New Vulnerability In Vista, et al.

It had to happen at some point.  Proof that no operating system is invulnerable to attack (this includes you, Penguin lovers), Microsoft’s security Response team announced a new vulnerability with a proof of concept has been discovered for the Windows 2000 SP4, Windows Server 2003 SP1, Windows XP SP1, Windows XP SP2 and Windows Vista operating systems.  This is the first vulnerability I’ve heard of on Vista.  It’s a plain old elevation of privilege attack.  It does require authenticated access to the targetted system.
 
Here’s the great news for Vista people.  Vista is by far the most secure OS that Microsoft has released.  Even if you are running as administrator and surfing the net, some dodgy code cannot install itself on your PC without your consent as long as you leave UAC running.  UAC is worth keeping in this scenario.  The logon script problem that I mentioned before would probably convince me to turn off UAC for ordinary user PC’s who run without admin privs – I don’t like the McGuyver fix for the problem all that much.
 
The Research team noted that this is a busy time of year for them.  Lots of people in their Mom’s basements prefer to unleash their attacks at this time of year while IT staffs are winding down or are running on skeleton crews, if they are even it at all.  If you do have an automated patching system, it might not be a bad idea to make sure the necessary staff are cross trained to cover for the holidays.  They should also subscribe to the security alert emails so that they are alerted to any actions that should be taken.

Happy Christmas!

Things are winding down and I’m soooo looking forward to having some time off.  It’ll be my first time off since early May at the inaugural Minasi Conference.  My contract will be ending tomorrow and I’m taking a few weeks off in January to catch up on things.  I’ll be available for contract work from mid-January onwards.
 
Happy Christmas, Hanukkah, Winterfest, Festivus, Turkey Day or whatever you’re celebrating this time of year.  I hope you have a safe and prosperous new year.

Citrix Buying Ardence

Brian Madden is reporting that Citrix (famed market leader in Server Based Computing) has announced that they are buying a company called Ardence.  Who are Ardence and what do they do?  Ardence make a product that allows you to stream an operating system onto desktops or servers.  Think about this … you can make a single image of your OS with all your standard software and stream it to client PC’s as required.  Need to make a change to the build?  Simple … update your image and restream it.  There’s also some benifits to server computing. 

Obviously, what I’ve just said about desktops can apply to Citrix servers.  It’s not an uncommon practice for companies to rebuild Citrix farm servers in rotation.  Having a streaming process would make this a doddle.

But hold on.  There’s more.  You can leverage Ardence to consolidate servers.  Have a busy web server during the day that does nothing at night?  Great … restream it as a backup server or some batch processing server so you don’t need extra hardware.  Maybe you have application silos in your Citrix farm and need to move servers quickly between them to match demand.  Streaming the OS makes this easy.

Brian Madden has written some documentation on the solution and I recommend you read it.  This is one of those solutions that just makes so much sense that I cannot believe I’ve never seen it deployed.

New Windows 2003 Cluster Functionality

Microsoft has released a new update for Windows Server 2003 two add two new (separate) functions to clustering. 
 
The first is File Share Wintnessing.  This adds another form of "communication" between two nodews of a cluster, thus preventing a split brain scenario or a situation where a fialover nodes uses incorrect cluster state information when it starts up.
 
The second feature enables configuration cluster heartbeats.  One size does not fit all so this functionality allows you to configure heartbeats according to your network or requirements so that unwarranted failovers do not take place.
 
There’s heaps of documentation on the Microsoft Support page so I’m not going to bother copy/pasting or re-interpreting it.  I’ll let you read it for yourself.
 
It requires Windows 2003 SP1 or Windows 2003 R2.  Obviously your OS must support clustering (Enterprise or Datacenter editions only).  Be sure to test this update before you deploy on valued systems.

Cougar and Centro Betas

Two new Microsoft betas have kicked off.  "Centro" is a new solution along the same lines as Small Business Server except that it runs on 3 * x64 "Longhorn" servers.  It’s aimed at mid sized organisations that need more server capacity than provided in SBS.  There was a small flurry of news activity about it around 2 months ago.  Included in the package is SQL 2005, System Center Essentials (a small business compilation of features from Excahnge 2007, ISA 2006, Operations Manager 2007, Configuration Manager 2007 and WSUS [3.0?]).
 
"Cougar" is the next generation of Small Business Server based on the "Longhorn" platform.  The latest version of the usual suspects will be included in their customised, wizard driven form. 
 
Credit: Bink.

MS TechNet Ireland Event: Using Microsoft Virtualisation Technologies

Colm Torris is keeping busy.  He’s just announced an event on Microsoft virtualisation technologies that will be held on January 18th in the Guiness Storehouse.  Topics being covered include:

  • How Virtualisation will change IT
  • Microsoft Virtual Server Technology: capabilities, deployment, challenges
  • How Virtualisation (Hypervisor) fits into Windows Server Codename Longhorn
  • Managing a mixed/virtual infrastructure: System Centre Virtual Machine Manager (VMM)
  • Tools and techniques to deploy, monitor, maintain and back up virtual and physical machines
  • IT Lifecycle: Provisioning, Back-up, Migration, Monitoring
  • Changes introduced with Windows Virtualisation
  • Virtual Server Architecture
  • Microsoft SoftGrid – Application virtualisation and streaming.
  • High Availability capabilities in Virtual Server
  • Benefits of AMD-V and Intel VT hardware virtualisation
  • Real life examples on deploying and managing virtual environments
  • Licensing implications of adding/removing virtual machines

I’m a huge fan of selectively using virtualisation technology to consolidate hardware, facilitating DR and operational recovery.  MS have some good products that have them neck and neck with VMware in the PC and mid-level market.  "Longhorn" will definitely put them into direct competition with VMware ESX Server.  I highly recommend that you check this free event out.

SDM Software Ships First Product

SDM Software is a start up by famed Goup Policy guru Darren Mar-Elia (MS Press, Windows IT Pro, Conference Speaker, etc).  The company has just shipped it’s first product, GPHealth reporter.  In Darren’s own words:

I’ve started a software company called SDM Software. Well, I’ve just shipped my first little product! Boy it feels good! The product, called GPHealth Reporter essentially reports on the details related to GP processing on a given local or remote system. You can use it to gather overall health of GP processing, and it can also save that information to a report, PDF or Excel. You can also use the tool to trigger a remote GP refresh against the machine you’re focused on. You can download a free 10-day trial copy of the product and check it out.

Best of luck, Darren!

Install VHDMount

A while back, I mentioned how you could back up Vista to a VHD file which you could mount using a VM or a tool called VHDMount.  VHDmount is a part of Virtual Server 2005 R2 SP1 Beta 2.  Dave Northey blogged a way to install this component without installing a full blown Virtual Server:

  • Download the installer.
  • Extract it’s contents: setup.exe /c /t <drive letter>:<path to the .msi file>
  • Install VHDMount: msiexec /i "Virtual Server 2005 Install.msi" /qn ADDLOCAL=VHDMount

Someone also commented that you shouldn’t try this on a machine with an existing installation of Virtual Server.

Credit: Dave Northey.