into the system from the outset. To do this, there are two fundamental building blocks required:

  • A generic way in which to model knowledge – the systems definition model (SDM).
  • A generic way in which to communicate with a system – WS-Management.

The SDM is basically a manifest which provides a single source of information on a system, describing:

  • What “it” is.
  • What “it” is capable of doing.
  • What “it” needs to achieve these capabilities.

WS-Management is a web services implementation of Web Based Enterprise Management (WBEM), developed as part of the Web Services Interoperability Organization’s WS-* architecture as a joint effort by AMD, BMC Software, Dell, Intel, Microsoft, Sun Microsystems and WBEM Solutions, and the first Windows implementation (WS-Management is heterogeneous) will be made available later this year as part of Windows Server 2003 Release 2 (R2).

Meanwhile, Microsoft is slowly moving the existing models within its management products over to SDM in support of the DSI and sees Visual Studio as a tool for defining the holistic structure of the application, services and system – considering management at design time to integrate service requirements during development.

By combining the application designer’s feature/functionality view of the world with the IT Operations Manager’s data centre policies and constraints, SDM models can be defined and fed through a validation process to identify errors; but a development environment in itself if not enough. Knowledge is the key to management and the diagram below shows a desired state (models, constraints, policy, prescriptive guidance, SLAs, patches) being replicated down (Emanuel refers to this as “ought-ness”) and an actual state (inventory, metrics, events, alerts, compliance, service level, results – the “is-ness”) being replicated up. The art of management is resolving conflicts between the “ought-ness” and the “is-ness” states. Furthermore, this management is not performed using an expensive tool but is actually the knowledge held by administrators and operators which needs to be re-used. The DSI vision is self-managing systems so that every application is delivered with a model which can be deployed across every Windows system.

Managing systems

SDM models are held in a models database and applied through each of the Microsoft operations framework (MOF)/IT infrastructure library (ITIL) workflows to synchronise with reality. Operational systems feed this information into a data warehouse which stores a point in time view of this reality (the “was-ness”). Taking this a step further, by applying “what-if scenarios” (“could-ness”) to this historic state, the potential (“good-ness”) of what should be (“should-ness”, or future “ought-ness”) can be modelled (i.e. capacity planning).

Of course, Microsoft is a product and technology company and so they have products which map on to this approach. Looking at the MOF model, each quadrant has associated products:

  • Changing: Microsoft Systems Management Server.
  • Operating: Microsoft Operations Manager; Microsoft System Center Data Protection Manager.
  • Supporting: Microsoft Visual Studio 2005 Team System; Microsoft Business Solutions CRM.
  • Optimising: Microsoft System Center Capacity Manager; Microsoft System Center Reporting Manager.

To summarise, DSI consists of a number of core technical principles:

  • Software platforms and tools that enable knowledge of an IT system (architectural intent; operational environment; IT policies; resource needs; across platforms)…
  • …to be captured in software models (MOM management packs; software update manifests; SDMs)…
  • …that can be created, modified and operated upon across the IT lifecycle (develop, operate, analyse/act).

In terms of product, Microsoft has currently defined three waves of products to support the move to dynamic systems:

  • System Center Wave 1 is happening now and consists of:
    • Microsoft System Center Capacity Manager 2006 (codenamed Indy).
    • Microsoft System Center Reporting Manager 2005.
    • Microsoft Systems Management Server 2003 (service pack 1).
    • Microsoft System Center Data Protection Manager 2006.
    • Microsoft Operations Manager 2005.
    • Microsoft Visual Studio 2005.
    • Microsoft Windows Server 2003 R2 WS-Management.
  • System Center Wave 2 should happen around 2006-2007 and includes:
    • Windows Server (codenamed Longhorn).
    • Microsoft System Center Capacity Manager v2.
    • Microsoft Operations Manager v3.
    • Microsoft System Management Server v4.
    • Microsoft System Center Reporting Manager v2.
  • System Center Wave 3 is due around 2008-2009, and is when the various strands of the DSI can finally be pulled together.

Upgrading the firmware on my digital camera

Posted on By Mark Wilson

Last September, I bought myself a digital SLR camera – a Nikon D70. Whilst the D70 has been an excellent camera (on which I’ve taken over 4000 photos in the last year – that would have been more than 108 rolls of film at about £3.50 and, after taking processing costs of around £4 a roll into account, the camera has pretty much paid for itself), it does have some drawbacks compared with my film body – a Nikon F90x:

  • Firstly, in common with all Nikon DSLRs, it uses an APS-sized (23.7×15.6mm) sensor, meaning that all lens focal lengths effectively increase by about 1.5 – great for distance work (my 170mm-500mm lens becomes a 255-750mm) but putting extra demands on the quality of the glass at the centre of the lens, and a pain for wide-angle work. I’d much rather have a full-frame sensor, although even Canon (who seem to be the market leaders for DSLRs) only have full-frame sensors on their professional models.
  • Secondly, the auto-focus seems slow in comparison to my film body and doesn’t have a continuous evaluation mode (although I must confess I hardly use the F90x now, so it may just be the way that I remember things).
  • Thirdly, the D70’s slowest ISO setting is 200.
  • Finally, the D70 doesn’t have a remote cable release socket, so I can’t use my MC-30 remote cord to reduce camera shake on slow exposures (one workaround is to use the self timer).

Then a few months back, Nikon launched a new budget DSLR – the D50 – and upgraded the D70 to the D70s, adding improved auto-focus, new menus, a 10% larger screen (up from 1.8″ to 2.0″), flash support for wide angle lenses and a remote cable release socket. I was really annoyed as many of these were the features I had lost when I moved from the F90x to the D70. It will come as no surprise then, that I was pleased to find out it is possible to upgrade the firmware on the D70 to a similar level to the D70s and a few days back I did exactly that.

The firmware is upgraded in two parts (A and B) and is available from the Nikon European Support Centre. Nikon do require registration to download the update but the instructions are clear and concise and I had no problems in to taking my D70 from A1.01 and B1.02 to A and B2.00.

It won’t help out with the hardware-related constraints, but does give me a much clearer menu layout and (allegedly) improved auto-focus (the jury is still out on that one but it’s certainly no worse).

Go to… Citrix online

Posted on By Mark Wilson

Last week I had a product demonstrated to me from The Dot Net Factory (they have several products, all of which look interesting to me and I hope to blog some more about them soon) but as they are in Ohio (USA) and I am in the UK the demonstration was carried out across the Internet.

Apart from the products that were being demonstrated, one of the things that impressed me was how easy it was to join their web meeting – hosted by the guys at GoToMeeting – part of Citrix online. Citrix also have GoToAssist and GoToMyPC products but from the point of view of an end-user with limited time to spare, I was amazed at how easy it was to click on a link and (after installing a small ActiveX component) view the meeting host’s PC. We didn’t use the voice facilities as The Dot Net Factory called me on my mobile phone but GoToMeeting was definitely good from the point of view of seeing the system that the guys were talking to me about and I’d certainly recommend it for hosting meetings across the Internet.

YADA (Yet Another Download from Apple)

Posted on By Mark Wilson

(SUSE Linux has a setup tool called YAST – which stands for Yet Another Setup Tool).

This morning I turned on my PC and iTunes told me that there was a new version available for download (v5.0.1). In the four and a half months since I bought my iPod, I’ve had to download no less than 4 new versions of iTunes (even the version shipped in the box with the iPod was out of date). What I don’t understand is why iTunes doesn’t have its own update mechanism as this is getting silly now with a 32MB download for what would seem to be a minor release (which is presumably what the upgrade from 5.0 to 5.0.1 is). Co me on Apple – save me from all this YADA (Yet Another Download from Apple) nonsense.