Microsoft Pressures Testers After Software Leak

narramissic writes "ITworld reports that Microsoft is 'taking tough measures to find out who leaked a Community Technology Preview (CTP) of Windows Home Server to The Hotfix.net blog.' The software preview was posted on the site by a user named 'Richard' soon after it was released to a small group of testers. In an e-mail to MVPs whose names contain 'Richard,' Kevin Beares, the Windows Home Server community lead at Microsoft, wrote: 'For right now, you have no access to the beta until I can find the Richard who posted the WHS (Windows Home Server) CTP on this site.... I will work with the Connect Admin team to determine which one of you is the real culprit of this leak.'"

Prediction

If this was Apple we would get many posts defending their right and need to do this. Since it is MS we won't. -Larry

Re:Prediction

Only from those that like Apple.

Apple-haters would whine about how if Microsoft did it, people would complain.

Re:Prediction

[Jake73]

I think MS needs to root out the leak, that's just good business. But why exclusively ban people with the name Richard? I mean, if I were to do something like this, I wouldn't use my real name. That just doesn't make sense.

In fact, I'd probably think that a real Richard was less likely to have done this. But perhaps that's what Richard would have me think...

Re:Prediction

[Bearhouse]

Richard, I know it's you, there's no point trying to redeem yourself, Steve still wants to see you in his office NOW!

Re:Prediction

[smoker2]

If this was Apple we would get many posts defending their right and need to do this. Since it is MS we won't. -Larry

And you posted Anon. because ... no-one will ever find out that Larry posted it.

Or maybe your name is Richard !

Wheels within wheels, God how I love office politics.

Re:Prediction

[smoker2]

Damn, I missed that one -

I meant to say "perhaps you are the Dick in question" !

Re:Prediction

[hunterx11]

If this were Apple, they would already have found the leaker and would have sued him into oblivion. In an instance like this, it's probably a good thing that Microsoft has generally been more lax than Apple.

Re:Prediction

Bah... I'm no Apple hater, but I agree with him. When Apple has gone after people for leaking software, pretty much the entire "community" justified it.

Re:Prediction

THAT'S IT! All you Slashdotters with Larry in your names, your accounts are disabled from anonymous posting until we find out who the Apple basher is. -Steve

Re:Prediction

[Daengbo]

Let's cut to the chase: both glasses contain the poison.

The MS approach

[ACS+Solver]

foreach (Tester ReallyUnluckyGuy in GetTestersByName("Richard"))
{
    ReallyUnluckyGuy.DenyAccess(Now);
    ReallyUnluckyGuy.AskQuestions(Later);
}

Re:The MS approach

[eneville]

foreach (Tester ReallyUnluckyGuy in GetTestersByName("Richard"))
{
ReallyUnluckyGuy.DenyAccess(Now);
ReallyUnluckyGuy.AskQuestions(Later);
}
foreach( sort keys %testers ) {
if( $_ =~ /^richard$/i ) {
undef $tesers{$_};
}
}

Re:The MS approach

[glwtta]

Same capitalization rules for class names, methods, and variables? Whatever that language is, I don't think I like it.

Re:The MS approach

[bsane]

Your language dictates capitalization of class names, methods, and variables? Whatever that language is, I don't think I like it.

Re:The MS approach

[eosp]

/^richard$/i and undef $testers{$_} for %testers;

Re:The MS approach

[His+name+cannot+be+s]

Leave it to a perl guy to *try* make some thing terse and unreadable, when he could have used javascript:

foreach (Tester ReallyUnluckyGuy in GetTestersByName("Richard"))
{
ReallyUnluckyGuy.DenyAccess(Now);
ReallyUnluckyGuy.AskQuestions(Later);
} foreach( sort keys %testers ) {
if( $_ =~ /^richard$/i ) {
undef $tesers{$_};
}
} for( each in testers )
      x = /richard/.test(testers[each]) ? PWN(testers[each]) : null;

Re:The MS approach

At least the Microsoft developer that would write that is honest :-)

Re:The MS approach

[lattyware]

Unlucky?
Damn, M$ end code is bad enough, imagine the testing stuff!

Re:The MS approach

MS writes better code than that.

List testers = GetTestersByName(leakTarget);

foreach (Tester reallyUnluckyGuy in testers)
{
        reallyUnluckyGuy.DenyAccess(CalculateOffset(DateTi me.UtcNow, leakTarget));
        reallyUnluckyGuy.AskQuestions(Later);
}

Maybe you should read the C# coding guide lines and learn some basic optimization techniques.

Capctha: teeming

Re:The MS approach

[Mattintosh]

Minor correction...

ReallyUnluckyGuy.DenyAccess(DateTime.Today);
ReallyUnluckyGuy.AskQuestions(DateTime.MaxValue);

Re:The MS approach

[TeXMaster]

testers.delete_if { |tester| tester.name.match /^richard$/i }

Re:The MS approach

[rainman_bc]

It'd more like be:

testers.grep(/^richard$/i).each { |tester| tester.delete }

Althogh this isn't exact either :)

Re:The MS approach

[rainman_bc]

Your language dictates capitalization of class names, methods, and variables? Whatever that language is, I don't think I like it.

I like it better than the language that says hash variables start with %, arrays with @ and scalar values with $

But mostly I like it better than languages that use rem or ' as the comment indicator :)

Wow...

[Etherwalk]

The leaker was arrogant/foolish enough to use his real name.

Probably, at least. Granted, you'd think he was just being a Richard and it needn't have anything to do with his name, but think about--someone leaked MS's follow-up email to people named Richard. Might it have been the Richard we're looking for? :)

Re:Wow...

[ClaraBow]

How many Dicks (I mean Richards) work for MS?

Re:Wow...

[TigerTime]

what a Dick

Re:Wow...

[vertinox]

The leaker was arrogant/foolish enough to use his real name.

To be fair, it isn't that hard for a Robert to type in Richard instead.

Re:Wow...

[Etherwalk]

Yes, but someone who received the email (meaning someone named Richard) then leaked the email.

Re:Wow...

[Soldrinero]

Might it have been the Richard we're looking for?

"These are not the Richards you are looking for"

Re:Wow...

[cmacb]

"To be fair, it isn't that hard for a Robert to type in Richard instead."

This just in:

Kevin Beares, the Windows Home Server community lead at Microsoft, wrote in an updated memo to all testers named Richard or Robert: 'As someone on Slashdot graciously pointed out, someone name Robert might have typed in Ricard instead so for right now, you have no access to the beta until I can find the Richard (or Robert). Note, people named Kevin, Steve or Bill will not be affected at this time, however we may have to expand our search to people named Dick, Bob, Bobby, Rick, Roberto, Richardo. That is all.

Re:Wow...

Perhaps he didn't use his real name. Maybe he was just being a Dick.

Re:Wow...

[KillerCow]

The leaker was arrogant/foolish enough to use his real name.

Yes, and that really helped us track him down.

-Bill Gates

Re:Wow...

[Pyrion]

"The leaker was arrogant/foolish enough to use his real name.

That or Microsoft has never heard of pseudonyms.

Re:Wow...

I've posted on boards under a different name, sometimes I use my middle name. I fail to see how someone posting as "Richard" is proof of anything.

Regards
Anon P. Coward

Re:Wow...

[derEikopf]

Well as we all know, there are many people named Richard who received the email. I haven't seen any evidence suggesting that the email leaker is the same as or even linked to the original leaker. The original linker might never even have received the email.

Re:Wow...

[andreyw]

"Quick! Ban all Roberts too..."

Re:Wow...

[cshark]

I don't know, but I imagine you could probably factor it if you could figure out how many gas stations there are in North America.

Re:Wow...

[DenmaFat]

And this has just been superseded by the new Windows Genuine Name Advantage, a required update.

Re:Wow...

[BluedemonX]

Amen to that. The person passed that test, but couldn't figure out that maybe the person that posted it might be using an assumed name.

Shades of...

[Dogtanian]

...the whole class being kept behind at school until they found the culprit.

Re:Shades of...

http://en.wikipedia.org/wiki/Collective_punishment ?

Re:Shades of...

It'll probably also have the same effect: realizations that the authority figure is powerless against an anonymous threat, and is willing to twist the arms of the innocent to reassert that power. It's a brilliant tactic in that it allows leadership to be viewed as impotent and unresonable in a crisis while at the same time lowering morale. There are, of course, some fuzzy intermediate steps, but in the long run this can only lead to profit!

Mmm...seething resentment.

Re:Shades of...

[arth1]

...the whole class being kept behind at school until they found the culprit.

No, this is far worse. With class detention, everybody in the class is held back. This is selective, like if the school held back only the black students and let the paler people go because the culprit was believed to be black.

People usually can't help their name, and should not have to be treated this way because of the name they were given. This is as stupid and thoughtless as if the government had published a list of names, and everyone doing business with someone named, say, "Charles Taylor" or "Agnes Reeves" would be subject to severe punishment. Oh, wait...

--
*Art

NOT a Model employee

[rueger]

"The software preview was posted on the site by a user named 'Richard' soon after it was released to a small group of testers."

I'd think that Microsoft's bigger question whether someone this dimwitted should allowed to work with their code. Why would I not be surprised if "Richard" really was the guy's name. Talk about poor judgment.

Re:NOT a Model employee

[kestasjk]

MVPs are not employees, they're people who help out with supporting people on the official forums and so on.

Re:NOT a Model employee

[charlieman]

So now Stallman has poor judgment.

Oh no!! I gave away Dicks last name!!

Re:NOT a Model employee

[WolfWithoutAClause]

I agree. He should have used the *full* name of another one of the testers.

Microsoft would be happy cos they'd have somebody to blame. He'd be happy because he doesn't get blamed. The poor sap that got blamed would be very unhappy.

- but that's just pure selfishness, since, as they say in Star Trek- 'the needs of the many outweigh the needs of the few or the one.'

Re:NOT a Model employee

[nanoflower]

So if the person had used the name Bill Gates everything would have been okay?

Re:NOT a Model employee

[Breakfast+Pants]

Didn't AOL get sued for doing something similar to that?

Re:NOT a Model employee

[WolfWithoutAClause]

Only in your bizarro world where Bill Gates is on the test team.

Now they are really screwed...

[Utopia]

...for leaking the letter too.

Re:Now they are really screwed...

[ady1]

Yeah and what more is that they sent a letter with unique spellings mistakes to each of the richards. Now he's really screwed.

Re:Now they are really screwed...

[Fox_1]

The "Canary Trap" from Patriot Games or some other Tom Clancey Novel. Instead of unique spelling mistakes, a selection of unique words to each email using a Thesaurus . One email says "We will find out who did this" another "We will discover who did this" another "We will locate who did this" and etcetera ...

Of course all they can find out is who leaked the email, there is no reason the Richard who leaked the email is the same person who posted the bad review. My AdultFriendFinder name is Richard Steel, you won't find me in the phone book under that.

Re:Now they are really screwed...

Richard Steel, really?? This is BobandSallyandGeorgieandDave200412.. we need to talk, I think you should probably go and get tested - for everything. Quickly. Remember, the girl with the dog and the midget friend and the guy in the bunny outfit who agreed to meet you under the northside bridge with your fat friend who was actually a blow up doll and your strange penguin machine? You need to get tested now!!

Re:Now they are really screwed...

[Creepy+Crawler]

And to foil that kind of obfusication, you just take one of those free translator services and translate it twice: once in a foregin lang, and once back.

That munges things up enough.

Re:Now they are really screwed...

[PPH]

Obfuscate my response, I will. - Yoda

Re:Now they are really screwed...

[drerwk]

We had a similar problem at Infocom with some reviewers. The next game we sent out had a room with with a book shelf. One of the books had an inscription unique to each person receiving a review copy. It was quite easy at that point to catch the leaker.

Re:Now they are really screwed...

Which is why you leak a modified version. Gives you plausable deniability, even if you don't change the catchwords. The meaning is the same, but the fingerprint just doesn't QUITE match.

Re:Now they are really screwed...

It's not possible to meet anyone under the northside bridge, it's soldered to the board and may have a heatsink on top.

Re:Now they are really screwed...

"My AdultFriendFinder name is Richard Steel"

A bit *too* informative, perhaps?

Re:Now they are really screwed...

[Prune]

Synonyms are not identical words. There are nuances of meaning, and in general it is not good English to thoughtlessly substitute one for another.

Re:Now they are really screwed...

[heson]

And with the foil which kind of obfusication, to you it just taken one of these free services of translator and translate it twice: once in Lang of foregin, and once postpones. The this things of munges raise enough.

grep /rich(?:ard)?|[dr]ick/

[Speare]

In an e-mail to MVPs whose names contain 'Richard,' Kevin Beares, the Windows Home Server community lead at Microsoft, wrote: 'For right now, you have no access to the beta until I can find the Richard who posted the WHS (Windows Home Server) CTP on this site.

Translation, "Are you the Dick who leaked?"

Re:grep /rich(?:ard)?|[dr]ick/

MS: "Are you the Dick who leaked?"
BD: "That's BIG Dick to you."

Re:grep /rich(?:ard)?|[dr]ick/

Translation, "Are you the Dick who leaked?"

Microsoft: "Because we're pissed!"

Because clearly he *must* have used his real name

[tjrw]

Sheesh,
this is about as well-thought out as the no-fly list "algorithm". Well, Abdul looks a bit like Andrew so you're a suspect, eh?

If they didn't watermark, or put some other individual identifying marks in each of the CTPs handed out, then they have no clue who leaked it, and punishing the innocent is not going to improve their chances.

Dear Slashdot - Thankyou!

Dear Slashdot,

Thankyou for agreeing to help publicize our new products by spreading information about our phoney leak. You have my personal assurance that if we ever find this "Richard" character, I will be certain to punish him very severely for creating public awareness of our super-innovative new server software. Gosh, I do hope no-one downloads a pirate version and sees how awesome it is!

Also, thanks for your good work on the Xbox 360. Who would have thought so many Linux dorks would be willing to buy into our wall-to-wall DRM and platform lockin?

-- Bill Gates

(This is a private email, right? IE is doing something strange....)

Re:Dear Slashdot - Thankyou!

[HomelessInLaJolla]

Also, thanks for your good work...Bill Gates This e-mail seems to indicate that some Slashdot maintainers originate from within MS.

Re:Dear Slashdot - Thankyou!

Actually, it doesn't indicate that at all.

It's because you sent a message to him from a hotmail.com, which generates message ids ending in @phx.gbl. The References header is what his email client generates to indicate that it was a response to your message.

Re:Dear Slashdot - Thankyou!

Perhaps you could post the complete header for the email you received? It's a bit inconclusive at the moment!

Re:Dear Slashdot - Thankyou!

[HomelessInLaJolla]

How come I don't see a References field with phx.gbl more often when people respond to e-mails which I send from my Hotmail accounts?

Re:Dear Slashdot - Thankyou!

[HomelessInLaJolla]

There are no other real meaningful headers. It's sent from a gmail account and gmail doesn't include an X-Originating-IP. Anything which comes out of gmail appears to originate from within the depths of google, and that's all the information we get.

Received: from ug-out-1314.google.com ([66.249.92.173]) by bay0-mc11-f5.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.2668); Fri, 13 Apr 2007 13:02:25 -0700
Received: by ug-out-1314.google.com with SMTP id u2so599714uge for ; Fri, 13 Apr 2007 13:02:25 -0700 (PDT)
Received: by 10.82.120.14 with SMTP id s14mr4791299buc.1176494545031; Fri, 13 Apr 2007 13:02:25 -0700 (PDT)
Received: by 10.82.114.19 with HTTP; Fri, 13 Apr 2007 13:02:24 -0700 (PDT)

Re:Dear Slashdot - Thankyou!

Because not all mail clients add a References header when replying.

This should be interesting!

[Odiumjunkie]

This will be a great opportunity to get a rare insight in to the kind of proprietary, highly advanced digital fingerprinting schemes they're using at Redmond! Digital certificates, binary padding - who can say?!

The software preview was posted on the site by a user named 'Richard' soon after it was released to a small group of testers. In an e-mail to MVPs whose names contain 'Richard,'....

Oh...

Re:This should be interesting!

[ichigo+2.0]

Good thing the leaker didn't use the name Steve.

Why Richard?

[apathy+maybe]

And I wonder why Kevin Beares thinks it was a Richard who leaked this. If I was doing such a thing, especially when there are only a small group of testers, I would use a pseudonym. Richard is as good a one as any other.

Also, I wonder how he thinks he can work it out? Contacting the ISPs perhaps? (From the article it seems as if the webmaster for the site where the leak was posted will help.) I'm sure all the testers will deny being "Richard" of leaking fame.

This whole thing seems like a big beat up.

Re:Why Richard?

[multisync]

Also, I wonder how he thinks he can work it out? Contacting the ISPs perhaps?

Oh! I know! Call the ISPs pretending to be the testers and ask "did I post a CTP of Windows Home Server to The Hotfix.net blog?"

Re:Why Richard?

[crazyjimmy]

See, if I was doing this, I'd use the first name of any fellow tester that I didn't like very much. hehehe.

Re:Why Richard?

[the+honger]

ah, a "leaking Richard" scenario...time for the tracking hounds. Make haste!

Why didn't the leaker use the username "Bill"?

That has to be the most rediculous thing I've ever heard - it sounds like a thing a pre-school teacher would do; find some graffiti with a name on it and punish those with the same name. Imagine if the leaker used the name "Bill", would they have cut of all communication to the boss?

WHS

[DaMattster]

Want a Windows Home Server? Load a copy of Linux/*BSD and Samba on to a spare PC. There you go, all the power of a basic domain without all the costs associated with an M$ product.

Re:WHS

This post smacks of complete ignorance. All the poster sees is the name of the product and assumes he knows all its capabilities.

Re:WHS

[cyphercell]

Maybe, I mean why would Microsoft create a Windows Home Server other than to compete with *nix/BSD where it's been done for years.

Repeat after me "Microsoft is not an innovator", again "Microsoft is not an innovator", one more time "Microsoft is not an innovator", do you get it yet?

Re:WHS

[NeverVotedBush]

Tell us what is wrong with his assumptions - Almost any Linux distribution has web server, mail server, firewall, spam filter, database serving, storage serving, print serving, you name it right out of the box. Please tell us what features Microsoft Home Server has that are not available for free and already in widespread use on the net under Linux.

Come on. You know you can't.

Re:WHS

[WED+Fan]

God damn it, I wish I still had my mod points. Next time, try posting when I still have them. Ok?

Re:WHS

Well for starters:

1) Single instance store automatic differential backups. none of this shitty "dd" stuff; this compares each 4 kb block with a database on the server and only uploads ones that have a different hash. Very efficient and very nice.

2) Automatic warnings if any Windows machine on your network has AV or AntiSpyware turned off.

3) Automatic warnings if any of your machines has not backed up in the last several days. (and the software will wake machines from sleep mode to do the backup and then have them go back to sleep).

4) Ability to serve as a remote control gateway to your computers (where you go to the website of the server and can initiate secured remote desktop sessions to your other machines from there with only 2 ports forwarded to the server and none to any other machines.

But then again, I have actually tried the beta instead of just making shit up about it.

Re:WHS

[cyphercell]

At the 2007 Consumer Electronics Show (CES) in Las Vegas this week (see my special report), Microsoft previewed its long-awaited Windows Home Server (WHS) product, a Windows Server 2003 with Service Pack 2 (SP2)-based server for consumers that dispenses with the complexities of most Windows Server versions and provides the core storage, sharing, and remote access functionality that digital media and home networking enthusiasts require. - Paul Thurrott http://www.winsupersite.com/reviews/whs_preview.as p

I'm sorry, but this OS sounds like a stinking pile of M$ Bob manure. Anyone with an inkling of familiarity with *nix already has this and more for a lot less. Heck it's so bad, I think Microsoft would be better off not exposing it's customer base to this market. The Home server is so easily replaced by a more powerful/flexible Linux implementation that Microsoft is effectively putting a stock '71 pinto in the Indy 500, it's sad, nothing else.

Re:WHS

Richard is that you again?

Re:WHS

[gallwapa]

How about the ability to install most programs without having to wait 8 minutes for the source to compile (3.2ghz xeon w/ 2 gigs of RAM took that long to compile mencoder last night) :-)

Not that I'm defending it - I use SLES for my server here anyway

Re:WHS

[pyrbrand]

Fine: OOB experience. The purpose of WHS is not to be a personal web/email/etc server. It's to be a plug and play device on your home network which will take care of automated backups shared media storage and streaming, hot swappable storage that maps to a redundant shared storage pool along with free minimal-setup web access to this stuff remotely. Basically, this is for your mom, the user who "doesn't know what they're doing," not the uber geek who wants an ssh tunnel to their home proxy server so work doesn't know they've been chatting online all day and shopping for golf clubs. It's also meant as a platform for "always on" services such as home automation etc that wouldn't otherwise be reliable in the hands of a novice user who doesn't understand that it won't work when it's turned off. It actually looks pretty cool, if for no other reason than the fact that the storage is easily expandible with the system on. Because of the redundant hot-swappable storage, you can just pull out your smallest drive and pop in a bigger one when you run out of space - while the machine is on.

Re:WHS

[westlake]

Want a Windows Home Server? Load a copy of Linux/*BSD and Samba on to a spare PC. There you go, all the power of a basic domain without all the costs associated with an M$ product.

WHS:

Intended for users who have never seen or touched a server OS.
Redundant storage and hot pluggable drives for those for whom RAID is an insect spray can.
To add storage just slip in another drive and you are good to go.
Automated backups for every system on the net. Recover older versions of files. Single instance storage
Remote access and administration. Remote control over the web --- again, intended for users who have no experience in any of this.

Re:WHS

[cyphercell]

If I bought this for my mom, it would be years before she would loan me money again and that's just not something I'm prepared to do. And if you think she'd buy it on her own, well you don't know my mom. :)

Re:WHS

[figleaf]

Read up on the Reviewers Guide document that comes with the beta if you are so interested.
I don't think people will be foolish enough to break their NDAs on /.

Re:WHS

It's to be a plug and play device on your home network which will take care of automated backups shared media storage and streaming...
Basically, this is for your mom, the user who "doesn't know what they're doing,"

Right....

In other words, there is no target market.

Re:WHS

[cyphercell]

1. dd? try mondo or amanda, or even just hack something together with cron and tar.
2. Sounds really annoying, also what if you use AVG or other 3rd party software?
3. Again extremely annoying, worthless even. If we're using automated backups and they don't run because the system is off, then there's probably nothing to backup.
4. This is new?

I'm sorry this does sound kinda cool for a Windows environment, but in the Linux world, WHS looks a day late and a dollar short.

Re:WHS

[mikelieman]

"Intended for users who have never seen or touched a server OS."

Yeah, that's the supposed Idea. I remember when they pitched that line for NT, too.

"Redundant storage and hot pluggable drives for those for whom RAID is an insect spray can."

If you don't know what RAID is, why would you bother specing a home-pc with hot swappable drives?

"To add storage just slip in another drive and you are good to go."

Yeah, assuming you got a server chassis with hot swappable drives. Which, by definition, the end-user this is targeted at doesn't.

"Automated backups for every system on the net. Recover older versions of files. Single instance storage"

Yeah, that's a good pitch, too. So far? Vapor-ware!

"Remote access and administration. Remote control over the web --- again, intended for users who have no experience in any of this."

Oh, there's a security hole just waiting for a portscan to come along!

This is aimed at Fanbois who just don't have the brains to make the leap to Ubuntu or Fedora.

IOW, A cute toy.

Re:WHS

[pyrbrand]

Fine, maybe not your mom, but there certainly is a class of people who have increasing amounts of media - family photos, music collections, home videos stored across their various machines (their laptop, the old family computer, work etc) who would see the benefit of having this all in one place that they could get at from anywhere.

People like this want the equivalent of a digital wallet where they can show off pictures of the kids at work or at parents. It's that kind of person, along with the consumer electronics geek (the kind who buys media center extenders) who seems to be the target market.

Re:WHS

[Technician]

Want a Windows Home Server? Load a copy of Linux/*BSD and Samba on to a spare PC.

Want to save some power, desk space, and money on hardware?

http://www.simpletech.com/commercial/simpleshare/

Here is a Linux package without the bulk and power requirements of a PC. The wall wart to power it is rated at 36 Watts max. It provides disk encryption, user based or share based access control, SMB and nfs. With the addition of external USB drives it provides RAID mirroring and striping. If you don't use RAID, it can simply expand using external USB drives. If you are not using both USB ports for drives, it can be used as a USB printserver.

For the ultimate geek, the firmware is hackable. You can add telenet for example. No warranty for making a brick however.

Units other than the 160 Gig model have a 3 year warranty. (I've used it. I mis-configured the software by enabling user based rights and share password based rights (a no-no that is not documented) and they recovered it under warranty.

Drive spin-down works except under version 1.07 of the firmware where drive health monitoring keeps it awake.

Re:WHS

[rohan972]

1) Single instance store automatic differential backups. none of this shitty "dd" stuff; this compares each 4 kb block with a database on the server and only uploads ones that have a different hash. Very efficient and very nice.

Sort of like rsync, bacula, amanda?

2) Automatic warnings if any Windows machine on your network has AV or AntiSpyware turned off.

With *nix, we have essential services started automatically at boot time. I'd be interested to know if it checks for Microsoft AV and antispyware software only, or any companies. If MS only, possible antitrust violation here.

3) Automatic warnings if any of your machines has not backed up in the last several days. (and the software will wake machines from sleep mode to do the backup and then have them go back to sleep).

Easily set up on Linux, I presume *BSD also.

4) Ability to serve as a remote control gateway to your computers (where you go to the website of the server and can initiate secured remote desktop sessions to your other machines from there with only 2 ports forwarded to the server and none to any other machines.

Remember the GP's request? "Please tell us what features Microsoft Home Server has that are not available for free and already in widespread use on the net under Linux." Why would you even bring up remote desktop sessions?

But then again, I have actually tried the beta instead of just making shit up about it.

Yes, but you didn't mention any useful features not available in linux/*BSD for free. 1,3 and 4 are available and included in mainstream linux disto's (again, I presume *BSD also, but easily obtainable if not). Without further info, 2 seems possibly aimed at increasing Microsoft marketshare of security products, despite (so I hear) being among the worst available, and even if it isn't, it doesn't seem very useful. Set up your AV etc to run as desired.

Re:WHS

So cron and tar now have single instancing across various computers? Oh, I thought not.

If they have 3rd party software that works fine too. Mine has McAfee (came with it) and that AV and Anti Spy works fine with it. So do all the others.

What if they don't run because the machine has a dependency issue or some other software broke the backup?

No, but it is very nice and it is a lot easier to setup for a real home user than most anything else.

Re:WHS

[cyphercell]

You mean technophile CEOs in love with M$ that will have the IT guys come out their house to have this installed, them and fanbois that are sick of being PWND1! by Linux hackers. I can't wrap my head around this being much more than competition for Linux in the hobbyist market or some crapola frontpage for networks.

Re:WHS

[multisync]

Gosh darn it, I wish I had mod points. Next time, try posting when I still have them, m'kay???

Re:WHS

[cyphercell]

So cron and tar now have single instancing across various computers? Oh, I thought not.

WIM is a mashup of existing technologies reformulated in to a proprietary format, nothing else. Cron and tar is what I called a hack, I use it for the most important stuff like /home and /etc. I don't need some fancy image space saver because there is never duplicate files in my backups each only backs up what was modified since last week, really simple actually. Just three backups of the stuff most likely to break for the past three weeks.

If they have 3rd party software that works fine too. Mine has McAfee (came with it) and that AV and Anti Spy works fine with it. So do all the others.

Fair enough, but what if I have systems that don't run AV or antispyware, what if I also have a Mac on the network or a Debian box? Sorry, but I can ask questions about this all day.

What if they don't run because the machine has a dependency issue or some other software broke the backup?

All the more reason to use cron and tar or stay in the official repository of your favorite distribution. For home users I suspect the most likely reason for missing a backup will be that the computer wasn't on to begin with. Which will be really annoying when every time they start their computer they get a warning and a slowed network while the backup system commences or even just pokes it's nose around their computer.

No, but it is very nice and it is a lot easier to setup for a real home user than most anything else.

Back to the point, *nix has offered all of this and more for YEARS. The usability aspect can be patched together over Google's summer of code by some moderately intelligent CS sophomore. I'm happy Windows users will be able to poke their noses out of the cave a little bit, but don't go on acting like Microsoft has something *nix doesn't, cause *nix has had it for years and Microsoft's implementation is barely in beta. Microsoft is playing catch up again and calling it innovation, nothing to see here.

Re:WHS

[kabz]

"Automatic warnings if any Windows machine on your network has AV or AntiSpyware turned off."

You mean like when you have to turn off "OneCARE" because it won't allow Flight Simulator X to install on Vista. I thought my DVD was bad, but turning off OneCARE fixed it and allowed it to install.

You'd think OneCARE would have at least some smarts on not virus checking an MS DVD.

Stupid Vista. It's now been erased and replaced with Ubunutu 7.0x Feisty.

Re:WHS

[rbochan]

...Please tell us what features Microsoft Home Server has that are not available for free and already in widespread use on the net under Linux.

A GUI that's forced on you to take up valuable resources. And sound effects! :oP

Re:WHS

[mrbcs]

Looks cool. If you didn't post AC I would have modded you up.

I don't like Microsofts usual business practices, but this looks cool.

I have a very similar setup already but it wasn't "simple enough for Mom" to set up, and I don't have the server warning me about Antivirus or spyware. I think there will be a market for something like this as long as Microsoft isn't too greedy with their pricing. I highly doubt that home users would even consider using a linux server for this job, but I also think that home users would be interested once they see something like this set up. I know we've been talking "convergance" (sp?) for years, but this might actually help. People are going to want to play media on the tv in the living room and have their songs available to all their computers. I think it's only a matter of time until this becomes the norm. I know that the people that have seen my network in action love it.

Shit, 5 years ago hardly anyone had more than one computer in the house... now networks are common.

Re:WHS

[Eudial]

Intended for users who have never seen or touched a server OS.
Redundant storage and hot pluggable drives for those for whom RAID is an insect spray can.
To add storage just slip in another drive and you are good to go.
Automated backups for every system on the net. Recover older versions of files. Single instance storage
Remote access and administration. Remote control over the web --- again, intended for users who have no experience in any of this.

Is it really such a wise idea to let that sort of people out on the internet, let alone near a server of any kind, irregardless of how user friendly?

Re:WHS

[I'm+Don+Giovanni]

Is it the new "in" thing around here to authoritatively speak about something one is totally ignorant about? Read up on WHS before speaking more so you don't make yourself look even more foolish.

Re:WHS

Preach it, 404, preach it, my brotha (or sista)! Though on the whole the slashmob is far more polite than the diggduggers, IMO. If "Richard" can't honor his/her word after signing the NDA (regardless of M$ or Apple...or Ubuntu for that matter), s/he should face the music. Perhaps the worthy linux distros should try to tailor a server distro (a'la WHS) for my mother-in-law.

Re:WHS

[mikelieman]

If you have something relevant to add, perhaps addressing my individual points would have been more productive.

Re:WHS

You need to work on your method. This reads like it's straight out of a marketing pamphlet, nobody's going to believe you're a real, unpaid poster.

Re:WHS

[Foolhardy]

The target market is for people who don't install the OS themselves-- they buy a computer from an OEM with the hardware and OS preinstalled. The OEM will make sure that the drives are hot-swappable and such. Adding new drives and merging them into a RAID is done automatically and silently upon plugging the drive in. They'll be happy to make sure you buy only their specially branded "WHS compatible" hot swappable drives for that purpose. I would be surprised if a retail version is even available on shelves.

Single instance storage has existed since at least Windows 2000. The "recover older versions" thing is connected to the "older versions" shell extension, also connected to volume shadow copies, giving you the option to restore from both known backups on file and local VSS copies of a file. Automated remote backups aren't hard to implement with file sharing, and I would think that WHS comes with some simple UI to set it up, with which workstations to backup and corresponding credentials on each.

Remote control uses RDP. I think it will be configured to accept only connections on the local network, and will certainly require some kind of authentication.

See also:
Windows Home Server on Wikipedia
A demo video from MS
an OEM offering from HP

Re:WHS

[omicronish]

"Redundant storage and hot pluggable drives for those for whom RAID is an insect spray can." If you don't know what RAID is, why would you bother specing a home-pc with hot swappable drives? "To add storage just slip in another drive and you are good to go." Yeah, assuming you got a server chassis with hot swappable drives. Which, by definition, the end-user this is targeted at doesn't.

They don't necessarily have to build their own machine. HP will have MediaMart Server, which is a headless machine with support for hot-swappable drives and will run Windows Home Server.

"Automated backups for every system on the net. Recover older versions of files. Single instance storage" Yeah, that's a good pitch, too. So far? Vapor-ware!

Several thousand are participating in the beta, and there's a forum full of people using it. Yep, sounds like vapor-ware to me.

"Remote access and administration. Remote control over the web --- again, intended for users who have no experience in any of this." Oh, there's a security hole just waiting for a portscan to come along!

Off by default.

This is aimed at Fanbois who just don't have the brains to make the leap to Ubuntu or Fedora.

WHS automatically replicates data across all attached hard drives, which can be internal/external and of different sizes, and will also automatically backup all my networked machines without duplicating files. If Ubuntu/Fedora can do that, then please enlighten me.

Re:WHS

[rts008]

you forgot:

5. "Windows Home Server is a new version of the Windows OS that lets users set up secure networks of PCs at home ..." Secure, MS? hahahahaohohohheeheehee

1,3,and 4 can all be done easier with *nix, 2 is to be avoided at all costs.

Just another pie in the sky money grab attempt by MS.
If you don't drink their koolaide, there's nothing to see here, move along.

Re:WHS

[Technician]

nobody's going to believe you're a real, unpaid poster.

True. I thought that after I hit send. Maybe I should have posted several other NAS in a box items. I have 2 of these and use them for media storage instead of a PC. It's cheaper to use a NAS then upgrade 3 PC's and 2 laptops with larger drives. My P-III only has a 30 Gig drive and my laptop only has a 20. They both play movies from the servers just fine. It saves lots of local storage space for files used all over the house.

Linksys, Buffalo, Seagate, and others also have NAS solutions. I picked the one I did because of the encryption. If it is shut off or powered down the encrypted shares do not auto mount on power up. I use that for my tax returns, banking info, and other sensitive information. If you walk off with my drive, good luck.

1 The configuration menu is password protected. A factory reset will fix that.
2 The encrypted partition won't mount without entering the encryption key even after a factory reset. No key, no data recovery. You can delete the encrypted partition, but not access it. I like that.

Re:WHS

[westlake]

"Intended for users who have never seen or touched a server OS."
Yeah, that's the supposed Idea. I remember when they pitched that line for NT, too.

I don't recall NT ever being pitched as a consumer OS --- as for WHS: Windows Home Server Beta 2 Screenshot Gallery Part 2: Client Install & Configuration

If you don't know what RAID is, why would you bother specing a home-pc with hot swappable drives?
"To add storage just slip in another drive and you are good to go."
Yeah, assuming you got a server chassis with hot swappable drives. Which, by definition, the end-user this is targeted at doesn't.

Wrong again. The user doesn't have to spec anything.

Internal/External. ATA/SATA. USB/Firewire. None of this matters to WHS. Everything available is added to the general store.

HP MediaSmart Server Up to 6TB of storage.

Drives are set into cartridges. There's no need for the user to crack open the case. No need need for him to know or care about the system internals. Should hit the market around September.

"Automated backups for every system on the net. Recover older versions of files. Single instance storage"
Yeah, that's a good pitch, too. So far? Vapor-ware!

Not Vapor-ware. A Beta-2. Or else why play for geek-points by leaking the program to the web?

"Remote access and administration. Remote control over the web --- again, intended for users who have no experience in any of this."
Oh, there's a security hole just waiting for a portscan to come along!

"Microsoft is providing WHS users with a free Internet address via Windows Live. This address will give you a remote interface into your entire home network, not just WHS. You will be able to access any shared folders remotely, or even control individual PCs remotely.

This technology, which is based on remote access functionality in Windows Small Business Server, will let consumers do things like upload photos from a kiosk from a remote part of the world, download files they need while on the road, or enjoy recorded TV shows while they're on vacation. Microsoft will also allow you to pick a vanity Internet address through Windows Live Domains if you'd like something more custom.

Incidentally, the remote access functionality is free in that you won't be paying any annual or monthly fees, it's just a part of the benefit of using WHS." Windows Home Server Preview, Windows Home Server Points Way to Next SBS

This is aimed at Fanbois who just don't have the brains to make the leap to Ubuntu or Fedora

It's aimed at users who don't know what a fan boy is and can't tell a Fedora from a Stetson.

Re:WHS

[kimvette]

Price out some hot swap chassis then.
You won't see any at Best Buy or CompUSA.

Joe Sixpack consumers who buy boards with Intel Matrix chipsets can hot swap, but will the chassis their systems are installed in make hot swap easy, or even possible, without laying a drive next to the chassis until powering down is convenient (I know, it's a home system, but hot swap is an advertised feature so bear with me)?

Even worse: is Microsoft NOT advertising hot swap based on Matrix or a similar RAID-equipped chipset, but software RAID? What about IDE drives? You're NOT going to hot swap IDE on a consumer board in a consumer chassis; you WILL fry components. That would be true of most server boards as well; you need something like this ( http://www.scsi4me.com/product_info.php?products_i d=1236 ) or this ( http://fwdepot.com/thestore/product_info.php/produ cts_id/1708 ) which basically puts a proprietary hotswap-aware controller in front of each drive, encased in a chassis, to work around IDE's limitations. The end cost is going to be more than SuperMicro's low-end hot swap SATA chassis (I LOVE those chassis, BTW, and if the fans weren't so darn loud I'd have gone supermicro on my new machine like I did on my old one). Wholesale pricing on quality hot swap chassis is over $400, unless you're prepared to buy in volume. NOT consumer hardware.

Worst: is this the software RAID Windows has had for years? Supporting hot swap now? If you're running a pure software RAID in Windows on a Matrix or similar hybrid chipset solution, you're a moron and deserve what comes with Windows' software RAID solution. I can understand running software RAID on a matrix board if you're running Linux or BSD (since neither kernel natively supports RAID for boot drives) but on Windows it's pure stupidity.

Back to the point: if RAID is an advertised feature, and consumer hardware doesn't support hotswap or makes it very difficult, parent's point is totally valid.

So what will the Home Server product be? Not having seen it (my MSDN subscriptions ran out LONG ago) all I can guess is that it will push advertising into the grey areas of legality just like the Vista sticker did: sure, it'll support hot swap RAID*

*But only if you have a hot swap chipset (figure $150 min for a quality board with Matrix) and hot swap chassis

In any case, this has been deliverable on Windows XP (a home OS) for years now, since most workstation boards supporting Hot Swap have supported Windows XP from the beginning.

Re:WHS

[inode_buddha]

Good points actually, IMHO. I think what you are really complaining about is the "MS Mind-set". It's the sort of thing where thy simply *cannot* accommodate any ideas other than their own. Much like having elderly (senile?) parents, they have fossilized themselves and the told the *rest* of the world to adapt to them.

Re:WHS

Please tell us what features Microsoft Home Server has that are not available for free and already in widespread use on the net under Linux.

MS fanboy loyalty?

Re:WHS

The Home Server is for Joe Sixpack.

Now, if Ubuntu or whatever wants to do something that is as slick and easy to use, then great! But I doubt if they can be compatible with some of the MS proprietary features that MS supports.

Your post is shrill and really is ignorant of the product.

Re:WHS

[CableModemSniper]

Just fyi, 1 is rsync. I don't know of equivalents for the other features off the top of my head.

Re:WHS

Once again I find myself in an argument with a winfanboy whose only defense is vendor lockin. You think I'm being shrill, for context http://science.slashdot.org/comments.pl?sid=230803 &threshold=-1&commentsort=0&mode=thread&cid=187315 21, read this entire thread then get back to me. Keep in mind that the first post in this thread merely mentioned Linux as an alternative to this WHS crap, then note that nearly every damned Linux distro under the sun is capable of this. See my link (127.0.0.1) it's to the server on my desktop, I access it from work, it has databases, php, remote management, automated backups, comprehensive backups, smooth upgrades, thousands of software packages and I control three computers from it. You know how much the software cost? $0 My home network has been setup this way since '04 and I'm by no means an early adopter. Joe Sixpack? maybe you don't remember kids setting up their own unreal tournament linux servers in '04, but it was happening. Now, tell me again about ignorance, will you.

Re:WHS

You not needing fancy backup solutions doesn't mean everybody else doesn't need it either.

So what if you have Macs or Debian boxes? It won't monitor those for that (AV/AS). And the problem is... ?

You sure are quick to diss WHS. It's going to be a SIMPLE (to use and setup) machine for home users. It's low power, headless, simple to use, expendable and all. OS & apps all already installed & mostly pre-configured, ready to use within 5 minutes. Comes with very simple guides and instructions, phone support, restore media, etc. Companies like HP are supposed to sell some around 500$.

Basically, you're saying the average home user ought to go shopping for embedded/low-power hardware, assemble it, spend days settling on a specific linux distro (not that they even know what a linux is), then spend days installing and setting up various complex server things (samba, apache, mysql, etc) and apps running on it (various interfaces, wizards, etc), configure it all, secure it, get it all to work together, setup the networking stuff, script backup tasks with tar (!), dealing with all the setup/software issues and problems, doing that voodoo magic in the terminal (chmod this, tar that, make install, mv, ...), editing some config files by hand, getting help for every little issue hidden deep in some obscure wiki or begging for help on IRC, etc.

Time for a reality check! You might as well expect people to go shopping for car parts, assembling it themselves, and writing the computer's firmware while you're at it! Your solution is within the reach of linux gurus, and enterprises with enough money to afford to have such people on staff. But for most people the price difference between the bare hardware and the WHS appliance is too minimal to warrant spending a hundred hours or more rolling up your own almost-equivalent Frankenstein appliance.

If it was anywhere near as simple as you put it, then why don't you start selling machines that do exactly this? There's definitely a market for it. The software won't cost you anything (free/open source) from what you seem to say. You make it sound like it's ridiculously simple (just playing catch up, no innovation, etc). On 500$ for a similar product you should be able to make a decent amount of profit (no software costs). Hey, you could even sell beefier versions to enterprises of varying sizes for more $ (and also get support contracts: $$$!)

Anyways. I'm not holding my breath. We're not about to see an equivalent linux appliance anytime soon (no, a ghetto nas/router ISN'T a equivalent appliance). Meanwhile MS will have their product out the door in a few weeks or months and making profit. The news isn't each specific feature being a new thing per se -- it's a pre-made, specialized product that uses it all TOGETHER to accomplish certain tasks. Linux isn't offering a product anything like that. Who's really falling behind here?

Re:WHS

[Kangie]

Oh.. Rights Degradation. Linux has yet to catch up there.

Re:WHS

[rohan972]

If it was anywhere near as simple as you put it, then why don't you start selling machines that do exactly this? There's definitely a market for it. The software won't cost you anything (free/open source) from what you seem to say. You make it sound like it's ridiculously simple (just playing catch up, no innovation, etc). On 500$ for a similar product you should be able to make a decent amount of profit (no software costs).

Actually, AC, I'm about to set this very thing up for my brother in law. His existing hardware, free software and a small amount of my time at no monetary charge. It's not a business for me, but he does provide me with his services as an arborist, for which most people get charged.

Hey, you could even sell beefier versions to enterprises of varying sizes for more $ (and also get support contracts: $$$!)

I got beaten to the market by IBM and Sun.

Re:WHS

[rohan972]

I highly doubt that home users would even consider using a linux server for this job

They will if someone sets it up for them, which as I mentioned in another post I am doing for my brother in law (not a "power user" by any standard. MS has essentially set it up for them, the equivalent is to have someone set it up or sell them a preconfigured box.

An important benefit is that if the backups are required as a result of malware infection, the backup server is not vulerable to the same malware as the client.

Re:WHS

[pcmanjon]

> Adding new drives and merging them into a RAID is done automatically and silently upon plugging the drive in.

Will this be RAID 1 or higher levels?

Re:WHS

[Foolhardy]

Actually, it seems to be selective mirroring at the file level, so it's like RAID1 for the files and directories that you ask to have mirrored. I don't know how may pieces of WS2003 are included, but you may be able to build a software RAID5 dynamic disk set manually.

Re:WHS

You should come out to my house, check my system out sometime, fucktard.

Re:WHS

[mrbcs]

Cool. Good point.

I was thinking of doing something like that, but I still like a gui. (I know, Linux blashphemy)

What are you going to use? I used to like Sme Server.

Re:WHS

[mollymoo]

Load a copy of Linux/*BSD and Samba [samba.org] on to a spare PC. There you go, all the power of a basic domain without all the costs associated with an M$ product.

You might as well suggest a 486 and a suitable assembler. You can get all the power of a basic domain with any modest hardware you can network if you can write code for it. My mum would have as much chance setting up a *nix server as she would writing one in x86 assembly, so the end result would be the same.

It never ceases to amaze me how many /. geeks just don't Get It. The fact that you or I may be able to make a *nix box dance on its hind legs while singing the Swiss national anthem does not make it a good choice for the average Joe looking for a dancing, singing machine. The majority can't make a *nix box walk, let alone dance and sing.

Re:WHS

[rohan972]

What are you going to use? I used to like Sme Server.

Backuppc on CentOS. I think he will find the web interface easier to handle. SME Server is based on CentOS anyway, but I only looked at it after reading your post.

Mod Parent Up Please

[rueger]

He's right.....

Re:Mod Parent Up Please

This is ridiculous.

A friend of mine, no relationship to MS, hooked me up with the DVD of WHS beta 2 weeks ago. How are they SO sure it was an internal leak and not just a legitimate beta user sharing the software?

Re:Mod Parent Up Please

A friend of mine, no relationship to MS, hooked me up with the DVD

He hooked you up? Why? Do you have laser-vision? Are you some kind of robot? If so, do you use your powers for good or for awesome?

Imagine that...

[coastin]

"He said that Microsoft has "spies" in the forums on the Hotfix.net in an attempt to find out who is leaking software previews on his site. Microsoft also asked him to provide the names of who is leaking Microsoft files to his site, but he said he declined to do so."

Imagine that, MS spying on forums and trying to find leakers. They may want to put a call into the White House about the whole spy thing to get some help.

Re:Imagine that...

Imagine that, MS spying on forums and trying to find leakers. They may want to put a call into the White House about the whole spy thing to get some help.

Better go to HP, where they have real experience at this stuff.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Alright

[gEvil+(beta)]

Alright, who's the Dick who did this?!?

Re:Alright

[pedalman]

M$ had better be careful. This "Dick" may have a shotgun and have the last name of "Cheney"

Next time try 'Bill'

The next time this guy decides to leak something under a false name I suggest he try 'Bill' instead of 'Richard'.

Bill

Oh good, another reason to not work for free

[LouisJBouchard]

OK, get me if I am wrong here but the testers were working for free, correct. If MS (or any other company for that matter, even Apple), does not want to pay for work, then they take their chances. If they want testers that will follow their rules, they should pay the testers then. Very simple concept.

Re:Oh good, another reason to not work for free

[WED+Fan]

OK, get me if I am wrong here but the testers were working for free, correct. If MS (or any other company for that matter, even Apple), does not want to pay for work, then they take their chances. If they want testers that will follow their rules, they should pay the testers then. Very simple concept.

Oh, yeah, because we know that when you pay someone, they don't steal. If you say, "play nice", they will. If you had a little pink pony...what planet do you live on?

When a guy at work is making $80K and still rips off the company for office supplies, toner for his printer at home, and makes up receipts for his last business trip to cover the $40 in singles he used to tip a stripper in Tampa, you think this is going to work?

Go home. Just shut up and go home.

Re:Oh good, another reason to not work for free

[LouisJBouchard]

OK

1. If the company does not have enough internal control of its equipment, supplies, financial accounts, assets, etc. to prevent theft, then whose fault is it. I am fine with them going after the worker for the violation not only of work place rules but of law but if for every 1 worker they catch, 10 are getting away with the act then the problem may not be with the worker.
   
   
2. An employee is under more control of a company than in independent contractor or someone working for free. I am sure the beta tester did sign a contract (of course, the legality of electronic signatures are still in question) but once they release something to the wild, they are at the mercy of who gets the item. They may have legal recourse but it is alot harder to enforce then on an employee.
   
   
3. Finally, if you are getting free people, you have to question why they would do something for free. I am sure there are a group of people who do like MS products and are willing to test the new ones because they are getting something back. The same of course goes for people who give up work for OSS projects. However, you will have some people who have a different reward in mind.
   

I do understand that there are people that break the rules but a company should have processes in place to deal with that (at least any company that actually wants to make money)and when it comes to getting people to follow the rules, employees are better than indies.

Re:Oh good, another reason to not work for free

[westlake]

If MS (or any other company for that matter, even Apple), does not want to pay for work, then they take their chances. If they want testers that will follow their rules, they should pay the testers then. Very simple concept.

here's an even simpler concept worth grasping: if you can't be trusted to respect the commitments you make you won't find a welcome among the volunteers who contribute to open source.

Re:Oh good, another reason to not work for free

[I'm+Don+Giovanni]

Wait, let me get this straight.
If I make a deal with you to test an internal build of a software package, under certain terms (e.g. NDA, not distributint the package to others etc), and you agree to those terms, and then go on to violate those terms, then it's MY FAULT for not paying you? Wow. Just wow.

Re:Oh good, another reason to not work for free

[I'm+Don+Giovanni]

And if I use GPL code in my closed source app that I sell to the public, then it's the original creator's fault because he released the code for me to use without paying me, right? He made the naive assumption that I'd abide by GPL; what a buffoon he is.
To put it in your words:
"If FSF wants devs that use GPL code to follow their rules, they should pay the devs then. Very simple concept."

Re:Oh good, another reason to not work for free

[Jon.Laslow]

Yes, that makes perfect sense. Pay a bunch of people to test a product for you. Of course, those people can't be counted on to reliably report their findings, and even if they were getting paid would probably still leak the software anyways. Besides, being able to trial software long before the vast majority of the public sees it in detail should be reward enough. I've been involved in quite a few Microsoft betas, as well as betas for other large software companies and out of all of them, Microsoft is usually the best for rewarding it's testers at the end of the run. For Live Messenger they sent out Messenger-logo Messenger bags. For Live OneCare, a free one-year subscription. Vista? A free copy of Ultimate. What did Symantec do for Norton 2006 (aside screw up)? A short email.

In the week leading up to MS releasing the new build of Home Server, many emails were sent kindly asking participants not to so much as blog about the new build because they wanted to make a public announcement about first. Not that difficult. And if you've ever tested pre-released software before, you know that you're not supposed to leak it. Yes it always happens, but that doesn't mean that you should.

Re:Oh good, another reason to not work for free

"If the company does not have enough internal control of its equipment, supplies, financial accounts, assets, etc. to prevent theft, then whose fault is it."

The thieves' faults. Why is it okay to blame the victims of a crime? A company would be unwise or even responsible to not protect their equipment, but it is NOT their fault. Any more than rape is a woman's fault for wearing a short skirt.

Re:Oh good, another reason to not work for free

Only idiotic fanboys will test a product for a $300 billion company for free.

You get what you pay for.

Re:Oh good, another reason to not work for free

Every tester signed some kind of contract / NDA which certainly forbid the redistribution of any software they might receive for testing. Whether you're getting paid or doing it for free, a contract is a contract.

Re:Oh good, another reason to not work for free

... then it's MY FAULT for not paying you?

Well, in order to have a contract, there has to be consideration by both sides, no? Tester makes agreement, but what consideration does he get to make an enforceable contract?

Jeez get A Clue!

[hydertech]

Could it be Richard Stallman in the conservatory with the wrench?

Re:Jeez get A Clue!

Would Richard Stallman know what to do with a wench?

Oh, wait...

Re:Jeez get A Clue!

[DeadChobi]

Someone should tell him that there's a difference between free as in beer and free as in free. As in, that software as beer free but not free free.

Re:Jeez get A Clue!

[Dachannien]

Could it be Richard Stallman in the conservatory with the wrench?

Nah. Communism was just a red herring.

Re:Jeez get A Clue!

I thought it was Stallman in the media lab with the gnu.

Re:Jeez get A Clue!

[antdude]

Maybe Richard Simmons? Don't know why he would want it.

Which one of you Bills?

[matt+me]

Which one of you Bills is abusing your monopoly?

Hacked?

Did anyone stop to think that one of the "MVPs" "home machine" was hacked and someone else had full control over the contents of the machine when this software was downloaded, or that someone just left a share open on there PC at work and someone else copied it? I mean come on, Microsoft people are not known to be the most secure people in the world...

Real Name?

[Alien54]

The leaker was arrogant/foolish enough to use his real name.

This is supposing a lot. I for one, would probably use the name of somebody I didn't like. Maybe something like Steve, or Bill. But that might be a little obvious, no?

Re:Real Name?

[someone1234]

Use Stephan or William and it is not so obvious then.

Re:Real Name?

[TheRaven64]

Use Dave. There are more Daves than women in IT...

It just occurred to me

[HangingChad]

Microsoft is being run by the Bush administration!

Re:It just occurred to me

[TheVelvetFlamebait]

Shouldn't that be a "in soviet America" joke?

Re:It just occurred to me

[HomelessInLaJolla]

Slashdot is being run by Microsoft.

Re:It just occurred to me

[networkBoy]

mod parent troll
I've seen far too many of these links on this thread. It now qualifies as spam IMHO.
-nB

Re:It just occurred to me

[HomelessInLaJolla]

Does anyone really care about your opinion? You're just posting for shameless plugging of your website.

That's right. Pick on the homeless guy. Grrrrr. Those darn homeless people. We can't keep them off of our streets and now we have to put up with them on the 'net. Grrrrr. We'll just scrutinize them until they go away.

Re:It just occurred to me

[networkBoy]

No, it's just that you post the same link with the same verbage three or four times in a thread. My link is in my sig, which like ACs can be turned off (or modded -6 in the case of ACs).
If your link was in your sig and you were posting anything even remotely relevant then you'd not have heard a peep from me.
Tough love that you're homeless I hope to never be in that position, but my troll comment had nothing at all to do with your nick. I could think of vastly worse places to be homeless though...

-nB

Re:It just occurred to me

[HomelessInLaJolla]

So cry about it. Wah wah wah. He posted the same link. Wah wah wah.

Inside job?

[Eudial]

Did they ever stop to consider the fact that besides these testers, undoubtedly lots of people on the inside will have had access to the leaked version?

Re:Shades of...breadcrumbs

[Fox_1]

Or keying the teachers car with the initials of the jerk you don't like in your class. Gotcha ya pocker, 3 months detention and 200 repair bill. Seriously if I wanted to pock over some dood at work I'd frame him with a leak.

Leaky MS software

But doesn't all MS software leak?

(Thank you, I'll be here all week)

Are they sure

[Conspiracy_Of_Doves]

Are they absolutely certain that the guy's name actually is Richard and he didn't just make up the name to throw MS off the scent?

Torrent?

[ArchieBunker]

Anyone have a torrent of this so called leak?

Inside job? I seriously doubt it.

[rucs_hack]

likely it would have been a specific build for the testers only that was leaked.

Insiders doing it would probably have access to a great many test builds, not just the one sent to the externals. However insiders would also have fabulously well paid jobs and severe contractual penalties for doing something this stupid. Not the kind of people likely to risk all for a leaked test build.

Besides, what would be the career consequences for someone being denounced by Microsoft for doing a thing like that? The closed source OS world, Microsoft in particular, are not forgiving of such things. Never working in the field again would spring to mind.

I'd go for someone being over confident about security and letting another person steal it by neglect, rather than intentionally.

If by some bizarre chance is was deliberate, then they're so stupid they need to be culled from the industry anyway.

Not really news

[Kamineko]

"Dick leaks, causes embarassment."

That's not really front page news now, is it?

Re:Not really news

[TheVelvetFlamebait]

I agree. In fact, what MS's Dick leaks is pretty much no different in value from what all our Dicks leak. This is most definitely not news.

Re:Not really news

No, but Micro/soft Dick Leaks (WHS CT)P and KerfIn BareAss Wants That Dick.

Re:Not really news

"Dick leaks, causes embarassment."

That's not really front page news now, is it?

You must be new here...

Re:Not really news

[neminem]

Wait, so, what? You can use this software to impregnate other computers? That sounds a bit virus-like... even M$, I didn't think would be that low (Sony, on the other hand)...

Re:Not really news

[Shadowlore]

"Dick leaks, causes embarassment."

That's not really front page news now, is it?

Depends on who's Dick is leaking? The President' Dick? Microsoft's Tester Dick? An Anonymous Dick? The President's allegedly leaking Dick was front page news for weeks.

Re:Not really news

[Kamineko]

Probably just some clever Dick.

They are on the right track to catching him...

[kbox]

... because we all know that everyone uses thier real name when online.. Especially when revealing company secrets.

Re:What Idiot Would Use His Real Name?

Yeah. I like to troll on Saturday mornings, too.

Borrow a scene from Spartacus...

[mh101]

Wouldn't it be funny if all of them contacted MS, claiming to be this Richard?

Re:Borrow a scene from Spartacus...

I am Richard!

Microsoft involve with piping?

[sebol]

Microsoft Pressures Testers After Software Leak
When I first saw the topic, I've imagined that microsoft is involved with piping at oil industry, where "pressure test" is a procedure to find the leakage.

Re: Microsoft involve with piping?

So, that means that all Richards are getting loads of software, so it will be easier to find who is the actual leak?

Re: Microsoft involve with piping?

[maxwell+demon]

This would indeed be a viable way to find a leak. Provided all the suspects get different software, so you can identify them through the software leaked.

Why bother?

[Trailer+Trash]

I hate to break it to you, MS, but the higher-end linksys routers (for about $100) now have a usb port where I can stick a hard drive and share it with all the network even if I'm not real computer literate. Likewise, the airport extreme from apple does the same.

I'm not sure what all your "home server" does, but coming from you it probably uses far more hardware than most people want to buy for the purpose and it probably locks me into using one of your buggy, insecure operating systems to access it. Put another way, you're going to have a tough time convincing people who want to have a hard drive shared on the network (probably 99.99% of all people who would want a "server" in the house) to go with your buggy crap rather than the linksys router.

I might be wrong, and laugh at me in 10 years if I am, but I really think you guys are getting in a huff because someone leaked your latest "Microsoft Bob" to the world.

By the way, the people who downloaded it probably didn't do so to use it; it was probably most hackers getting their paws on it to figure out how to break into it.

Re:Why bother?

[omicronish]

I'm not sure what all your "home server" does, but coming from you it probably uses far more hardware than most people want to buy for the purpose and it probably locks me into using one of your buggy, insecure operating systems to access it. Put another way, you're going to have a tough time convincing people who want to have a hard drive shared on the network (probably 99.99% of all people who would want a "server" in the house) to go with your buggy crap rather than the linksys router.

It'd be nice if you would at least familiarize yourself with the product before you bash it. Windows Home Server provides a variety of services, including:

• Redundant storage by duplicating it across multiple drives, and the ability to easily add/remove drives. Also, drive letters are gone; WHS treats all drives as one big pool of space.
• Remote access of files beyond the LAN, plus the ability to setup a personalized domain to access your server. All of this is optional and disabled by default if you're concerned about security.
• Backup and restore entire computers on the network. It backs up one copy of duplicate files across the network to save space. You can also restore individual files.
• Ability to install your own apps on WHS. It's based on Windows Server 2003 R2, and there aren't any restrictions on installing software on it.

So can the Linksys and Airport Extreme devices do the above? Don't be a blind basher.

Now regarding alternatives to WHS: If you simply need network storage without backup, remote access, and a full Windows OS environment, then stick with Linksys, Airport Extreme, and the variety of other devices that let you attach hard drives. But WHS sounds like a great option if you want those additional features.

Re:Why bother?

[JonXP]

Home Server does a few things (I'm one of the testers, so this is first hand)

It allows you to automatically set up shared public folders for all the computers in your home
It sets up private folders for each computer user in your home that are available to them when they log in to any of the computers in your home and are inaccessible to other users
It automatically schedules and manages backups for your machines, allowing the ability to rollback a machine to a previous point, even when you can't even boot in to it anymore
It has a user management system that doesn't depend on active directory or other normal centralized schemes (it assumes that logins on separate computers with the same username and password are the same login)
It has a rudimentary API so one could technically expand on its capabilities easily.

Most importantly, it is done in a stupid proof fashion. It's not meant for the type of person who would be comfortable configuring a shared drive off of their router. It's meant for the type of person that expects every action to be "insert disk and it works". For example, if you need to add hard drive space to the server, you install the drive, and the server automatically detects, formats, and adds the drive to its LVM with no configuration required on your end. The space just "appears".

It has its uses, and it's not for everyone. But as I said, the "magic" per se isn't in the capabilities, it's in the simplicity of use.

Re:Why bother?

[The+Warlock]

Careful, now they'll yell at/ban/sue/murder all testers named Jon, too.

Re:Why bother?

[jambarama]

Unless this is something different, the Windows home server does pretty cool. From Wikipedia:


* Centralized Backup - Allows backup up to 12PCs using Single Instance Store technology to avoid multiple copies of the same file, even if that file exists on multiple PCs.
* Health Monitoring - Can centrally track the health of all PCs on the network, including antivirus and firewall status.
* File Sharing - Offers network shares for commonly used files like MP3s and videos with network-attached storage.
* Printer Sharing - Allows a centralized print server to handle print jobs for all users.
* Previous Versions - Takes advantage of Volume Shadow Copy Services to take point in time snapshots that allow older versions of files to be recovered.
* Headless Operation - No monitor or keyboard attached to the device itself, much like a firewall or router.
* Remote administration - Provides a client UI to remotely perform administrative tasks. Also allows Remote Desktop connections to the server.
* Remote Access Gateway - Allows access to any PC on the network from outside the home.
* Media Streaming - Can stream media to an Xbox 360 or other devices supporting Windows Media Connect.
* Data redundancy - Guards against a single drive failure by duplicating data across multiple drives.
* Expandable Storage - Provides a unified single and easily expandable storage space, removing the need for drive letters.

Re:Why bother?

[rtechie]

It'd be nice if you would at least familiarize yourself with the product before you bash it. Maybe he has, because his criticism is dead on.

# Redundant storage by duplicating it across multiple drives, and the ability to easily add/remove drives. Also, drive letters are gone; WHS treats all drives as one big pool of space.
# Remote access of files beyond the LAN, plus the ability to setup a personalized domain to access your server. All of this is optional and disabled by default if you're concerned about security. This is available in existing NAS boxes you can buy off the shelf. Linksys, etc. Mine is by Buffalo.

# Backup and restore entire computers on the network. It backs up one copy of duplicate files across the network to save space. You can also restore individual files. I'm not sure what this means or why I would want to do this. If you're talking about rsync, I've got that. I can also do HD images. The Windows Backup software is horribly bugged and if you're using it you hate your data. If this software is based on that, it WILL suck.

Ability to install your own apps on WHS. It's based on Windows Server 2003 R2, and there aren't any restrictions on installing software on it. I'll give you this. Sort of.

The big problem is that the Home Server is competing with NAS units (like I describe above) that will cost less than half the price.

Now if you wanted to build a PC system you use for your home server, you could run this Home Server software on it (which will cost, what, $150 at least?) or you could run one of the many free and mature Linux distributions that are excellent for this purpose. I'm not a big fan of Linux on the desktop, but for THIS purpose, the home or small business LAN server, Linux has lots of advantages, the biggest being that it can easily run on cheap commodity hardware you have lying around.

My current system is actually a hybrid of these approaches: It's a Kuro-box, a NAS that has it's own Linux distribution. It can run Samba, but I'm also running P2P clients and a few little daemons on it for VPN and such. I actually wouldn't reccomend it to other people. I basically wanted a cheap PPC development system. For the money you're much better off building a PC for this task. It is small and quiet though.

Re:Why bother?

[omicronish]

# Redundant storage by duplicating it across multiple drives, and the ability to easily add/remove drives. Also, drive letters are gone; WHS treats all drives as one big pool of space. # Remote access of files beyond the LAN, plus the ability to setup a personalized domain to access your server. All of this is optional and disabled by default if you're concerned about security.

This is available in existing NAS boxes you can buy off the shelf. Linksys, etc. Mine is by Buffalo.

I just looked at Buffalo products, but only see RAID support for data redundancy, which I assume imposes specific drive requirements (same size or type, for example). WHS implements data redundancy even for different-sized drives. Also, the remote access capabilities allow for access over the Internet. Can that be done with Buffalo products in a secure manner?

# Backup and restore entire computers on the network. It backs up one copy of duplicate files across the network to save space. You can also restore individual files.

I'm not sure what this means or why I would want to do this. If you're talking about rsync, I've got that. I can also do HD images. The Windows Backup software is horribly bugged and if you're using it you hate your data. If this software is based on that, it WILL suck.

I'll give an example: My house has 5 machines running Windows. Aside from personal files unique to each machine, they also share duplicate files, such as system binaries, installed programs, etc. WHS will back up one copy of those duplicate files. Entire machines can be restored from backups. So it's similar to an HD image, but without wasting space backing up duplicate files for each image. Moreover, rsync requires a certain amount of setup; good luck getting my parents to read through rsync documentation and getting it to work.

Ability to install your own apps on WHS. It's based on Windows Server 2003 R2, and there aren't any restrictions on installing software on it.

I'll give you this. Sort of.

Now if you wanted to build a PC system you use for your home server, you could run this Home Server software on it (which will cost, what, $150 at least?) or you could run one of the many free and mature Linux distributions that are excellent for this purpose. I'm not a big fan of Linux on the desktop, but for THIS purpose, the home or small business LAN server, Linux has lots of advantages, the biggest being that it can easily run on cheap commodity hardware you have lying around.

Funny, I thought you'd reply with "duh, it'd be stupid to not allow software installation." :) Anyhow, one thing to keep in mind is that WHS is intended for regular people who have multiple machines in their house. My parents aren't going to learn about RAID and its requirements, and even if they manage to setup RAID initially, what happens in a few years when they want additional storage + redundancy? Would they have to resetup everything? Buy another NAS box? With WHS they plug in the new drive, and the data will automatically be mirrored.

Additionally, my last Samba experience involved modifying a config file, something that's already beyond my parents. At least Samba has domain mode, which is probably superior to WHS's method of synchronizing usernames and passwords, but XP Professional is required to join domains. Not everyone has Professional.

My current system is actually a hybrid of these approaches: It's a Kuro-box, a NAS that has it's own Linux distribution. It can run Samba, but I'm also running P2P clients and a few little daemons on it for VPN and such. I actually wouldn't reccomend it to other people. I basically wanted a cheap PPC developm

So lucky for Microsoft

[ribuck]

So lucky for Microsoft that the leak wasn't posted by somebody with username "Bill".

Meh

[Dunbal]

For right now, you have no access to the beta until I can find the Richard who posted the WHS (Windows Home Server) CTP on this site.... I will work with the Connect Admin team to determine which one of you is the real culprit of this leak.'

      It's great to know that a corporation always has plenty of funds for a witch-hunt even if product security is sacrificed due to "budget constraints"...

Have you read Slashdot before?

[Overly+Critical+Guy]

If this was Apple, we would get a bunch of people bitching about Apple's secrecy, like we always do. Kudos on the "I'm pointing out Slashdot double standards, mod me up!" karma whore routine, though. It's a worthy classic.

And you're wrong, there will be plenty of Microsoft shills defending Microsoft.

Re:Have you read Slashdot before?

[HomelessInLaJolla]

Some of them may even be working inside of Microsoft.

Re:Have you read Slashdot before?

You can't karma whore when you're an AC. Probably just an Apple hater, since this story has nothing to do with Apple.

Re:Have you read Slashdot before?

[cultrhetor]

Mod THIS parent up - sad that he's absolutely correct about the karma whore thing...

Re:Have you read Slashdot before?

[Falladir]

I think you're confused about what a shill is. They're not Microsoft shills if they're not being remunerated. Most of the MS defenders are probably just innocent, clueless fanboys and maybe some more mature supporters.

To accuse someone of being a shill is a very serious thing. Please don't de-fang the word by broadening its meaning to include innocent fanboyism.

(If you really do think that there are dozens of paid Microsoft employees surreptitiously posting pro-MS comments, then your use of "shill" is correct. I'm assuming you're not that paranoid.)

Re:Have you read Slashdot before?

While I'm not a fan of Microsoft I try to be unbiased as possible.

In this case Microsoft have a right to find the leaker, but how much the rights they have to pressure on other sites/companies/people to find out who was behind it is the real question you have to ask yourself.

Re:Have you read Slashdot before?

[cyphercell]

Exactly, it's offtopic, mod everyone named Larry Offtopic!

Re:Have you read Slashdot before?

[larpon]

Mod parent up! it's ROFL stuff!

Re:Have you read Slashdot before?

[jb.hl.com]

I've been called a shill before. By the same person, actually...in fact, that person has directly accused me of being paid by Microsoft and has made references to my being employed by Steve Ballmer.

Which is odd, because last I checked my job involves selling groceries. And I'm a Mac user (albeit one who doesn't happen to think Bill Gates is some kind of anti-christ).

Re:Have you read Slashdot before?

[networkBoy]

mod parent troll
I've seen far too many of these links on this thread. It now qualifies as spam IMHO...
-nB

Re:Have you read Slashdot before?

Mod THIS parent up - sad that he's absolutely correct about the karma whore thing...

you are both accusing an AC of karma whoring? I don't think the system works the way you think it does..

Re:Have you read Slashdot before?

Kudos on the "I'm pointing out Slashdot double standards, mod me up!" karma whore routine, though. It's a worthy classic.

Kudos on accusing an AC of Karma Whoring. It's a worthy classic in your burgeoning portfolio of foot-in-mouth posts.

Re:well I'll be...

[JamesTRexx]

You'll be that Dick, I mean, that Richard? I wouldn't..

:-P

Why is this posted to "Your Rights Online"?

I wasn't aware it was my right to leak software that I had signed an NDA not to leak. Thanks for clarifying, Slashdot!

All I can say is...

[Biff+Stu]

It sucks to be Dick.

Re:All I can say is...

In Soviet Russia, dick sucks you!

Re:All I can say is...

[kimvette]

That's only because of mutations resulting from the Chernobyl accident.

Re:All I can say is...

[Wolfrider]

( All war movies ) " Fire at will! "
 
//sucks to be Will... [g]

Witch hunt?

[cdrguru]

Unless this person was exceptionally stupid and brags about it, they are home free. Their ISP will *not* release the information.

Of course, this does bring out that simply having someone sign an NDA in today's climate means nothing. If you release a product to beta testers, they are going to feel free to distribute it to potential competitors worldwide without any fear of retribution. Why? Because it can be done and it isn't going to be traceable.

I suppose you could watermark each copy that is distributed. It would be a hassle to do and still probably not really mean all that much. Yes, you might then be able to visit some kind of retribution on the person that did it. Do you really think they are going to care? I think most people these days would regard having letters sent to their employer from Microsoft as sort of a merit badge of achievement, even if it got them fired.

Any sort of anonyminity will result in this kind of behavior. Most people - not everyone, but most - will do things they would never consider doing if they believe their actions cannot be traced back to them. Would you rob a bank or steal someone's wallet? Most people would not. Would you pick up a wallet in an alley that was clearly abandoned and take whatever was inside? Most people would if they were sure nobody would see them. Nobody sees you on the Internet, and the ISPs believe they have an interest in keeping users isolated from consequences of their actions.

Re:Witch hunt?

You'd be suprised what an ISP worker would do if you showed up after hours with four zeros and a one.
Microsoft could pull that out of the couch cushions and not keep any records of it, they'd be home free with not only their 'Richard', but also 10,000 e-mail addresses to spam.

Re:Witch hunt?

[djdavetrouble]

I suppose you could watermark each copy that is distributed. It would be a hassle to do and still probably not really mean all that much.

I am surprised they haven't done this already... It doesn't seem like that much of a hassle to me at all, it seems like the thing that technology
makes very easy....

Next time ...

[John+Jorsett]

... use the name 'Bill'.

Re:Next time ...

[maxwell+demon]

Or Steve. And mention at some point that some problem made you throw chairs.

Windows Home Server

Windows Home Server is not secret, it's totally open, it's called Linux.

Security the MS way

Someone posts illegally software to a blog using the name Richard and Microsoft believes s/he used his/her real one, then they lock all Richards from access to betas? Wow! That brilliant solution should be in every corporate security how-not-to handbook for dummies!
At least they should have tracked silently every user who had this access and THEN, after further investigation, take conclusions and measures.

Thanks Microsoft, this is just another argument for Linux/BSD/*nix enthusiasts like us.

On a side note: Windows Home Server? You mean I have to pay a license to put my personal data into some totally closed and untrusted piece of software that phones home giving full access to all my files to Microsoft and its government puppies? Thanks, but no thanks.

Re: Richard = Dick

[Migraineman]

That was my first reaction.

Msft: Who leaked this onto a newsgroup?
Lackey: The username on the account was "Richard."
Msft: Richard who?
Lackey: We don't know. The account name is just "Richard."
Msft: Suspend all priveledges to anyone with a "Richard" in their name!
Lackey: Sir, yes sir!
Msft: Man, this Richard guy is a real dick.
Lackey: *snickers*
Msft: What?

An understandable Response

[CharonX]

Well, what can we say?
The typical Microsoft=Evil bash aside, their response was rather understandable and logical. They have beta-software, and they have low number of people who a previewing/testing that software. That software ends up leaked on the internet. Thus the only logical conclusion is that (at least) one of those people is responsible for the leak.
Assuming that leaks is not what you want and that somebody who leaked software before, will do so again, it is best to freeze the entire process until the one(s) responsible has been found. Also assuming that they accepted a NDA (the usual stuff forfeiting your propery, soul, and firstborn) this one guy or gal will not be in a happy place.
So, all in all, its nothing extraordinary.

Re:An understandable Response

That would be true, if they had frozen the entire process. They disabled access for anyone with the name "Richard", which is pretty stupid. Everyone posts to blogs with their real name, y'know...

Personal Server?

[grangerfx]

I am not sure why Microsoft thinks we need personal server software. That's software that takes all our files and makes them available on the internet, right? I think I get a dozen of those e-mailed to me every day. They are usualy from my "Support Team" with titles like "Worm Activity Detected!" Heck I bet most Windows users have one or two of thoses programs running right now.

Re:Personal Server?

[kenh]

The Windows Home Server is a complex offering, and while it would be possible to replicate it with clever use of scripting languages and open source software, it is an all-in-one solution solving many home "problems" at once:

File server (natch)
Backup server (think Volume Shadow Copies, but with a twist - it will backup multiple machines, and if there is a file that is duplicated on both machines, only one copy is saved, lowering the size of backups for several machines)
Home web server
DDNS daemon tied to MS servers
Photo gallery creation/sharing over internet
Web proxy/cache to speed up home users

It was designed to be sold as a headless machine, with one or more HD trays, minimal CPU/RAM, and running a heavily modified Windows Server 2003 OS.

If you are familiar with MS software, this is like the home version of Small Business Server...

These functaions can all be implemented with other, existing tools, both open and closed source, but MS is offering it in an appliance format.

MS may sell this software stand-alone, but that has not been decided.

style guide, kevin

[eokyere]

Community Technology Preview (CTP), ok WHS (Windows Home Server), not ok

Re:Shades of...breadcrumbs

Is his name Richard?

You assume that, but where's the evidence?

[jd]

For all we know, it could have been a tester who found a way to spoof the username, or anyone at all who happened to pass by an unlocked console. Given the organization involved, it could also be that a UID table got corrupted and a completely different name originally existed.

Based on the little that is known, the most obvious explanation is that this leak was intended to be discovered (there's no shortage of far more public sites that would offer far greater protection to the person involved) and that in turn makes the idea that an actual "Richard" was involved much less likely.

We won't know until the culprit is found (if they ever are, and if we ever have any reason to believe that anyone unmasked isn't simply a convenient scapegoat) but if I were in this Kevin's shoes, I'd be far more interested in gathering information than issuing threats. For that matter, Mandatory Access Controls have existed for decades. Why was such valuable IP even placed under a discretionary access control system?

(For those not familiar with MAC, it's a concept popularized by the US military but widely used in any secure environment. The idea is that the controls prohibit a user from copying to a location with weaker controls. In the military, you don't want people copying Top Secret files into an unclassified filespace or reassigning them to a user of lower classification, for example. So you simply program the access controls to block any such transfer. Properly implemented, there is no "superuser" - no need of one - and there is no possible way of violating permission boundaries directly or through privilege escalation.)

Yes, this is theft. So would be taking a hundred dollar bill nailed to the gatepost. At some point, a little personal responsibility is called for and a few reasonable precautions should be taken. Kevin Beares' bosses should be asking why neither has happened here - although that might be asking a bit much of Microsoft. Failure to secure trade secrets has, in the past, been grounds for courts to nullify the protections on those trade secrets, and undue harassment by employers of employees has spawned its own lawsuits. (If a Richard isn't found soon, with definite blood on hands, harassment suits can't be far behind.)

This is a very ugly situation for Microsoft to be in and they are hardly an innocent party as they have clearly shown they are not using suitable methods to protect that which is theirs. In a world that has been manipulated into believing there's a bogeyman hiding in every server cupboard, being able to protect your own is key to keeping the confidence of customers. The rights and wrongs are totally a side issue in all of this. The fact it was even possible is everything.

Re:You assume that, but where's the evidence?

[petermgreen]

For those not familiar with MAC, it's a concept popularized by the US military but widely used in any secure environment. The idea is that the controls prohibit a user from copying to a location with weaker controls.
fine, now you want to give people copies they can test on thier own hardware find problems with etc. How do you propose to do this while at the same time keeping those copies within your access control enforcing system?

Re:You assume that, but where's the evidence?

[MrNaz]

I don't think he was suggesting using a MAC system under the MS testing program, but making a point about systemic issues being at fault as much as the culprit. Now, if you look directly up, you should see the GP's point stuck to the ceiling directly above your head.

well

I for one, applaud Kevin and WSSG for taking action to plug leaks...

'Richard' must not have read the WHS EULA

that's because...

[nanosquid]

That's because Apple actually has a need to do this: Apple has managed to create a mystique surrounding their product releases. Microsoft revealing a new product is about as exciting as the supreme court justices taking off their robes.

Re:that's because...

[B3ryllium]

Oh, you have that calendar too?

WHS?

[Mathness]

Why is Microsoft even putting a lot of work into WHS? Most people have already moved onto DWD. :P

Re: Richard = Dick

[utopianfiat]

Should have posted it under the username SteveBallmer

Not really

Only from Apple fanboys. Believe it or not, some people have no particular loyalty to them, and no problem calling a spade a spade.

Don't get me wrong, I understand why Microsoft is doing this. I don't much care, but I do understand.

WHS is for Your Mom???

[NeverVotedBush]

Wonderful. All we need are even more boxes, running Microsoft "spambot-ready" software, administered by people with no clue how to really protect a system.

Nothing like thousands or millions of always-on bots, filtering keystrokes, launching DDOS attacks, spamming everyone in any e-mail to/from list that happens to pass through.

I for one do not welcome our new incompetent spam-bot non-administrator overlords.

Keep firing assholes!

[JackMeyhoff]

Dark Helmet: Careful you idiot! I said across her nose, not up it!
Laser Gunner: Sorry sir! I'm doing my best!
Dark Helmet: Who made that man a gunner?
Major Asshole: I did sir. He's my cousin.
Dark Helmet: Who is he?
Colonel Sandurz: He's an asshole sir.
Dark Helmet: I know that! What's his name?
Colonel Sandurz: That is his name sir. Asshole, Major Asshole!
Dark Helmet: And his cousin?
Colonel Sandurz: He's an asshole too sir. Gunner's mate First Class Philip Asshole!
Dark Helmet: How many asholes do we have on this ship, anyway?
[Entire bridge crew stands up and raises a hand]
Entire Bridge Crew: Yo!
Dark Helmet: I knew it. I'm surrounded by assholes!
[Dark Helmet pulls his face shield down]
Dark Helmet: Keep firing, assholes!

hmmm...maybe it was Richard's ex-girlfriend mcay

[kanani]

hmmm...maybe it was Richard's ex-girlfriend mcay

Re:Shades of...breadcrumbs

Do you do lots of sailing on your pocking planet? More importantly did you bring your pocking wrench....

I'm not proud of it

[illegalcortex]

Microsoft will get their hands on the leaky Dick any minute now. Their only hope is to come clean before then.

Who needs who ?

[bataras]

>>For right now, you have no access to the beta until I can find the Richard who posted the WHS (Windows Home Server) CTP on this site...

all beta testers for WHS should maintain solidarity with the N-1 wrongfully (and stupidly) abused "Richard" testers and tell MS: For right now, you have no beta program for WHS until you stop being dicks with your Dicks.

Re:Like Richard used his real name...

[Jackie_Chan_Fan]

Microsoft's special ops are probably hunting down every man named "dick"

How can you...

leak something that's community technology?

It's not private technology..

steve & bill

[Joseph_Daniel_Zukige]

Quick, somebody get a username steve_ballmer and upload it. bill_gates, too.

Iron Logic

[Mondor]

Cute. So my nick is Mondor. And if I would be fan of Richard Plantagenet the LionHeart, it would be Richard. And being fan of Roger Zelazni it would be, say, Corwin or Merlin... :)

I already imagine M$ digging its user system for all LionHearts and Corwins. You see, their authentication system is based on e-mail address and password, and you are free to input whatever name you want, it doesn't have to be real. But anyway, being fan of king Richard I wouldn't put his name as my real name anyway.

But I don't question the logic of Microsoft - I don't even believe such thing exists.

I think Microsoft has it all wrong....

[wellingj]

who leaked a Community Technology Preview (CTP)

When will microsoft realize that to have an honest to god community you have to let it run free?
Other wise all you get is Richards trying to stick it to the 'Man'.