A Run Through Windows Server 2008

amcdiarmid writes "Tom's Hardware has a review of Windows Server 2008 RC0 up on their site. It has a few good points, and at 19 pages is certainly 'in-depth'. From the article's conclusion: 'Microsoft has used the time since the release of Windows Server 2003 very well. The new Server Manager simplifies system administration immensely. Unlike Windows Vista, whose new dialogues still confuse even experienced users, Windows Server 2008 makes the admin feel right at home and in control ... However, it's not all sunshine, either. Although our test system used a beefy Intel Core 2 Duo E6700 with generous 2 GB of RAM, the Server's user interface felt sluggish with Windows being drawn very slowly ... Microsoft also gets low marks for failing to include SSH support in the operating system. On Linux servers, working without SSH is simply unthinkable. At least the Redmond company includes its encrypted remote shell WinRS. However, secure FTP is still a missing feature. The FTP client is being treated like an unloved stepchild, to the point where it is not even included in the Server Manager.'"

Of course it's slow

[Farakin]

It needs all that memory for the new Windows Server Aero features!

Re:Of course it's slow

[geeknado]

Obviously, you're joking, but actually Aero /is/ available as an optional install for Server 2008, according to TFA. Of course, so is a shell-only server, which I would've liked to have seen broken down a bit more. How're the command line management tools? Etc.

Re:Of course it's slow

If you'd RTFA, youd learn that Server '08 doesn't have Aero. It doesn't even have hardware-accelerated graphics support(By default) and renders the whole desktop in software. Sounds stupid, until you find your server's crashed because of bad graphics drivers. Server '03 EE is the same way.

Re:Of course it's slow

[AvitarX]

To draw the windows more quickly?

It sounds like it need it to me.

Re:Of course it's slow

[jimstapleton]

Someone who likes glitz as well as server stuff.

Seems odd to me as well, but why deny them if that's what they want?

I certainly won't be using it when my servers get upgrade to 2k8

Re:Of course it's slow

[fotbr]

Perhaps because that way it looks like a "normal" version of windows, and can go further to foster the "IT doesn't do anything special, my neighbor's 5 year old kid can do that" mentality that PHB's seem to have.

Re:Of course it's slow

[The+MAZZTer]

Assuming 2008 is based on the Vista kernel, graphics drivers in Vista automatically restart when they crash, instead of BSoDing the whole machine (at least ideally)... nVidia's drivers for XP do something similar now, too (although they don't restart, they load default 640x480x4 VGA drivers instead, BLEH).

Re:Of course it's slow

[Kjella]

OMG what if you could optionally install server packages on Ubuntu, or compiz packages on Ubuntu server. I mean, who the hell would want that on a fscking server? No way I'd let fucked up OSes like that on my "internets"...

Re:Of course it's slow

[Khaed]

Someone who works in Marketing.

Re:Of course it's slow

[MindStalker]

Believe it or not, many people use the server version as a desktop OS.
Usually this is people with too much money who want as many toys as possible in setting up their home network... seriously...

Re:Of course it's slow

[tshak]

Believe it or not, many people use the server version as a desktop OS.

Yup. I run Win 2008 RC0 for development and it's great. As an aside, I dunno what was wrong with their setup to cause a "sluggish" UI. My setup only has 1GB and a single core. It is running in Virtual PC which is hosted on Windows Vista. Not exactly a setup for speed, but it's very snappy.

Re:Of course it's slow

[man_of_mr_e]

Lots of people, including myself, use server versions of the OS as a desktop OS (I even have it on my laptop). The reason is simple. I'm a developer, and I work on code that needs services that are only available on the server version (multiple web sites, for instance).

The "web" version of Windows 2003 server isn't much more expensive than XP Pro.

Re:Of course it's slow

[tlhIngan]

Believe it or not, many people use the server version as a desktop OS.
Usually this is people with too much money who want as many toys as possible in setting up their home network... seriously...

Actually, I've heard of *gamers* running Server 2003 because it's even faster than XP at a lot of things. Of course, installing DirectX is a tiny bit of a challenge, but once that's done, they manage to get performance boosts (small ones, I believe) over regular XP.

Maybe what will happen is when Server 2008 comes out, people migrate to that instead of the horrific mess that is Vista (I used it) just because it's more familiar than the new locations where Vista puts crap. Might be interesting to see how many people do the XP->2008 transistion over XP->Vista.

Re:Of course it's slow

[blhack]

I would be interested to see the CLI tools for server 2003 as well....I really can't imagine that they are as straightforward as the linux equivalents. To me it seems like linux feels like an OS that was meant for the terminal...you run xorg on it if you're a windows admin, or if you're using it as a desktop OS.

Other than that (at least for linux) the command line is several orders of magnitude faster than the GUI to accomplish just about everything.

I would REALLY love to find a guide on windows administration from the CL....

Re:Of course it's slow

[klui]

You're correct: default install doesn't have accelerated drivers. But you should get acceleration by running the installer in XP compatibility mode. For example, ATi drivers.

Re:Of course it's slow

[Yetihehe]

It doesn't even have hardware-accelerated graphics support(By default) and renders the whole desktop in software

And this is the reason behind slow windows drawing. On normal desktop drawing is accelerated by graphics card. Without proper drivers even xp is very slow.

Re:Of course it's slow

[Knara]

Well, they do have MSH available for free, which seems to at least be a step towards a better commandline. I was kind of surprised it wasn't the default in this new OS.

Re:Of course it's slow

[_mythdraug_]

In all honesty, from what I've read, the command line IS THE WAY to manage a S2008 machine. Much as it is in Exchange 2007, the GUI tools are simply wrappers for the command line (Windows Power Shell). In E2007, each operation will give you the the WPS command (including all the parameters) that was performed.

Re:Of course it's slow

[nostriluu]

It's for better screen saver visualization for server room tours. Those GL Pipes were getting so old.

Re:Of course it's slow

[el_gordo101]

Wikipedia entry here (lots of interesting info), Microsoft's Windows Power Shell Page (formerly known as Monad) (has links to FAQs, documentation, sample scripts, and discussion blog, as well as downloads for XP, Vista, and Server 2003).

Re:Of course it's slow

[geeknado]

I'm with you about Linux-as-ideal-shell-server, but Windows Power Shell is actually pretty interesting(object oriented, .net framework integration). Your observation about speed is actually why I would've liked to see those features reviewed in depth...It's just more efficient to manage servers via the command line, and here we have a Windows Server solution which provides that command line interface w/ no stated limitations.

Re:Of course it's slow

[m4g02]

I also run Windows Server 2008 RC0 as my desktop OS. Has anyone noticed how fast Visual Studio debugging programs run on it? I'm developing a very intensive software application and if I launch the thing from Visual Studio in Vista for debugging things are really, REALLY, slow; usually around 2 refreshes per second (real time is critical here) but when I'm debugging from Visual Studio in Server 2008 the thing runs almost as if I were running the release version outside Visual Studio.

Makes me wonder why such huge improvement.

Re:Of course it's slow

[m4g02]

The command line management tools are great! Microsoft had to develop a new command line interface since the new Core version of Windows Server doesn't have a GUI, this new tool is called Windows PowerShell and is based on .NET, is not yet fully ready in RC0 but you can already play with it and see it's power.

Check it out yourself!

Re:Of course it's slow

[archen]

You can already download the command line tools, or at least the scripting part of it. If you're into MS stuff then check out the Microsoft Power Shell. I've started scripting with it and I am very impressed with it. It's a godsend for people like me who were begging for mercy at the hands of Jscript (I refuse to use vbscript) There are some limitations to Microsoft's approach however. In Vim I can insert the output of a program into my document using ":r ls" or something similar. Because most of this type of functionality is built into the shell, it's not available to programs this way.

Honestly I don't think I'll touch 2008 with a 10 foot pole, Windows 2003R2 is probably the best server OS they've produced. I'm not sure what in the hell they were doing with all that manpower to produce something like Vista, so it makes me weary to use any of their other OS products at this point.

Re:Of course it's slow

[Bryansix]

You Can't even run Windows Vista on a Single Core and 1 Gig of Ram Let alone another Virtual Machine on top of that. I call Shens!

Re:Of course it's slow

[Lord+Apathy]

Actually, I've heard of *gamers* running Server 2003 because it's even faster than XP at a lot of things. Of course, installing DirectX is a tiny bit of a challenge, but once that's done, they manage to get performance boosts (small ones, I believe) over regular XP.

I wouldn't call them small. I'm running server 2003 x64 now and I think with out a doubt that it's the best OS mickysoft has ever put out. Alot of the speed comes from that most of the shit that is in XP comes turned off by default. You can turn most of it back on of course but that defeats the purpose of running 2003 in the first place. Luna is a fucking pig.

Almost everything you can do in XP you can do in 2003. The only thing that I have found is fast user switching and XP's pretty login. Directx went in easy but bluetooth was a bitch. I had to use a 3rd party BT stack.

I don't know about gamming since I don't use my computer for games, hello ps2, but for everyday use that fucker screams.

Re:Of course it's slow

[Constantine+XVI]

You mean like how Vista was based off Server 2003?

Re:Of course it's slow

[dreethal]

It's not often that I find myself defending on feature of Microsoft, as I prefer Linux and OS X, but this is one time I think I shall. There was a time that anything you could do on standard Windows could be done just as well on Server. That was the point of the portability of the operating system. It just is cost prohibitive thanks to the new SKU system (post Windows NT 4.0, of course) that really changed that. As long as it still can be a drop-in (replacement) for Vista, I think I'm happy. Without all of the vacuum sucking feelings.

Re:Of course it's slow

[RealGrouchy]

I run Win 2008 RC0 for development and it's great. As an aside, I dunno what was wrong with their setup to cause a "sluggish" UI. Maybe it was left over from the upgrade from RC-1?

- RG>

Re:Of course it's slow

[DurendalMac]

Well, they can't use the excuse that all the memory is needed to pop fifty billion windows open when you only want to change a few settings. That was frustrating as hell with Server 2003. MS spread everything all over the goddamn place as much as they could.

Re:Of course it's slow

[Frostalicious]

Believe it or not, many people use the server version as a desktop OS. Usually this is people with too much money who want as many toys as possible in setting up their home network... seriously...

I, like many people, use 2003 as a desktop simply because it is convenient to develop on. You need a server OS to run things like SQL Server Enterprise or multiple websites bound to different ports. Sure I could run XP and have the server stuff on a separate machine, but all the software is included with your MSDN subscription so you might as well just have the whole deal on your local machine.

Re:Of course it's slow

[clintre]

Yes you can. We have our desktop development team running 200 VMs with Vista installed VMware ESX (8 servers). Each only has 1GB ram and 1 CPU core shared each. Just turn off Aero.

Re:Of course it's slow

[geeknado]

Thanks, I'll do that-- re: the 10 ft pole, I know that factually speaking my company is going to have 2008 servers in the next year or so, so they're on my radar.

Re:Of course it's slow

[mako1138]

I run 2003 on my desktop, but I've never heard of any gaming performance boosts. Of course I got it free through my school; I wouldn't have paid for a server OS.

Re:Of course it's slow

[PhasmatisApparatus]

On my dual-core 64-bit gaming machine, I installed XP x64, which is based on Server 2003. It seems to me to be much more stable than the 32-bit versions of XP I've used, and it seems to handle multiple core more efficiently.

Re:Of course it's slow

[PopeRatzo]

We have our desktop development team running 200 VMs with Vista installed VMware ESX (8 servers). Each only has 1GB ram and 1 CPU core shared each.

Why?

Re:Of course it's slow

[michelcultivo]

'All you need is memory'. By the Beatles.

Re:Of course it's slow

[jo42]

> Monad ...and the Open Source version will be called Gonad, nyet?

Re:Of course it's slow

[Kjella]

Grandparent: OMG who'd use Windows when you could put Aero on the server
Parent (me): OMG who'd use Linux when you could put Compiz on the server
Lighten up people, I was trying to make a pun on the parent. That is if you even RTFP.

Re:Of course it's slow

[sehrgut]

No, it's the people who realize that the server OS is the only Windows available that even has a smattering of real security. Face it, Leopard kills Vista, in security, as well as every other department. Heck, Leopard eats Vista! http://www.flickr.com/photos/16424953@N04/1762035991/

Re:Of course it's slow

[dbIII]

From past experience (98, ME and XP vs NT, Win2k, Win2003) they may have a point. Even now XP comes off looking like a hobby home computer operating system in comparison to Win2k. I have not seen Vista set up correctly on adequate hardware (the low end laptops with Vista preinstalled are a nasty joke on the user) so really can't comment there.

Re:Of course it's slow

[wolrahnaes]

I've got to agree. I have 2008 RC0 running in Parallels and it's as responsive as XP, possibly a bit better because it's not loaded with the stuff I have to have in my XP install for work. This is on a 1.83GHz MB with 2GB of RAM, giving 512MB to the VM

Re:Of course it's slow

[paradoxxxx]

Yeah, I downloaded win2k3 iso's in college too.

Re:Of course it's slow

[blincoln]

I'm a developer, and I work on code that needs services that are only available on the server version (multiple web sites, for instance).

Yeah, I don't think you can do things like set up application pools and change their identities on the XP/Vista version of IIS. Doing development related to SharePoint is another big one.

Re:Of course it's slow

[Adelle]

They're breaching the EULA, which specifically states that Windows Server 2003 is not licensed to be used as a desktop OS.

Re:Of course it's slow

[Kalriath]

I just read through it, and no such clause exists. This is pure FUD.

Re:Of course it's slow

[tshak]

You Can't even run Windows Vista on a Single Core and 1 Gig of Ram Let alone another Virtual Machine on top of that. I call Shens!

Sorry I wasn't more clear. The Virtual PC instance that runs Win 2008 RC0 only uses one core and only has 1GB of RAM asigned to it. The host Vista machine is a dual core with 4GB of RAM.

Re:Of course it's slow

[Mista2]

Full desktop servers. They are called Terminal Servers. Of course, I've been able to run X sessions over SSH forever on desktops and server, but there ya go. That why you might need Aero on a server.

Re:Of course it's slow

[Bryansix]

Oh, that makes sense then.

Wall building?

[ktappe]

Without SSH and SFTP, does it seem as if Microsoft is trying to build a wall between itself and Linux? To what end I'm not sure, but this is starting to seem deliberate.

Re:Wall building?

[Alioth]

Not Linux, but the rest of the computing world. Every other OS, including router operating systems like Cisco IOS, comes with ssh these days. Solaris has it. OS X has it. Cisco IOS has it (even their wireless access points have ssh). BSD of course has it. So does Linux. Microsoft is the only OS vendor that doesn't have an ssh server by default.

Re:Wall building?

[nine-times]

I don't know if they're building walls, but they don't seem to be building bridges.

Re:Wall building?

[betterunixthanunix]

They want to differentiate themselves from Unix, in that you should never need such things. Historically, Windows hasn't been command line oriented anyway, and remote access is done with Remote Desktop. Things aren't really character stream oriented in Windows, and for security you are supposed to use IPSec. That's their model of "a better Unix than Unix," if I can be so bold as to reference my own handle.

Re:Wall building?

[jimstapleton]

Of course their building walls, and definetly not bridges!

Windows go in walls not bridges!

And on that line, Linux is for Pirates! Because pirates, like penguins, are creatures of the sea. We BSD users... Are evil, except NetBSD, they are Pirates, as the pufferfish is a seacritter too.

Re:Wall building?

[xaxa]

What's the saying? "The Internet has no walls or fences, so why use Windows and Gates?"

Re:Wall building?

[jollyreaper]

They want to differentiate themselves from Unix, in that you should never need such things. Historically, Windows hasn't been command line oriented anyway, and remote access is done with Remote Desktop. Things aren't really character stream oriented in Windows, and for security you are supposed to use IPSec. That's their model of "a better Unix than Unix," if I can be so bold as to reference my own handle. Right, Windows has never seemed to be CLI-oriented, there are a few tricks you use in there but for the most part they want you clicking windows. HOWEVER, I've also heard that Exchange 2008 has gone all CLI-happy. Now I know that you can create some super-duper admin scripts with Exchange 2003, using it to do mass import/export of addresses and other tasks that would be input-intensive if you had to do it by hand. You also have tools like that for dealing with user creation at the domain controller as well. But as I was told, even routine tasks are supposed to be handled from the dos box with no GUI equivalent means of invoking the commands. That all seems to be going dead against what's seemed to be the typical Windows design philosophy. Can anyone with experience confirm or debunk?

Re:Wall building?

[nine-times]

Does the fact that it's your handle mean you believe all that, or is your handle facetious?

Because things like Windows not being command-line oriented has been a bit of a problem for years. Sure, it's great to be able to do things through a GUI if you want to, but it's also very good to be able to do things through a command-line if you want to.

Take the focus on Remote Desktop for remote administration as an example. Sure, Terminal Services on Windows is a very nice tool. However, if I'm just going to copy a couple files around, it'd be less resource intensive on both the server and client end, as well as being less bandwidth intensive, to be able to do that through a remote shell.

I know that Microsoft has done a lot to improve their command-line support for the sake of scripting and all, but Remote Desktop just isn't a replacement for SSH. It's another tool with different strengths and weaknesses. So Remote Desktop does not make it a "better Unix than Unix". If they want to create a better Unix than Unix, they should at least provide a good remote shell, at least as powerful and versatile as bash, that can be accessed from a wide variety of operating systems. Because that's something that the Unix world already takes for granted.

Re:Wall building?

[betterunixthanunix]

Except, of course, for the great firewall of China. That's a wall. It's a great wall.

Re:Wall building?

[betterunixthanunix]

Oh I think Gates was completely off his rocker when he said NT 3.1 was a better Unix than Unix, and I think that the direction they've gone in is totally misguided. I was just pointing out that historically, the Windows model has not been stream oriented the way *nix is, and that SSH or shell oriented stuff in general is really about streams (the power of Unix shells, in my opinion, is the ability to pipe the output of one program into the input of another).

Re:Wall building?

[Volante3192]

Then you run into a day where the retarded admins tie up both RDC consoles with disconnected sessions and your remote desktop console program broke and you're trying to get a remote admin tool working to kick out those sessions because the server's in a cage 40 miles away and telnet's disabled by default.

Yea, RDC's nice. Until someone decides to leave their session without logging out...

Re:Wall building?

[Kjella]

Well, this isn't that difficult to understand, think of marketshare as the water level in a dam. If water is being artificially held back by a wall, you want to tear it down so the customers migrate to you. If you're artificially holding onto market share, you want to build walls so customers don't migrate away. Microsoft is still in basic monopolist strategy #1: Keep the market you have (desktop), make related markets work best with your monopoly (client to server) and prevent a mixed environment (server to server). They want the logic to flow like "Because we need Windows clients, we need Windows servers, because we run some Windows servers it's easier to have all Windows servers." While this site is overabundant with "slippery slope" arguments, it's the slippery slope to becoming an all-Microsoft shop. Or maintaining the analogy, that escaping Microsoft's monopoly is an uphill battle all the way. Sure, the EU has a little balls but I'm sure Microsoft knows they'll make more money in the long run by amking sure they stay in the Microsoft sphere of influence.

Re:Wall building?

[Yaruar]

Even the exchange 2007 gui uses powershell commands for administration. And even then they have designed it so you can't do all the admin through a gui, you have to use the cli to get the full functionality.
It's going to make scripting for exchange a piece of cake with full native support for xml through the CLI too.

Re:Wall building?

[lordeveryman]

One more jaded than I might ponder that the reason for not including SSH and SFTP is to make it more painful for people not to use SharePoint; which MS believes is the only real way to share files and services on a network. (Other OS's need not apply.)

Re:Wall building?

[chad.koehler]

I don't think my local building codes allow for s secure firewall to have any windows, but I'd have to check.

Re:Wall building?

[chad.koehler]

mstsc /v: /c


This gives you access to the console (remote desktop session that won't deny you access). From there you can go into terminal services manager and forcefully disconnect the abandoned sessions.

Re:Wall building?

[Bert64]

That's not the fault of remote desktop, but rather of microsoft's licensing model for it...
If you actually license it for more users, you can easily have a lot more than 2 sessions. The limit of 2 sessions is totally artificial and designed to make you pay more.

I often have lots of SSH sessions open, often to lots of different machines... I also have plenty of non interactive ssh sessions open, a number of non interactive scripts i have use ssh to tail -f logfiles or such, i believe gltail which was posted on slashdot a few days ago does the same.

Re:Wall building?

[rrhal]

I'm pretty sure Power Shell was ment to address this. You can access all the same GUI methods and attributes through PS scripts. The party line is that now you can script any thing you could do with the GUI.

Re:Wall building?

[ScrappyLaptop]

Much as I like some of the things you can do with PS, it is bloated and slow; it is the CLI version of Aero. After you use it a bit it seems like it's nothing more than a CLI that is layered on TOP of the GUI, not the other way 'round...I expect my CLI's to be fast and lean, not slow and massive.

Re:Wall building?

[way2trivial]

mstsc /console read up.

"This also solves the annoying
"Terminal server exceeded the maximum numbers of allowed connections"
issue we all know too well."

or hey-
shutdown -r -m \\server

Re:Wall building?

[way2trivial]

also from task manager you can force log-off.
rightclick startbar, choose task manager, users tab- LOGOFF

Re:Wall building?

[Volante3192]

Sweet. Minor quirk, it has to be at least /con ...well, for me at least, i tried /c and /co and those didn't work, but /con and /console worked nicely.

Re:Wall building?

[BenjiTheGreat98]

IBM's OS/400 doesn't have it as far as I know...

Re:Wall building?

[kestasjk]

Well most other OSes aren't reliant on the GUI to do most tasks. You can do a lot on Windows via the command line with PowerShell, but most people still prefer to use the GUI that they're familiar with to configure servers etc. Also even if Windows did have an SSH interface to PowerShell, it still wouldn't be usable by Linux people because PowerShell is pretty different from sh. (You'd be more familiar coming to PowerShell from *.NET than from *sh)

Re:Wall building?

[pseudorand]

> That's their model of "a better Unix than Unix,"

I'm a Linux admin by profession, but to be honest, I agree with you. MS has come a long way and is as good as or better than Linux in many respects. (Plenty stable, better hardware support, easy to use GUI that works [Linux command line Just Works(TM), but GUI's are still second rate compare to Windows] giving it a financial rather than educational barrier to entry.)

However, I'm not sure Mr. Balmer believes he's got a Better Unix than Unix yet, otherwise he would have include SSH. Why did Linux kill Unix? Because it was free? No, because it was BETTER. Why has Windows command line (which is actually pretty good or at least wsh, perl, ruby, php, tcl/tk, and all sorts of other command line tools that can do almost anything) still not taken off. Because they don't make it easy to access from anywhere. If they put SSH on Windows, people would start developing a lot more command line stuff for Windows (which is easier and faster that GUI crap) and Linux would have to either get better to stay relevant or die. Honestly, Windows isn't that expensive, and I wouldn't mind paying for it if it actually let me do what I needed it to do.

Re:Wall building?

[Stamen]

And this is the fundamental problem with using Microsoft technology. You can argue about this or that, but the main reason I don't spend much time using it is because it limits my skills. If you learn Microsoft technology, then your are basically limited to Microsoft technology; because they so often refuse to use standards, and insist on going their own way. If you learn Unix technologies, your skill is transferable to almost every other OS except Windows.

It's a brilliant business move by Microsoft, and the reason that IT people who work in Microsoft shops are so defensive of their technology. If their company changes to anything else, they will have very limited applicable skills.

I personally work with OS X and Linux, but if everyone wanted to change to Solaris, I could care less, after a day of getting adjusted, I'd be back up to full speed.

Re:Wall building?

[Volante3192]

That I know, but the trick was getting into the system's task manager to do that.

Re:Wall building?

[rucs_hack]

There are plenty of independant ssh implementations, like openssh (server), putty, winscp, and some more that aren't free. Windows doesn't need to have this feature, you can add it yourself.

And for the record, linux does not have ssh in the OS, it has it as an additional program you install. It's just that most distributions already have this.

Re:Wall building?

[Alioth]

Linux people are capable of learning - so I would suggest that PowerShell would be usable by Linux people. All they need to do is learn how it works.

Re:Wall building?

[Kyojin]

I almost prefer it that way. I'd hate to think what a pig's breakfast Microsoft would make out of an ssh server.

It would be incompatible with every client except the new microsoft ssh client they'd release with it. It would be full of security holes until at least microsoft ssh server service pack 2. It would be unstable and sometimes require a registry setting to be manually edited, and sometimes not, depending on what order a seemingly unrelated update made its changes in. It would be integrated in to the os such that if the ssh server crashed, the entire os would crash. After enough people complained and enough law suits, they would introduce rudimentary support for non-microsoft ssh clients, but these would occasionally corrupt data. Then they would implement their own version of X forwarding. Not by using the pre-existing remote desktop connection code, but by writing an entirely new powertoy client and a server plugin. Horrible things would occur if one attempted to connect to a server that didn't support graphics forwarding when the powertoy was installed on the client. There would be no fallback option to overcome this feature. 640KB would be the maximum graphics memory that any single application could forward if everything else miraculously worked.

Have I missed anything? Probably.

Re:Wall building?

[Rogerborg]

Well, clearly you aren't a 'Linux person', or you'd have called it Power$hell, PoorShell, or PowerHell. My point being that the Linux/M$ diaspora goes a lot deeper than simply learning each others' toolsets.

Re:Wall building?

[clubhi]

I used Linux since I was 12. When I was 22 after college I got a job programming C#/.NET on Windows. I am now 25. I haven't looked back once or miss my Linux days. Can't we just agree that some people like different environments? Your argument on being able to cross over to different OS's coming from Linux is true. But really, Microsoft guys are safe in not ever needing to cross over.

Re:Wall building?

[admiller97]

http://www.iis.net/downloads/default.aspx?tabid=34&g=6&i=1526 IIS 7 will support FTPS, it is currently in a separate download

Re:Wall building?

[ncryptd]

It's stuff like this that makes it really hard to seriously consider a Windows OS a server OS, even when you're supposed to. Add that to the fact that automation is 10x harder on a Windows server than a *nix one, and you've got a good case for never allowing Windows in the datacenter. Seriously though -- it couldn't be that hard for them to include an SSH server...

Re:Wall building?

[rrhal]

I think that's a pretty fair assessment - but at least you can set up a script and walk away while it cranks on a few thousand machines.

On a side note doesn't this all have the feel of reinventing X-Windows (at least in a way)?

Re:Wall building?

[bgerlich]

Diaspora you say...

-Rebe, Rebe is there a proper blessing for Steve Ballmer?
-Hmmm... May God bless and keep Steve Ballmer- gasps all around-... far away from our shells!

Re:Wall building?

[darthflo]

I'm pretty sure if Microsoft was to include an SSH server, they'd simply take OpenSSH, strip out all the X forwarding (plus probably a few other parts they don't deem necessary), add a registry interface, add some AD user auth magic, done. There's no use in re-building something that's really, really free, wouldn't make them any money and is invisible to all but sysadmins anyways.

Re:Wall building?

[mordred99]

Excuse me? Of course it is deliberate. 80% of slashdot say "they are trying to keep the man down by not building in SSH and SFTP server on W 2k8" ... Of course the same 80% of you would cry "Monopoly .. Abuse of power" if they did install a wizz-bang SSH and SFTP server on the OS. No offense but they have to walk a fine line between providing what the customers need - and what will get them sued. There are so many vendors out there that sell (or give away) SSH/SFTP for windows what they will all be up in arms if MS just "gave it away".

I will reserve judgment on the system until it comes out in a more stable release (ie. gold code) and determine then if I like it. Features tend to change (especially with MS products) over the RC process - so don't hold your breath that this is the final list of management apps or services that come with it.

Re:Wall building?

[222]

But, my question is... does Cisco IOS support it?

All joking aside, I recently found out that somewhat older ipbase Catalyst images don't support it. You'll need to upgrade to ipbase w/ crypto if I understand correctly (I'm currently in the process of migrating everything from telnet -> SSH...).

Re:Wall building?

[msdschris]

In fact... http://www.itjungle.com/fhs/fhs022205-story02.html

Re:Wall building?

[The+-e**(i*pi)]

its mstsc /v:ip -console

Re:Wall building?

[Seismologist]

Just get cygwin, it not that much of a hassle to intall...

Re:Wall building?

[Stamen]

It is true, that there should be different options for different people, I'd hate a world where only OS X or Linux existed. Ideally, a few major players would exist that had equal market share; this would be good for everyone as it fosters competition (like what happened when Firefox started to takeoff, people who like IE enjoyed Microsoft's renewed interest in adding new features to it).

But really, Microsoft guys are safe in not ever needing to cross over. I have a few problems with this:

* One is I started out as Microsoft developer, some VB, but mostly Visual C++. I also worked at a company that did a lot of FoxPro and some Visual J. You're to young to remember this, as you're just starting out, but the problem with knowing non-standard technologies, is they can and will be taken away from you. I mentioned FoxPro and Visual J, because those were, and those developers were left high and dry. Heck, I know plenty of VB developers that complain bitterly about Microsoft dropping them (and no, VB.NET isn't VB, other than in appearance). VB was one of the most popular languages, and Microsoft just dropped it. Once you've been around for a while, you see this happen time and time again; your .net knowlege, in the future, will be just as useful as FoxPro knowlege is now. Sure c# is a standard, but it won't matter when Microsoft decides to switch to Foo++ language and none of their tools support c# anymore.

* The other problem I have is that the world is far from black and white. And even all Microsoft shops will have 3rd party tools come into their domain and they will have to work with them. Plus companies need to work with other companies, and you can't control what they will have. You WILL be exposed to non-Microsoft technology, and your boss WILL expect you to make it work, NOW. After years and years of this, you start to change your mind about what you should be learning.

Microsoft can make excellent tools that support industry and de-facto standards. And they would be very good at this, and they would make lots of money. But they refuse too, because "lots of money" isn't "all the money", and thus isn't good enough for them. I supported them for a long, long time; but like an abusive father, one day you start to punch back, and then you leave; because you realize, it's just not worth it anymore.

Re:Wall building?

[Constantine+XVI]

At least the basic commands (ls, cp, ps, etc.) are aliased to their equivalents in PSH (Get-Childitem, Copy-Item, Get-Process). Granted, the truly intresting stuff is pulling up .NET libraries in the shell, which there's no real equivalent of in bash in Linux.

Re:Wall building?

[davidsyes]

Not walls-building, but balls-wielding.

They ARE, though, probably trying to make it difficult for others to operate a mixed environment, probably on an assumption or finding that LOTS of admins use GUI features, or don't use SSH effectively.

They're probably grousing and anticipated unfavorable EU court outcome. So, maybe they're just wielding their balls.

(Anybody got a poker, or faulty shorting probe?)

Re:Wall building?

[rbanffy]

Maybe it's an IBM thing. Both my 43Ps run AIX and neither didn't came with SSH support.

Yes. I have a collection of old computers.

I also believe (can't check right now) neither my Classic (running Solaris 2.5) nor my Ultra 1 (running Solaris 8) have it.

Re:Wall building?

[rbanffy]

LOL. Wish I had modpoints.

Re:Wall building?

[ConceptJunkie]

I'm pretty sure if Microsoft was to include an SSH server, they'd simply take OpenSSH, strip out all the X forwarding (plus probably a few other parts they don't deem necessary), add a registry interface, add some AD user auth magic, done. There's no use in re-building something that's really, really free, wouldn't make them any money and is invisible to all but sysadmins anyways.

But how could they put their own mark on it unless they delivered some 300 megabyte behemoth with hooks into every service that runs on the machine and requires the rote memorization of 600 pages of cryptic documentation to be able to configure, and through which someone could pwn your server by doing a listing of a directory that contains a slightly malformed JPEG file?

Re:Wall building?

[TheBracket]

> Sure c# is a standard, but it won't matter when Microsoft decides to switch to
> Foo++ language and none of their tools support c# anymore.

Here's the thing, though - it doesn't really matter what language you are using, if you know how to program. I started out in BASIC on a 6502 (BBC Model B), and have since worked in many, many languages ranging from Fortran to C#, via Pascal, Java, Erlang (a little) and Perl. When I was starting out, BASIC to Pascal took some work. Pascal to C took a bit less work. C to the others has been relatively easy so far.
Sure, it's a pain when one's existing code-base doesn't have an obvious forward-migration path - but it's not really a roadblock. Your existing copies of VB5/6 programs still run, your old tools still run (VB6 has better Vista compatibility than VS.NET!), so you have plenty of time to plan.

My experience of the old VB was that it really, really deserved to die. I just wish VBA would die with it!

Re:Wall building?

[Quetzo]

That's one of the most annoying aspects of RDP...

I generally log into an adjecant machine and then:

>query session /server:${SERVER}
>tsdiscon $SESSION /server:${SERVER} ( this disconnects )
>reset session $SESSION /server:${SERVER} ( this logs the session out )

Re:Wall building?

[Stamen]

What you say is very true. However, you need to actually learn the concepts. I was talking to a programmer, with a little more than a year experience doing "web application development". I put that in quotes, because he has been doing ASP.net, successfully I imagine, and he didn't have the slightest idea how web pages actually worked. I was trying to explain Post and Put in HTTP, and it was like I was speaking greek. This is the problem.

Re:Wall building?

[way2trivial]

my method works 100% as well.
try typing

mstsc /console
in xp's run box...

Re:Wall building?

[jo42]

> as good as or better than Linux in many respects

Horse poopies.

Until the day you can download it for the cost of bandwidth and run it without paying Micrsoft a single peso, Linux will always be "better".

Re:Wall building?

[clubhi]

Honestly, I prefer the Microsoft world more than anything else simply because I realize the competition is lower. All the brainiacs are willing to slave away 80 hours a week at google to support their software ideology. I'm just trying to make as much money as I can now so I can do what I want later.

Re:Wall building?

[rtechie]

In PowerShell many commands are aliased to their unix equivalents specifically to make it easier for those coming from the unix command line. It's conceptually similar to the old 4DOS, which basically did the same thing. Of course, Powershell has all kinds of crazy scripting features (it supports something like 5 languages natively, and you can plugin lots more).

Re:Wall building?

[Almahtar]

SSH is not just command line. Check out SFTP, FreeNX (remote desktop over SSH), and SSHFS. Using just one open port, you can have full SSL encrypted remote desktop, remote file system mounting, ftp, and (if you so desire) command line access using ssh.

Re:Wall building?

[jhol13]

[...] your .net knowlege, in the future, will be just as useful as FoxPro knowlege is now. It has already once happened: .net2 is not compatible with .net1. This is not so much problem to the programmer than to the user: he must install runtime for both.

I cannot even imagine the reason why .net2 cannot emulate nor include runtime for .net1 programs, but this is immensely idiotic.

Thank god Sun has not done anything that stupid with Java.

Re:Wall building?

[afidel]

the power of Unix shells, in my opinion, is the ability to pipe the output of one program into the input of another

Did you know that Powershell takes pipes one step further than Unix and actually passes the object you are working on between processes? A good example of where this is nicer than the Unix alternative is doing registry manipulation, I can search for a registry key by name then enumerate the values under it and modify values all without having to worry about data types (within reason). Another good example is grabbing a user from AD where I can grab them based on any query context then manipulate the attributes of the user just by doing result.Attribute=whatever, this is MUCH simpler than doing a similar process against an LDAP directory on any other system. At this point for me the biggest drawbacks by far is that not enough stuff is exposed as objects, though 2008 is supposed to be fixing much of that, and that remote object serialization is a COMPLETE joke and from reading the team blog that doesn't look it's going to be fixed in the next release of PowerShell either which really bugs me as it kind of limits its usefullness as a mass system admin tool.

Re:Wall building?

[Mista2]

And syslog deamons, md5 sum checkers, etc all missing from Windows OS by default, and you know what, they dont even include MS Office in their flagship product! Duh, all of those cool tools in linux are tools and utilities, not part of the OS proper. They just happen to be really useful when working with multiple OS's in complex environments. MS is not doing that, they only let windows server log to themselves. Hope you BOUGHT some other tool to collect their logs in a central place 8)

Re:Wall building?

[jafac]

Both Apple and Novell tried to pull that crap, and neither had the marketing muscle to keep it up. In the end, they both adopted Unix. Microsoft *did* adopt unix at one point (ActiveState tools, and of course, the lame excuse that they had a posix subsystem down in the works somewhere). Neither cut the mustard, and Microsoft didn't stick with them. They actually tried to stave off the "weak command line" criticisms for a while with promises of PowerShell. Which turned out to be a big brown smelly turd.

Re:Wall building?

[cromar]

My experience of the old VB was that it really, really deserved to die. I just wish VBA would die with it!

Amen. They should take VB.NET with 'em!

... at 19 pages ...

[trolltalk.com]

> "and at 19 pages is certainly 'in-depth'."

19 pages - more pages to serve adverts. A few paragraphs on each page, and on "print" so you can't just read the whole thing in one page.

Come off it - take away the pictures, and the whole articles is a couple of paragraphs. In-depth? For people who never read anything harder than a comic book, maybe.

Re:... at 19 pages ...

[jimstapleton]

It'd probably be 3-4 without pictures and such, still not large. It's fairly broad on the changes, but as you put it, in-depth is not a word I would use to describe it. Some of the pictures have relevant details in them, but they could be replaced with a few words for sufficient explanation.

But hey, people like pretty pictures of what they are going to see. Funny thing is the installer pics remind me of what RedHat had around '01 or '02.

Re:... at 19 pages ...

[Abattoir]

19 pages - more pages to serve adverts. A few paragraphs on each page, and on "print" so you can't just read the whole thing in one page.

Anyone who expects anything else from Tom's Hardware hasn't been around long. That site has been an advertisement haven, which is the primary reason I don't bother with the site.

Of course, with Firefox and adblock, I see minimal or no ads there.

Woah...

[Rik+Sweeney]

Windows Server 2008 takes up 10 GB of hard drive space.

10?! What the hell's taking up all the space?!

Perhaps there's a 1080p movie of Balmer chanting "Developers Developers Developers"

Re:Woah...

[rubycodez]

that movie isn't too big, images don't change much frame to frame so there's high compression. But the chair flinging has rapidly changing background while tracking chairs, so that movie is huge.

Re:Woah...

[betterunixthanunix]

Doesn't surprise me much, at least if they included a .NET application server. There are JEE AS's that are more than 2GB, and that is just the AS, not all the other stuff a typical server might have these days. So if this is an all-in-one package, you are looking at the entire OS, an AS, possibly a database server, and that right there could be several gigabytes.

Not that that is an excuse, when I can run my web server with a 2GB hard drive and 64MB of ram without any trouble (though the Slashdot effect might be problematic).

Re:Woah...

[man_of_mr_e]

Both Vista and 2008 suffer from 'backup-itis', use a tool like SpaceMonger on a fresh install of either and you'll see that well over 50% of the used space is copies of system files (sometes 3 or 4 copies). This is all part of the "self-healing" bit, but I think it's a waste of space.

Re:Woah...

[--daz--]

Not sure how they came up with 10GB unless they were using the Enterprise or Datacenter Editions.

I just set up a Win2K8 Std in a VPC and it required 6.2GB all installed with all the features I was using (which was most except for Active Directory, Remote Connection/VPN stuff, and some of the Desktop Deployment stuff which might account for most of the discrepancy).

I was able to pair that down to about 4GB by tossing out most of the driver INFs (not needed in a VPC) and the actual driver file backups and a few other 'cache' type folders. I'm sure I could've gotten it down more.

The same techniques in Win2K3 Std takes it from like 3GB-ish to 1.5GBish, by way of comparison.

Admittedly though, there *is* a LOT more stuff in Win2K8, not just Aero and Balmer videos.

Re:Woah...

[bendodge]

Well, from what I've experienced dual-booting Ubuntu and XP (I'm much more familiar with Windows), it seems like X-servers break a lot easier than XP's GUI when the user messes with things. However, Windows seems to break itself (when you aren't tampering) much more often than Linux does.

Re:Woah...

[man_of_mr_e]

Well, if you remember... back in the 9x days, whenever you needed to install a new piece of hardware, or make some change, it often asked you for your windows CD. That's been gone for a while, but the "solution" was to basically put all those files on your hard disk. Then came Windows File Protection, which keeps backup copies of files so that if they're deleted or overwritten with something else, windows would automatically restore those copies. Well, vista goes even further on that, and it wastes a ton of space in my opinion.

Re:Woah...

[Twisted64]

Given the incredible price drop for HDD space this year, I think sacrificing 10GB for a new OS, especially if it's going to self-heal, is a no-brainer.

Not surprised

[JK_the_Slacker]

Although our test system used a beefy Intel Core 2 Duo E6700 with generous 2 GB of RAM, the Server's user interface felt sluggish with Windows being drawn very slowly

That's what happens when you try to use beefy hardware with a cheesy interface to a porky OS.

Re:Not surprised

[jollyreaper]

Although our test system used a beefy Intel Core 2 Duo E6700 with generous 2 GB of RAM, the Server's user interface felt sluggish with Windows being drawn very slowly That's what happens when you try to use beefy hardware with a cheesy interface to a porky OS. Wow, I think Jimmy Dean just got a new idea for a breakfast burrito.

Re:Not surprised

[JCSoRocks]

I wouldn't call that beefy by server standards. That's probably equivalent to the slowest machine in our racks. Sure that makes a great desktop, but if your server is just a desktop with a server OS on it... you can't complain when it doesn't run so hot.

Re:Not surprised

[TheMeuge]

They are not serving Slashdot on that machine. They were complaining that the interface is slow... which should never even happen on a desktop.

Re:Not surprised

[LO0G]

Especially when the OS doesn't use hardware acceleration for video rendering.

I don't know this for sure, but I suspect it - after all, why should a server OS need to use hardware accelerated video?

Someone above already commented on how it would suck if your server crashed because of a crappy video driver.

Re:Not surprised

[Bert64]

A server shouldnt even have a video card...
Physically entering the datacenter to do work on a server is stupid, and using a graphical remote management card is bandwidth intensive and slow and a quite unnecessary and ridiculous idea.
All my servers use serial consoles and have for years... Each server is connected via serial to a central terminal server, to which i can connect using SSH and choose a serial line to connect to. From the console, i can interact with the OS and even interact with the firmware if the OS is not running, so i can install an OS from scratch by doing a network boot...
I have successfully repurposed some old servers (by completely reinstalling the OS) remotely recently, without setting foot in the datacenter. I have only entered the datacenter to physically install remove or repair hardware.
The datacenter is a few hours drive away, if i had to do lots of physical work on the servers we'd have to use a closer more expensive datacenter.

And because of this, the idea that any server would be powering unnecessary video hardware or running unnecessary video hardware is utterly ridiculous.

Re:Not surprised

[rmallico]

Not sure where Tom got his hardware but I have been running 2K8 RC0 on a E6700 with 2GB of ram while dual booting between Fedora and the aforementioned... It runs wonderfully... then I DID install the nvidia nforce motherboard drivers AND the Nvidia Geforce 7100 drivers (this is a server remember) and it runs flat out... this made a HUGE difference in screen redraws and user experience.. (btw: you can use Vista drivers on 2K8 just fine)

The server manager screens draw just fine but what does happen is the values in the display boxes sometimes are slow to fill in. the Windows Server Virtualization screen for the settings of a given VM display quick as heck but the values FOR the vm (like path/etc) take 5 seconds... this i am giving MSFT a little room on since it is RC0 and NOT RTM and I am sure there are some things changing in the performance between now and release...

not a 2K8 fanboy OR a linux fanboy... just a fan of an OS that lets me do what i need to do in my job... linux or windows... they both have their warts...

Re:Not surprised

[operagost]

I don't see any actual data to back up any of your points. RDP and Citrix don't send uncompressed video snapshots down the wire 30 times a second; they send graphics calls to the virtual desktop. Any bitmaps, of course, would have to be sent down the wire, but there shouldn't be too much of this in an administrative function. Just saying something is slow and stupid doesn't make it so.

Re:Not surprised

[Lord+Apathy]

linux or windows... they both have their warts...

Problems is, it's not the fucking warts that kill. It's the fucking frogs that are the problem.

Re:Not surprised

[LO0G]

100% agreed. Of course then you couldn't complain about how sluggish the UI was on the server's console either.

Re:Not surprised

[Bert64]

// using a graphical remote management card is bandwidth intensive and slow and a quite unnecessary and ridiculous idea

Note that i said "remote management card".
These are hardware devices which snapshot the display and send it down the wire.
RDP and Citrix are software protocols which abstract API calls to send drawing events down the wire instead of a physical display device... The key point is that they are SOFTWARE. What use are they if your OS hasn't been installed yet, or is failing to boot?
So yes, remote management cards ARE slow, and there really isn't that much that can be done about that because of how they work.

Which brings up the second point, they are stupid too...
Serial consoles work well, have been working well for years and are usable over very low bandwidth links. To suddenly introduce something vastly inferior yet more expensive to produce fits my idea of stupidity very well.
That's not to say all administration should be done over serial, but you should _ALWAYS_ have access to the firmware (to boot arbitrary devices and configure hardware), the OS installer (to perform an install if necessary) and sufficient functions of the OS to load/install network drivers, configure ip addressing and anything else necessary to get a network based admin protocol up and running.

Re:Not surprised

[shadowbearer]

  I suspect the post you replied to was meant to be funny.

  Not really sure, tho :)

SB

Multi-CPU machines

[xaxa]

"That would mean that a two-processor (=socket) license would allow the use of up to eight cores with current processors!"

How generous of Microsoft!

did not seem that slow to me

[COMON$]

I have been running server 2008 on an old gaming machine with 1GB ram, a 512MB NVIDIA 6800, 72GB raptor drive, athlon 2200 as well. Been very quick and clean on the interface, customization options are nice. I was just about to slap exchange 2007 on it last night to test drive it and forgot it is 64bit only. But as usual I am dissappointed with the lack of ssh support. I will have to read the article to see what the forest changes are with 2008 as when I promoted the server there was no difference that I could tell between 2003 AD and 2008, but there was a note about 2008 forests being different or something like that.

It does however make me wonder if my graphics card was pushing the speed of the interface, how am I going to justify to my department head that I need the latest gaming card for my server? I have been trying that excuse for years to no avail :)

Re:did not seem that slow to me

[jeffy210]

512MB NVIDIA 6800 And you wonder why the UI was snappy? Most servers don't have graphics cards anywhere near that size. Most have elementary 3D support and that's just because the current chip in it happens to support it. Servers aren't meant to be UI heavy.

Re:did not seem that slow to me

[Emetophobe]

It does however make me wonder if my graphics card was pushing the speed of the interface, how am I going to justify to my department head that I need the latest gaming card for my server? I have been trying that excuse for years to no avail :)

From my experience with XP, a lack of a video card is the reason why Windows are drawn and refresh slowly (even moving Windows around the screen is painfully sluggish). All that goes away when I install the video card drivers and it switches from software to hardware rendering. Also, you don't need the latest gaming video card, even a 4-5 year old card like a Radeon 9600XT works wonders.

I haven't used Vista or Server 2008 (and I never will), but my guess is that it's same as XP in the "needs a video card to have a decent GUI experience" department.

Re:did not seem that slow to me

[secPM_MS]

I have been running Beta's of server for 2 years now. I ran it on a Dell D610 notebook in maximal battery life mode for a year before I moved to a Dell D620 notebook, upon which I am writing this note. It also is in minimal power mode. Server has been responsive and reliable, even in low power mode. I am using on-board graphics, but the default is essentially a Windows Classic mode, which works well as a windows desktop. Note, I am running as a normal user and use the machine administrator account for management. I have not been troubled by permission prompts.

Re:did not seem that slow to me

[COMON$]

I haven't used Vista or Server 2008 (and I never will)

Sorry I gotta ask, are you a Linux/Unix user? Or are you just one of those people who hate change and hold on to an OS like '98 forcing the rest of us to double our security standards against the "windows 98 subborness" mentality.

So I can sleep better I am going to assume you are a Linux/Unix user and there fore have no need for silly things like vista, unless you are a syadmin and have to manage an enterprise environment :)

Re:did not seem that slow to me

[Emetophobe]

My primary computer is running XP Pro. My old computers are all running Linux. XP just works (hense I have no need for Vista). Why would I upgrade to Vista when XP runs all my applications and games? I haven't seen any compelling reasons why Vista is better than XP.

Re:did not seem that slow to me

[COMON$]

so sad.

I remember having this same conversation with a win 98 user when win 2000 came out, that made me sad too. And due to that dumbass mentality we saw the most hideous creation of all time, the OS's name who I shan't mention here, there are children reading after all. Vista does have its benefits, server 2008 has major benefits. But to say you will never load it? That is just assinine, you are either senile or too green to know better. The exception to this is Linux geeks. Even they are forced to play with MS in their shops, and know better than anyone to stay up to date with MS.

Re:did not seem that slow to me

[COMON$]

crap, hope you read this AC, is the 32bit disabled in any way? I am using my MSN library to play with it and was going to load 2008 x64 but if I dont have to do a rebuild to test then that would be fantastic.

Re:did not seem that slow to me

[Emetophobe]

I already made the decision a while ago to stop buying Windows based software (games and apps), so that it would be easier for me to migrate to Linux in the future. It won't be long before I'm fully weaned off Windows. I've been using Linux since 1995 and I'm familiar with Slackware, Redhat and Debian/Ubuntu.

I'm also a hobbyist programmer and I enjoy programming in my spare time. It's easier to dig around and code stuff in Linux than it is in Windows from my experience. I enjoy using the CLI and I like making my own shell, perl or python scripts. Windows doesn't offer me this level of flexibility out of the box.

So I guess I fit into the linux geek category.

Double standards?

[mrjb]

Now it is a problem if MS is not bundling software? Last time I checked, that was a good thing. At least it allows excellent third party products such as putty and pscp to thrive.

Re:Double standards?

[MMC+Monster]

Err... One would guess that a viable ssh is as necessary to a server as a TCP/IP stack is. It allows remote terminal-based administration. Didn't Windows create some sort of power shell recently? How are administrators supposed to use it remotely without ssh?

(I really don't know. I am not an administrator and certainly don't know much about servers.)

Re:Double standards?

[Yaruar]

well, if you'd RTFA then you'd have seen it's replaced with windows remote shell. And i suspect you can execute remotely through powershell as well.
and as pointed out by myself and others SSH is rarely, if ever used with windows servers.

Re:Double standards?

[plague3106]

I'm not sure I get your point. Are you asking how you can setup a system that has no net connection without having SSH available?

Re:Double standards?

[jimicus]

I think they mean an SSH server rather than client, and it certainly is something that has historically been missing.

It doesn't surprise me much, because Microsoft have spent the last 10 years trying to drive everyone away from command line use - generally speaking, you either use Remote Desktop or one of the MMC plugins over RPC to admin a Windows server. However, they are now (finally) producing proper scripting mechanisms for things like Exchange - clearly the fact that every Windows shop of any significant size inevitably winds up doing scary things with batch files, AutoIt, KIX32 and the like has finally sunk in.

Microsoft being what they are, I expect at least 2 generations to go by before these scripting tools are worthy of being taken seriously. I would expect an SSH server in either Windows Server 2008 R2 or the next version after that - and very likely available as an extra download for existing 2008 servers at the same time.

Re:Double standards?

[plague3106]

Ahh.. so you have no clue on how to remotely administer a Windows server then.

Re:Double standards?

[plague3106]

Ya, maybe you should have mentioned that's what you were talkig about in your OP, instead of posting gibberish.

If you need an ssh client, its pretty easy to install one. Still doesn't mean it needs to be included by default.

Re:Double standards?

[Almahtar]

The problem isn't the bundling, it's bundling apps that cripple competition. By bundling apps like IE that are generally incompatible with the competition but failing to bundle apps like SSH that are necessary to communicate with the competition, MS uses its market share to unfairly introduce incompatibility.

Re:Double standards?

[mrjb]

And if MS would bundle SSH- what would stop them from making it incompatible as well?

Re:Double standards?

[Almahtar]

Touche. Though the incompatibilities would have to be subtle or it wouldn't be SSH.

Re:Double standards?

[plague3106]

I get it now. Its MS' fault you're using the wrong tool for the job. Ok. You realize of course that you can BUY ssh from that site, and they'll send you this nifty thing called a CD. It will contain the program you need on it. Wonderful!

But the point is, it is the most used tool in business situations(servers etc).

Prove it.

Re:Double standards?

[plague3106]

Sorry, you're the one that don't get it; if you NEED an OS which comes with ssh pre-installed, than Windows is not the right tool, so use a *nix OS instead.

But since you have absolutely no clue about other Operating Systems, I really can't understand why you have such a strong opinion. "Prove it"? I almost fell off my chair with that one.

Righhht. Always the call of a stupid zealot that can't accept reality. Nevermind that I have plenty of experience managing Unix and unix like OSes, and that I ran my home network on Linux for almost 10 years..

My assertion is that ssh is required; all you've done is shown your ignorance on how many places not only don't need it pre-installed (because they CAN get ssh installed) but don't need it at all (because they are 100% Windows based).

But please, prove me wrong that a majority of IT depts absolutely REQUIRE SSH WITH THE OS. You're going to have a tough time, because not many places totally lock out internet access. That's a minority (and there have been studies showing as much).

Oh, and you ignore my suggestion of buy Ssh from Ssh.com and getting them to ship you a CD. So its not like you can't get it installed even without the internet.

Ugh.. why am I wasting time replying to someone that starts at a 0?

Re:Double standards?

[plague3106]

That said a lot. Actually I ve been on slash since the beginning maybe? Always as an anonymous coward. I had many +5 funnys,insightful, etc not attributed to any alias or nickname.

So you say.

And you know why? Because it does not define who I am so I really could not care less. Obviously you care a lot, so I m not gonna break it to you.

I don't care, insofar as it gives me an idea if someone is simply a troll or overall a good poster. That's the point of karma. Overall, you've been modded badly, which makes me wonder.

You can put me in your "foes" (I don't use this feature) and be done with it.

I find that part of the system useless; I only tag people I would like to notice again, but I'm not going to waste time publicly saying I dislike someone.

If you just want to keep your "experienced" opinion, keep it. Although I really can't get it how an experienced IT guy like you weren't in a situation where Internet was not available. I never talked about constrained environments though, so keep your statistics for another posts. peace(no really!)

Which was my point exactly; you didn't mention constrained environments. That's why I don't think ssh need be included in an OS and not including it doesn't count as crippling the OS. A constrained environment (such as one without any inet access) is an edge case. I also give a solution that should work in your environment (unless is so constained you can only use what comes on the OS CD, but that hardly seems useful at al, especially if it means you're using an OS without a tool you claim to required).

Re:Double standards?

[plague3106]

I never said by excluding ssh someone cripples a Windows OS. I don't even think someone else posted such a thing. The whole point was that MS ignores that many environments are mixed. That's why I mentioned the samba example, remember?

You need to go up the thread then; when you first replied to me, that was the whole point of this discussion; someone said exactly that, and I called BS, and thats where you jumped in.

And yes although by excluding ssh you are not crippling Windows, you are crippling a mixed environment.

The environment doesn't suffer at all; it works together.

And no, the solution you suggested(buying a 3d party tool) is laughable. You know it too. After all we are not talking if I or you can solve these things out. Of course I have all the tools I need in a laptop/Usb/cd-rom. Nevertheless I feel more secure if an OS can handle basic functions with its default installation.

Huh? Third party tool? The company SSH is owned by the man that came up with the protocol!! The open source package you have that comes with Linux is the one this guy wrote! The same one he sells! So it makes a difference to you if an OS vender slaps in on their own CD or not? That's amazing to me. And its not a basic function; it only comes up if YOU want to manage Unix servers from a Windows box. MS focuses on making it easy to manage THEIR environment. If that doesn't meet your needs, you shouldn't be using it.

That's why I feel more secure with Linux systems. You are a professional you know what I mean. I 'm a DBA(specially Oracle) and most of the DB installs I come across are on Linux/Unix, even if the whole organization has all the clients running Windows.

Then you've fallen for the anti-MS FUD. Windows is just as secure. And most of the DB installs I've dealt with are MS Sql Server.

So my initial post were about people(administrators) that work with mixed environments. Actually I never added anything more compared to people that said EXACTLY the same thing and got moded +5 Insightful.

Your initial post was gibberish that you yelled at me about when I couldn't decipher it. And it had nothing to do with the thread I was participating in. At most, you were trying to artificially constrain the thread further to make your case, instead of arguing the point as it was stated.

P.S. I can't understand how someone can evaluate someone else's karma with just what.. 4-5 posts?

Its simple; every new /. account lets you post at a score of 1 immediately after creation. Your posts are starting at 0 always; that only happens if you've gotten more -1s or if you are modding unfairly (or an admin sees you're trolling).

On the other hand, you're rewarded if you're modded up a lot by being able to add a +1.

Re:Double standards?

[plague3106]

Hey I never jumped in your conversation. The exact opposite happened. I was just replying to the parent poster.

Opps you're right; I got confused with another thread.

It's impossible to fall for FUD. I always observe and then I make my conclusions. Windows is not even close to being as secure and even saying that seems odd. The only people that say this, are people that are only comfortable with windows. I can't even begin to think how it's possible to say that, since in Windows you leave the security in the hands of a company, where as in Linux the knowledge of the administrator plays an important role. There are numerous times where I could patch, by hand, a piece of software in linux, before even the company(Novell,RedHat) had issue a patch. And all these with out even mentioning SELinux.

This proves you are falling for the FUD. Do you really think some braindead idiot that messed up security settings on a Windows box will admit it? What are you using as your basis? Things like Sql Slammer, where a patch was available at least three MONTHS before the outbreak (at least)? Seriously, Windows security is on par with Linux, its only administerators that screw it up.. just like on Linux.

First of all, what I meant was that most ORACLE installs I ve seen are in Linux. Not generally DB installs. But since you mentioned that, I gather that you haven't been in many mission critical installations now, do you? Maybe I'm wrong though.

Well that certainly changes things doesn't it? Since Oracle began as a Unix application, it doesn't suprise me it still has a strong presence there. I'm not sure what you're getting at by your comment though; MS Sql has been making serious inroads for years, because its much cheaper that Oracle.

To prove my point I have to tell you that since I'm being paid a lot of money as an Oracle DBA, I should have an agenda. The thing is that Oracle is just a piece of crap security-wise. And I've been proved right many many times. But unfortunately feature-wise, is the best bar none. Don't let me get started on the company's support. With Postgres I can solve my problems in a matter of minutes just by wandering through the fora.

I'll admit I've never had to admin Oracle, but I have worked many places that utilized it. In places where it was used at all, it was at most half of the database servers, the other would be MS Sql.

And in case you think I 'm Anti-MS, you are wrong. Every OS has its place. To say that Windows is as secure as Unix/Linux is wrong, the same way it's wrong to say that Linux can replace Windows in the client-side.

Again, you're buying into other people's FUD. Do some serious research.

You are kidding right? Tell me you are kidding. You are talking about Putty? Is the same man who invented ssh? Which ssh in Linux, by the way, is included in the OpenSSH suite? Which is a part of OpenBSD? Tell me you are joking please!! You don't seem too knowledgeable about Linux, I 've got to tell you that.

No, not putty. There's another SSH (not openssh, either) client, written by the man that came up with the protocol which is available on linux. At least it was with RedHat. It was only free for non-commercial use though. But it was there, and I used it quite often (and yes, I'm much happier administering with RDC than I ever was using SSH). Don't know why you'd say I don't know much about Linux, considering I administered it quite a bit, and used it as a desktop for years.. even fixing some bugs in programs I was trying to install.

All the other things you mention about my gibberish may very well be true, since English is not my native language and sometimes I write English like I am writing Greek(which is my native language).

Honestly, except for your first few posts, I haven't had any trouble understanding your English. I'm glad I did give the benefit of the doubt though on MY first post, which is why I posted a reply to you at all; I really did want to know what you were trying to say.

Regardless of this discussion, I think you're making out better: Greece is MUCH more beautiful country than the US; I wish we tried as hard to keep things as nice. Of course, I've only seen pictures..

Re:Double standards?

[plague3106]

Well maybe in Greece they have a strong bias towards Oracle. I don't really know why, but they definitely think Oracle is the solution to all their problems. As long as I don't pay their licenses... I don't really care.

Ya, I thought about this after the post. Certainly here in the US, cost has been a driving factor in going to MS Sql over Oracle, especially given that MS Sql has been including quite a few great features outside of strickly database (Reporting, Ingeration, Analysis Services, etc.). Although I admin I don't know if Oracle offers such services, I assume it does though.

Because I thought you didn't know that SSH in Linux is part of the OpenSSH suite.

In the RH copy I had, it offered a choice. The open one I did try, and it seemed buggy and had problems working with the client from Ssh.com. I tried putty, and I liked ssh.com's client much, MUCH better.

Well ok, but I really think that both of them serve different purposes. But in the case of a graphical remote client, I'd use FreeNX which has crypto and is faster than RDC(which is VNC underneath, I think).

Well they are both for running commands remotely; one is simply text based, the other GUI based. RDC has always performed well for me.. even when I had to use it over a modem, it was very usable. X over a tunneled SSH connection however was not usable at all.

Our Islands are nice, yes. Athens(our capital where I live) is just another city. Not much there really. I know US only from the movies/TV. If it is anything like them, seems nice :)

Yes, my wife and I would love to vacation on Crete. Maybe someday. Athens looks much nicer than cities here.. although I suppose neither of us are appreciating what we see everyday :-) I'm always amazed at the sense of history I get when I see images of other places.. I just don't feel that here.

There is a misconception that Greeks are living in exotic islands with beautiful women as their company. Only in summers we enjoy this luxury(along with the tourists).

Hmm, I suppose that's the idea I had. At least you have beautiful women as company in the summer; here we have 300 pound whales in belly shirts. Bleck.

Re:Double standards?

[plague3106]

Yes but over an internet link, if you just want to script something or edit a file, GUI is an overkill. Let aside the fact that in servers(Unix/Linux) you mostly don't want to install an X server(for graphics) because apart from the memory overhead there is an extra layer prone to bugs and instability. Stupid thing is that for Oracle you need an X server JUST for the installation and then you can remove it.(I heard Windows server 2008 is going to give the option to not install the graphical part)

I wouldn't script on a server anyway; I'd write it locally first, then deploy it. If i just want to edit a file, there's a multitude of ways to do that; ftp, smb, etc. Again though, if its an important file I'm going to want some kind of editor, like an xml editor, to make sure I don't do something stupid like forget a closing tag. Ideally, I want a specialised editor (its rare I need to go to a windows server to edit a plain text file). Usually you use a Administrative Snapin on your local computer and connect to a remote one. I'm interested to see how well 2k8 works without a shell; I would assume there'll be a Win2k8 server admin pack like there is for 2k3 now.

Just for fun go to the oracle site and take a look at their offerings. I am pretty sure you are going to find services that, take your kids to school, give you advice to score more women and other stuff. They have swallowed so many companies that their products don't make sense and at the very least, their integration is impossible.

Heh...sounds like MS has a leg up. All their Sql stuff integrates very nicely.

This year I visited crete for the first time! Because of a contract with the public sector. Just remember that the region you want to visit is called "Chania" and NOT "Irakleion". The first is for vacation, the latter is just a big city with no touristic value.

Hmm, I would think most Greeks have been to Crete... at least it seems odd that a Greek wouldn't have been there.. to me anyway. I think most Americans at least get to a neighboring state, even those in larger states. I haven't been too that many yet though; driven through seven, lived in three and stayed overnight in a few more. Only the east coast though.

Thanks for the tip, I'll keep that in mind if we ever get a trip together.

Hahahaha, no way!!! That's not what I see in TV!!

Ya, well, please don't judge us by our TV; some of us actually do have brains! In all seriousness, as a nation most of us (not me, I actually started eating right and going to the gym) will die of heart attacks, diabetes, or other lovely fat related diseases. Check out this map from cnn.

Its a shame the highest % simply stops at > 25%. I would like to see at least > 50% on that map.. maybe next year, because I'm sure some states fit that criteria.

Re:Double standards?

[whatevah]

I wouldn't script on a server anyway; I'd write it locally first, then deploy it.....

Yeah, but if you just want to start a server, in ssh you do it in 2 seconds. Plus I have so many scripts that automate stuff. that with out an SSH server its impossible. For example I run a script from my PC that it sends commands at 10+ PC's simultaneously so that they all get their software updates. I don't even have to type any logins/passwords because I have transfered the necessary crypto keys to each and every machine. In the same way I gather statistics and info from my networks. Otherwise I 'd have to login with VNC/FreeNX on every machine and do it manually.

Hmm, I would think most Greeks have been to Crete.

Of course most of us have!!! But most of the Greeks have a parent that comes from there. I don't. Plus is a long way from Athens(6-9 hours with the ferry). But now, I've been to all over Greece.

Ya, well, please don't judge us by our TV; some of us actually do have brains!

Yeah, don't worry most of us know that. Although sometimes it creeps me out when I see people chanting/preaching about Jesus Christ etc , in documentaries.

Oh, and probably I've seen all your movies? :)

C ya

Re:Double standards?

[plague3106]

Yeah, but if you just want to start a server, in ssh you do it in 2 seconds.

Like power a server on? Or start a daemon? In Windows you just open your regular Services control panel in the Admin tools, and use it to connect to the remote server.

Plus I have so many scripts that automate stuff. that with out an SSH server its impossible.

Can't really comment without knowing more.

For example I run a script from my PC that it sends commands at 10+ PC's simultaneously so that they all get their software updates. I don't even have to type any logins/passwords because I have transfered the necessary crypto keys to each and every machine. In the same way I gather statistics and info from my networks. Otherwise I 'd have to login with VNC/FreeNX on every machine and do it manually.

In Windows you'd use WSUS, which in 3.0 uses an MMC console as well. You set up groups of computers (say servers) and you can approve updates and force them to install by a certain time. Group policy is used to make the servers have automatic updates on and that they use your update server instead of MS'. Other software can be deployed / updated via group policy as well.

Of course most of us have!!! But most of the Greeks have a parent that comes from there. I don't. Plus is a long way from Athens(6-9 hours with the ferry). But now, I've been to all over Greece.

Ahh, I see. Makes perfect sense. I thought there was a bridge to Crete... or maybe that's something else I'm thinking of. Isn't there a very long (and very sleek) suspension bridge somewhere in Greece?

Yeah, don't worry most of us know that. Although sometimes it creeps me out when I see people chanting/preaching about Jesus Christ etc , in documentaries.

Believe me, I have the same worries too. Socially, things are really backwards here.

Oh, and probably I've seen all your movies? :)

Movies are a favorite pasttime of mine. Any good Greek movies that use English (or at least have subtitles)?

Re:Double standards?

[whatevah]

In Windows you'd use WSUS, which in 3.0 uses an MMC console as well....

Well although you covered the updating stuff(which was a classic example), I didn't understand if it is possible to automate arbitrary stuff(like the other example I gave you).

Ahh, I see. Makes perfect sense. I thought there was a bridge to Crete...

Hahaha, no no no! We are definitely not known for our big constructions! The biggest(and only suspension) bridge we have is the one which connects main Greece with Evia(BTW that's where I'm from). It's not longer than 700 meters(do the conversion).

Movies are a favorite pasttime of mine. Any good Greek movies that use English (or at least have subtitles)?

Well one very good movie is "Z"(http://www.imdb.com/title/tt0065234/) by Costas Gavras. It is very old though(1970?) and has to do with some important political events that happened back then. I don't know if you can find it in US. One excellent movie that you CAN find is "Le Couperet"(http://www.imdb.com/title/tt0422015/) made in 2005 by the same director. Costas Gavras now lives in France that's why it is in French(subtitled of course). 4 days ago I saw a big Greek -Spanish production about El Greco,a famous Greek painter(http://www.imdb.com/title/tt0905329/). It is in both English and Greek. Actually they switch between English and Greek in arbitrary intervals. For me it was awful. Others found it interesting. I suppose you know about Zorbas the Greek?(http://www.imdb.com/title/tt0057831/). Made in Greece and starring Anthony Quinn. You have definitely heard this movie's theme song, guaranteed.

Understandable.

[140Mandak262Jamuna]

It is kind of explainable, given that most MSFT managers grew up in the era where WYSIWYG was the greatest thing since the sliced bread. They have always believed in GUI and never liked CLI much. So the tradition continues, less emphasis on anything script oriented and CLI oriented. Their idea of great script is a vbscript with its own GUI. We might not like it, but that kind of explains part of MSFT's way of working/thinking.

Lacking support for ftp, ssh etc are some vague attempt to create "value" to the non portable skill set developed by the windows admins. If the sys admins develop these skills and could easily run either linux or windows, then the switching cost for corporations to switch from windows to linux will decrease. Since the maximum revenue MSFT can extract from its existing installed base is capped by what it would cost its customers to switch to an alternative system, this is a very rational business strategy to keep them following a straight and narrow road to Redmond. And let us not blame just MSFT for this attitude. It is the customers who should realize the value of reducing their switching costs and demand better support for ftp, ssh and other linux side expertise they have in house. If customers don't demand it, why would a profit centered corporation deliver it?

Re:Understandable.

[Yaruar]

Well, apart from the move with products like exchange 2007 to use the powershell exclusively for their administration, all the gui does is execute various powershell commands and even then there is about 20% of the administration which can only be done from the CLI. I've not played with the server tools, but the 2007 shell is pretty nifty and one of the best designed shell scripting environments i've seen, even non shell people seem to pick up the syntax pretty easily.
I have heard rumors that you can actually run server 2008 with no gui and just a shell on the server which would be very interesting...... I've not seen it yet myself.

Re:Understandable.

[RKThoadan]

What's really strange is that the MS PowerShell is actually pretty impressive. It's a lot like most *nix shells except that it passes objects around instead of strings. It feels vaguely similar to Interactive Ruby to me. There are actually tasks in Exchange 2007 that can only be done in the shell (not in the gui) and many tasks are easier in the shell. They've even mimicked most of your standard bash commands. It knows what ls, ps and man are (among others).

It appears to me that MS is quite committed to letting people run gui-less servers now, and their doing a pretty decent job of it so far. They're doing a lot better job of that than they are with Vista.

Re:Understandable.

[Bert64]

It does have the "core install" option, which claims to install without GUI...
What it really does is set your default shell to cmd.exe instead of explorer.exe, so you get a graphical command prompt window instead of the explorer start bar. The GUI is still running and can you can still run graphical programs, but you dont get the windowbar or the file manager.
Infact, with the core install these aren't installed by default.
You still get some of the irritating animations and graphical shit.

I want a pure text based login, which uses a full screen text-only console and doesn't waste resources having video drivers running, and ofcourse the option to run this default console over a serial port. After all, a server will spend 99% of its time with no screen/keyboard attached sitting in a room with the lights turned off.

Re:Understandable.

[LarryRiedel]

simple things like xargs are still missing

I think there is a lot of stuff in unix like xargs which is primarily about converting between character streams and lists which is not necessary with PowerShell because the shell and the "cmdlet"s can deal with lists directly without conversion, and the shell language has constructs for iterating and slicing them.

Larry

Re:Understandable.

[Almahtar]

And let us not blame just MSFT for this attitude. It is the customers who should realize the value of reducing their switching costs and demand better support for ftp, ssh and other linux side expertise they have in house. Most Pointy Haired Bosses don't even know what an SSH is, muchless why they would want it so they could use a Linux with it. They are not to blame. I think Microsoft is to blame for capitalizing on their ignorance intentionally.

Re:Understandable.

[Dahan]

While I'm no PowerShell expert, I did try to use it as my primary shell for a few weeks (I normally do as much as I can in CMD.EXE), and it seems to me that it's great for writing scripts, but not very good for interactive use. For example, say I want to do the equivalent of MSDOS dir /o-d (show the contents of the current directory sorted by descending modification date, or ls -lt in Unix parlance). To do that in PowerShell seems to require this incantation: ls|sort lastwritetime -des. Not exactly as easy to type as the DOS or Unix versions. Or dir /ad to show only the directories in the current dir: In PS, ls|? {$_.psiscontainer}. The issue seems to be that the commands are all very generic--ls is actually an alias for get-childitem, which returns the children of any container object, not just directories. It works for registry trees, Active Directory domains, and various other stuff too. While this is definitely good in many situations, sometimes it's nice to have the command know what it's working on and have options specific to the type of data it'll be returning.

Now if there's a more compact way of doing that stuff, I'd love to hear it. And no, setting up aliases doesn't count; that strikes me as a cheesy workaround... Having to come up with aliases in advance for these little tasks that I may want to do in the future is not my idea of a good interactive shell.

some sort of joke, that...?

[djupedal]

"Microsoft has used the time since the release of Windows Server 2003 very well."

2003, 2004, 2005, 2006, 2007, 2008...tick tick tick tick

In contrast to all that dicking around BEFORE 2003?

Server Core

[Major+Blud]

I think one thing that needs to remembered is that 2008 will also contain "Server Core", which is essentially Windows without a GUI. I haven't played with 2008 since the early candidates, but I'd bet good money that a lot of the performance issues and disk space usage can be minimized when running in Server Core mode.

Re:Server Core

[EvilMonkeySlayer]

I wonder how you're meant to then apply updates to the machine?

There are a few ways normally to get them:

* Windows/Microsoft Update
* Automatic updates direct from MS
* Automatic updates from a WSUS server
* Manually downloaded and installed (major hassle, especially for a fresh install)

Also, don't certain updates require GUI interaction from the user? (from my memory Sharepoint had a gui installer that you had to faff around a bit to install an update). Although a lot of updates you can install from the command line. I've not tested server 2008, it'll be interesting to see what solution MS have come up with for installing updates in some kind of managed fashion.

Re:Server Core

[HerculesMO]

Problem with that is (and speaking as a Windows sysadmin), you can't manage one of the most important things well within 2008 -- and that's IIS. It's not an easy task to manage and regulate an IIS site without the GUI. If they have MMC access available to it, so I can do it remotely though, it should be fine but I don't recall that as an option for IIS.

We will see though. I'm a big fan of Server 2003, and I think 2008 addresses some really good points.

Re:Server Core

[Major+Blud]

Some things to keep in mind about Server Core: The box can only be used as a Domain Controller, DNS Server, DHCP Server, and File Server. This would limit the amount of updates required; no updates for IE, IIS, Sharepoint, nada. Server management can be done through MMC on any client machine.

Re:Server Core

[QuantumRiff]

You forgot the biggest use for the Server Core: VM Server when the Virtual Server 2008 comes out. However, I have heard that the core sounds better than it really is, as you can't do basic things with it, like run powershell or WMI, since they require the .NET software, which won't install on Core..

Re:Server Core

[lazyforker]

To my mind this is the single biggest reason to even think about installing 2008. I work in a mixed Windows/*nix environment - and when I want to quickly check config or run a script I don't want to fire up Remote Desktop/PCAnyWhere/whatever to connect to a fileserver. I'm faster with a CLI. Furthermore - why do my fricking Windows AD Domain Controllers need a fatass GUI eating up resources? Unnecessary. GUI admin tools that run on an admin's Windows PC: that I can understand.

And yes, I do know about the Winternals/Sysinternals/Resource Kit tools and the new Vista scripting engine etc. sshd would be fricking awesomer.

Re:No SSH!?

[betterunixthanunix]

The most widely used operating system, TRON, does not have SSH out of the box...

Re:No SSH!?

[Psiren]

You are asking people to pay hundreds of dollars for your product, but out of the box it is crippled. Why is it crippled? I've never needed to ssh to a Windows server, nor has my colleague who has been administering Windows servers for 10+ years.

I just use the Remote Desktops app, which has all our servers listed. One click and a password and I have a console with a GUI, allowing me to do any administration tasks I need. Plus with the admin pack you can do a whole bunch of tasks straight from your workstation. Why would ssh make this process any easier?

No worries

[djupedal]

"Microsoft also gets low marks for failing to include SSH support in the operating system. The FTP client is being treated like an unloved stepchild, to the point where it is not even included in the Server Manager."

No problem - check back, say 2013...?

I know that Redmond is paying bonuses for every article and press release shotgunned out during the release of Leopard, but this is one of the most blatant snow-jobs in recent history.

"WS2008 really sucks and all, but it doesn't totally TOTALLY suck, you know, because, like, it could have been worse...much worse...mostly. And we're the experts, so that's a good thing!"

Re:No SSH!?

[plague3106]

Oh please. If you work remotely, you can use Remote Desktop. Its encrypted. Ssh isn't the end all be all of server products, and not having it hardly qualifies as "crippling" an OS.

whoops! Exchange 200SEVEN

[jollyreaper]

Goddamn year-as-version-number bullshittery.

Re:server w/out ssh? How much obtuse can you get?

[Yaruar]

although that said, i've been doing windows admin since before 2000 and I've never had need of ssh on a wondows server and i've not met another admin who has.

Not so slow

[Zebra_X]

Check out the section on file transfers. It's considerably faster than Win2k3.

Re:Not so slow

[EvilRyry]

That will only hold true under certain conditions. Namely, lots of smaller files. This increase in speed is mostly a result of a slightly improved protocol, not any magical internal updates. SMB2 allows for multiple requests to be given in a single request, which cuts back on chatting between transfers. So for transferring your movie collection for instance, the difference will likely be rather small.

Also of interest, Samba also has support for SMB2.

Re:Not so slow

[Zebra_X]

It is still an improvement over win2k3.

Re:Not so slow

[Shuntros]

It's still a pile of stinking poo compared to something half decent like Novell's NSS though. The day you can throw 80,000 student home directories on a single NTFS volume which gets thrashed all day, every day, and the performance is even HALF as good as the likes of NSS, I'll start bothering with Windoze.

No SSH? What a joke. Even Netware has that these days, as does everything else.

Option for no GUI? Well, that's progress I suppose.

The interoperability is still laughable I see. Square peg, round hole. Grown-up companies use all kinds of NOS products and they want them to play nice together. Everyone else bends over backwards to do this and still makes money, why is it so difficult?

Printable View - No ads

[rysar]

Printable view -- http://www.tomshardware.com/2007/10/25/windows_server_2008_reviewed/print.html No ads either :P

Re:Printable View - No ads

[LuckyStarr]

Copy and paste this URL. They've got an REFERRER check in place. Print pages redirect to the original article if they got linked to by an URL on a foreign domain.

Re:Printable View - No ads

[rysar]

Ah yes, you're right... Good to know for future reference.

MS *IS* Trying to slim down its OS!

[WebCowboy]

That's what happens when you try to use beefy hardware with a cheesy interface to a porky OS.

It looks like Microsoft has already put Windows on the Atkins diet!

By 2010 Windows will either suffer a heart attack, or it will be nice and svelte!

mmm beefy

[senway]

Windows Server Philly Cheesesteak Edition?

Welcome to X Windows.

[SanityInAnarchy]

I do have to admit that it would be silly of them to include SSH/SFTP by default, but this is what every other OS is able to do, at least for X apps -- ssh with X forwarding.

Not that there are that many GUI tools to make you want it -- and most of the GUI admin tools you'd care about are either a web interface or already provide their own client/server model, thus making it possible to admin them via the same native interface on your own Linux desktop.

Re:No SSH!?

[Emetophobe]

NIH Syndrome... Microsoft wants you to use Remote Desktop or Terminal Services.

Cool! A Minnie Driver/Anne Hathaway love scene.

[Impy+the+Impiuos+Imp]

> The FTP client is being treated like an unloved stepchild, to the point
> where it is not even included in the Server Manager.

Oh, so I guess people want MS to bundle up apps when it's convenient, but not when it serves their political interests to tear MS down loudly and publically.

We now return you to your regularly scheduled outrage sessions. [/sarcasm]

Let me same some time, here

[WheelDweller]

"This new version of Windows will make things simpler and safer."
"Industry shows acceptance of 2k8 slow to start..."
"Now get Fred's Antivirus: now for 2K8!"
"This'll do us until Longhorn is released."

The code changes, yeah...but don't expect the problems to go away.

And it's interesting how each release requires VASTLY more power, just to sit still, isn't it? And because of that, dual-core P4's will be on the market and give me SO MUCH CPU in Linux I won't know what to do with it all.

Built on Vista??

[myxiplx]

According to the article, server 2008 is built on Vista and includes product activation. o_0

Well that pretty much guarantees it's not coming on this network any time soon.

Re:Built on Vista??

[sheph]

See that's what I was thinking too. That's all I need. Update my video drivers, and then have to explain to my boss why the server that supports critical operations just went into reduced functionality mode until MS believes that it's a genuine server again. No thanks.

Re:Built on Vista??

[crabpeople]

oh underscore oh aside, how is that different from 2003? Ive had to activate every 2003 server, and Ive had them deactivate when changing raid controllers or motherboards. You either crack it or phone M$, same as always.

Re:Built on Vista??

[Vexorian]

how is that different from 2003?

Vista's activation ways?

Re:Built on Vista??

[myxiplx]

See, we don't have any 2k3 servers either :-). Couldn't see any benefits to it that we needed so we're currently running about a dozen windows 2000 servers. And if they seriously do de-activate when you change hardware we'll be taking a far more serious look at whether linux can do a better job for us when we do come to upgrade. If the worst happens and you end up in a disaster recovery situation the last thing you want is to have product activation pop up part way through.

We're already investigating a Sun Solaris box as a central filestore, purely because ZFS doesn't come with the rediculous limitations of Microsoft's Shadow Copy, and because of the reliability benefits of ZFS. You have to wonder what Microsoft are playing at when a windows admin is having to take a serious look at Unix and Samba because they can do a better and more reliable job of hosting your files on a windows network.

Re:Built on Vista??

[prshaw]

I would probably worry more about explaining to your boss why you were upgrading the video drivers on a server that supports critical operations. That's not something I normally do on a critical server. I play the games on another machine.

Re:Built on Vista??

[dbIII]

Don't go confusing the bad example with the underlying message. As I see it the message is that the system has a completely new way to break. Upgrading a driver to a component even if you do not change the component can break this, as currently shown by video drivers but it could be something else next time. The current product activation in my opinion has no place in a server OS where you really do want to be able to do swift bare metal recovery.

Actually I really dislike the entire licencing model where the computer owns the licence and not the individual - I prefer what other software companies do where you have a certain number of licences and they do not care what you run it on so long as you don't run more than you are licenced for. Even the evil dongle is better than product activation based on several system components.

Re:Built on Vista??

[El_Oscuro]

I had an interesting experience today at work. Once of my coworkers asked about license management with Oracle. I told him that one could obtain the full unrestricted enterprise edition of the database by simply downloading it from their website. After constant dealing with WGA, activation, entering 42 digit serial numbers in Business Objects that didn't work, and a wide range of other licensing bullshit, he was absolutely shocked and didn't believe me. So I had him download the latest version of Oracle (11g) from the website.

Even though Oracle has about as much licensing hassle as your average Linux distro, it most definitely is not free. If you run it in any kind of production environment it every expensive, but they don't make you go through all of the licensing crap to enforce it. They ACTUALLY trust their customers somewhat. Of course if you want support or security patches, you have to have a license and a CSI number to access to support site. Essentially, Oracle's licensing model is similar to Red Hat's.

Why Microsoft can't use this licensing model is beyond me. Their server products have mission critical applications like Oracle databases so it should work fine. As far as home users go, most PCs come with Windows preinstalled, so the "custemers" with the licensing agreements would be the PC manufacturers.

I wish I had mod points, so I could lose your flamebait mod.

Re:Built on Vista??

[El_Oscuro]

On our old IBM mainframe mainframe, you could create a standalone restore tape which you could IPL (boot) from. Pretty old technology in 1987, but it was built directly into the O/S without requiring 3rd party applications. But now we purchase crappy, expensive third party applications with fancy names like Bare Metal Restore (warning PDF). Everything is easier now, unless you actually need to restore anything. But "Bare Metal Restore" sounds so much cooler than "Standalone Restore". And it even has a GUI!

Re:server w/out ssh? How much obtuse can you get?

[Bert64]

Your missing out..
On unix machines, SSH is absolutely invaluable...
RCP/Rlogin could do the same job, but it's horrendously insecure.

I quite often pipe data over ssh connections, or remotely mount systems using sshfs.. I have a lot of logfiles tailed over ssh, I script things up to log on via ssh, i even stream video/audio off my servers using ssh and play them on my workstations...

Webservers

[cheros]

The OS will also be used to "power" web servers (I use the word with some reservation). SSH would allow users to upload sites with a degree of control instead of cleartext FTP which also discloses passwords.

So maybe you don't use it as a sysadmin, but for external end users I think using SMB is a little bit too much of a risk, and https PUTs won't allow you to upload a whole site or scripts.

Re:Webservers

[Yaruar]

well, i wouldn't run a traditional webserver purely using IIS, in the same way i've always run third party sftp setups as well.

Re:Webservers

[Shados]

For a web server you fully control, on enterprise class web applications, remote desktop allows you to transfer files directly, or you can use a shared folder over VPN, and you probably will be using a Windows Installer to deploy the web app and upgrade cleanly (I'm not talking silly dinky little personal web sites here). There's also direct publishing to IIS virtual directories, which can be done over secured protocols too.

For more mainstream web server usages, there's a number of options, but if you want the good old sftp, there's tons of free ones out there that you can set on windows in seconds.

You know, people used to the Unix world often make fun of Windows admins being 1 trick ponies or some such, but they often don't seem to know how much there is outside their comfy bubble -either- it seems, reading various posts under this article.

Re:Webservers

[cheros]

Hokayy. Let me play devil's advocate here..

You know, people used to the Unix world often make fun of Windows admins being 1 trick ponies or some such, but they often don't seem to know how much there is outside their comfy bubble -either- it seems, reading various posts under this article.

Maybe it's because:

(a) I know a lot of people who wouldn't consider a Windows box viable for being exposed to the Internet. As a matter of fact, I know quite a few *very* big companies that have that written into their IT policies, and I think there's general a serious lack of confidence in Microsoft's ability to put something safe together. The recent shenanigans with Auto Update provide evidence that that lack of confidence is still not misplaced (not to mention Vista in general).

(b) they don't *need* to use anything else :-)

(c) they appreciate using methods that are based on open, published standards that are platform independent. Their choice of running Windows should not impose that requirement on someone else. VPNs are too cumbersome, and to run a terminal farm just for file delivery is IMHO a little bit OTT, especially compared to the established simplicity of SFTP.

I'm happy to admit I prefer Unix on a server. In terms of setup I think both take as much time (Windows, when done right, is also not a 5 min job), and I can't see why I should sponsor Microsoft if I can invest that money in other, more relevant areas. I have to worry less (no, 'not at all' - less) about security, and I can give developers a copy of the live platform without worries about license costs etc, on a laptop. That's all a lot more work on Windows.

Also, when the going gets tough I would really like a test comparing out-of-memory performance between the platforms. Unix hitting swap feels more responsive, but as I have a preference for Unix I suspect bias in myself and rather see an unrigged, independent comparison. I think MS trying to avoid comparisons in their EULA gives the impression they have something to worry about which is IMHO silly. I'm not even sure that clause is legal in most countries, it's probably lawyers trying it on. Anyway, I digress.

I don't think it's a debate about sysadmins per se - more about what comes by default. You're absolutely right, there are tons of SFTP apps to be had for Windows, even free. The point made is that it would have been little effort to include one.

Re:server w/out ssh? How much obtuse can you get?

[Yaruar]

quite the opposite actually, can you actually point out day to day situations where ssh would be useful when performing admin on a wondows server? i'm more than happy to use one on linux or solaris, but haven't encountered a need for it ever on a wondows server. I'm sure you can give examples where it would make my life more fulfilling.

Re:Windows Server + SSH?

[man_of_mr_e]

I think the issue is more related to resources and security. Microsoft likely doesn't want to develop their own SSH code base, and they don't want to rely on a third party one because the third party doesn't confrom to their new security processes. While OpenSSH is good, it's had a number of security flaws in recent years as well.

When it boils down to it, SSH isn't needed to do Windows administration, so why would MS want to add to their security liability by including it?

Re:server w/out ssh? How much obtuse can you get?

[Yaruar]

but that is on unix machines, the nature of admining windows servers at the moment means that most of this is unnecessary. Although that will change a great deal with powershell with more power being moved to the cli from guis. Which i personally think is a step in the right direction and it's a shame FTA didn't focus on this more than the headline fluffery.

Re:No SSH!?

[Blakey+Rat]

The Microsoft philosophy is that you'd use Remote Desktop/Terminal Services to log in to do any administration task you need. I don't see it as inferior to SSH, just a different way of doing things. (And it's definitely a hell of a lot faster than the Unix equivalent SSH+VNC.)

Re:No SSH!?

[Bert64]

Remote desktop is a flawed protocol...
Although it's encrypted, it does nothing to authenticate that the host your connected to is the one it's supposed to be, by contrast SSL uses certificates and SSH uses host keys.
It also discloses information about the OS running and all the usable authentication domains *BEFORE* you have authenticated! It's been years since unix machines displayed the OS version in their remote banners (telnet did, SSH never has by default).

Also remote desktop takes over your local workspace, you end up with multiple isolated gui instances running instead of your single local gui with multiple administrative tools running inside it.

You also can't pipe data over a remote desktop session the same way you can with ssh, eg:
ssh user@host tail -f /var/log/messages | grep ALERT
cat file | ssh user@host processingcommand >newfile (takes file, feeds it to stdin of processingcommand on host and saves the output to the local file newfile, example on next line)
cat file.wav | ssh user@fastserver mp3encode >file.mp3

Re:No SSH!?

[Bert64]

It's crippled because every other server os or networking device will have SSH by default nowadays...
Unless your network consists SOLELY of windows boxes (ie you dont have any unix servers, switches, routers or misc networking kit) you'l need SSH sooner or later. Sure for most of the routers you *can* use telnet but that's hardly appropriate for this modern age is it.

Re:No SSH!?

[Ukyo]

AIX. It comes, buried somewhere the installation CD's. But it is not installed by default; unless you build a NIM image.
Oh? You asked for a 'modern' operating system. Sorry about that. Carry on.

Re:No SSH!?

[plague3106]

Although it's encrypted, it does nothing to authenticate that the host your connected to is the one it's supposed to be, by contrast SSL uses certificates and SSH uses host keys.

I guess you haven't use the newest RDC then...

It also discloses information about the OS running and all the usable authentication domains *BEFORE* you have authenticated! It's been years since unix machines displayed the OS version in their remote banners (telnet did, SSH never has by default).

Proof?

Also remote desktop takes over your local workspace, you end up with multiple isolated gui instances running instead of your single local gui with multiple administrative tools running inside it.

That's a personal preference. Also, outside of remote desktop (for more trusted locates) you can install the Admin Pak and use the MMC snap-ins to configure servers just if you were configuring it locally.

You also can't pipe data over a remote desktop session the same way you can with ssh, eg:

Um, who cares? Like I'm gonna use a server to encode mp3s.. Can you present a case where you would absolutely HAVE to be able to pipe the data over RDC like you could in SSH?

Re:Windows Server + SSH?

[naetuir]

While it wouldn't necessary be "required" for Windows administration, it would easy bandwidth requirements at least somewhat. That aside, I think the biggest reason that MS should want it is due to standardization (which Microsoft is not exactly known for adhering to).

Another solid reason why they may believe it is not necessary is due, in part, to the lack of fully trained sysadmins that work on their products. Many System Admins that work in a Windows environment expect that they can administer everything from the GUI... when it is usually faster to do most things from a command prompt (assuming you already know what you are doing / what you are looking for), and more efficient for reuse of procedures (wsh scripting, et al).

Don't get me wrong, I just think that Windows has less reason not to do it than to do it. In this case, I believe it comes down to a matter of political pushback.

Developers: "It would make our fully trained and certified system administrators life easier, Steve!"
Steve: "Yes, but we don't want them out of our GUI. Who knows! Next, they might want to try something with an even more powerful command line! We can't have that. Next!"

How does it compare to Leopard server?

[kanweg]

How does it compare to Mac OS X 10.5 server? At least a feature-wise comparison should be possible. Hope they follow up on the article.

Bert

Wait... Never need secure access?!

[mpapet]

They want to differentiate themselves from Unix, in that you should never need such things

This is complete Orwellian nonsense.

Windows Remote Desktop is crippleware. Beyond the second Windows remote login, it costs money to use remote desktop. How much are those remote desktop licenses?

In Linux I've got all the remote desktops I want on Linux with no license restrictions on those remote desktops either.

If your average windows admin actually audited their logs, they would discover the constant remote desktop dictionary attacks and no method by which to manage them within the remote desktop server.

Re:Wait... Never need secure access?!

[darthflo]

Beyond the second Windows remote login, it costs money to use remote desktop.

That's because more than two sessions make the server count as a terminal server. It's that simple. If you'd pay per user in whatever your favourite linux distribution is, you'd pay more for more terminal server slots, too.

Re:Wait... Never need secure access?!

[mpapet]

That's because more than two sessions make the server count as a terminal server. It's that simple.

I get all of the remote desktops connecting in any number of ways in Linux for free. Period.

Will you please explain to me why Microsoft's crippleware/license-restriction-bingo game doesn't frustrate you. Please, explain it to me because I don't get it. I don't get the long conversations about license restrictions and all of the time/money/effort wasted designing around them. Where is the speed and efficiency in that?

Re:Wait... Never need secure access?!

[darthflo]

It doesn't frustrate me because Windows clearly is marketed as a closed system. It's also clearly marketed as being billed per user in any server-style environment. Oracle makes you pay per CPU core, McDonalds makes you pay per hamburger, Microsoft makes you pay per user. I appreciate free software, but I also understand that people and businesses need to make money by selling whatever product they create.

Re:server w/out ssh? How much obtuse can you get?

[andreyw]

You just said it yourself. on Unix and Unix-Like machines, SSH _IS_ invaluable. On Windows, this is not how remote administration is done period. You either use remote management tools locally to talk to the server remotely, or you use RDP. And its perfectly fine.

You really can't compare RDP to anything in Linux these days. It is a lot more responsive than X over the majority of network conditions, and MILES more usable than VNC.

That doesn't mean SSH would not be a nice thing to have. But it does mean that this is not a deal-breaker. And it isn't as if you have no choice - use copSSH or something similar. Or use WinRS.

Re:No SSH!?

[Kyojin]

Unless of course you require two connections with the same username. Not possible with remote desktop.

Server Core is Crippleware

[mpapet]

Stop the insane moderation! You would be the worst kind of system administrator to deploy Server Core. Once you have one running, there's NO WAY OUT!

Known issues for deploying a Server Core installation

              There is no way to upgrade from a previous version of the Windows Server operating system to a Server Core installation. Only a clean installation is supported.

              There is no way to upgrade from a full installation of Windows Server "Longhorn" to a Server Core installation. Only a clean installation is supported.

              There is no way to upgrade from a Server Core installation to a full installation of Windows Server "Longhorn". If you need the Windows® user interface or a server role that is not supported in a Server Core installation, you will need to install a full installation of Windows Server "Longhorn".

Please, post the EULA to server core. I'm sure there are plenty of other handcuffs in there too.

Re:Server Core is Crippleware

[imemyself]

What kind of Administrator would actually do upgrades? Upgrades *always* cause far more issues than they would solve, both on Windows and Linux. Clean installs are by far the best choice. Especially on a server where you want to make sure that there isn't some small problem somewhere in the install that will bite you in the ass later.

Re:server w/out ssh? How much obtuse can you get?

[init100]

On unix machines, SSH is absolutely invaluable... RCP/Rlogin could do the same job, but it's horrendously insecure.

An alternative, if you use Kerberos for authentication, is to use kerberized telnet. It does some nifty things that SSH don't, such as server authentication without you manually accepting a server key by checking a fingerprint. Of course, SSH has some significant advantages at the protocol level, such as using a single port for everything (makes it easier to use through firewalls), so a kerberized SSH would be best. Fortunately, people are working with this for OpenSSH, although the OpenSSH maintainers have so far (AFAIK) refused to include it in the mainline distribution.

win2000

[ianare]

But is it faster than win2000? In my experience this version is the fastest for file transfers.

I am surprised. Seriously.

[Weaselmancer]

I know we love a good MS bash here, but c'mon - a Core 2 Duo E6700. With two gigs of ram.

And it has a sluggish interface.

There really is no honestly viable excuse.

Here's a mips count on the T5600. It's claiming 22305 Mips. (The T5600 is a good comparison point according to pricewatch, they're within maybe twenty bucks of each other - couldn't find a mips report on the E7600. Close enough for my point though. And yes, I know the Mips count from Dhrystone isn't exact either. But it's good enough for a ballpark discussion.)

Ok, so that's 22,305,000,000 instructions per second. Let's say we have a 1024x768 screen. That's 786432 pixels. Let's say we're refreshing 60 times per second. That's a total of 47185920 pixels to give a good user experience. And that's if you're drawing them with the cpu, manually. And let's say it takes two commands to move a pixel. Fetch from memory, and put to memory. That means you'll need 94371840 instructions to update the screen per second to do it. Please note that this is a worst case scenario - you're drawing everything by hand. Your graphics card isn't a GeForce 8800, it's a VGA card from the early 80's.

So looking at the instruction count, that's only 47185920/22305000000*100% = .42% of the total cpu's processing ability.

What the fuck could possibly be taking so much attention from the processor that it can't spare a measly half of a percent to refresh the damn screen?

Honestly, the cpu power we have these days is nothing short of staggering. We shouldn't have these kinds of problems at all, ever.

Re:To top it all of

[imemyself]

First of all, SSH isn't included in any other version of Windows, so why would you think it needs to be specifically mentioned on Wikipedia? In other news Windows Server 2008 also does not ship with support for ext3, or X.org.

And secondly, why do people actually care so much? Even if there was SSH access to it, its not as if it would magically become some sort of a Linux box. All of the commands would be the same. And you can still access server core through remote desktop to get to the command line (it just takes you to the command line instead of starting non-existent Explorer). And if you want to use SSH so much, there are plenty of third party SSH servers that will run on Windows.

Re:To top it all of

[poetmatt]

I don't know that much about SSH, so I was under the impression that you can't really access anything without a direct client in SSH. Terminal equivalent would not be restrictive, so that would work. But seeing as how SSH is important, of course you should include it in Wiki. Just have a part of "optional components not included by default".

Wikipedia is ideally not meant to be biased, it is meant to document things, such as what is and isn't supported barebones on the OS, otherwise it is being abused for marketing instead of as an encyclopedia as intended. I am not saying that this is the case now, but if only "positive things" were included for a wiki article, then it heads more towards the "cia editing their own entries to remove bad things" type stuff.

Re:Windows Server + SSH?

[man_of_mr_e]

Your argument is silly, considering that PowerShell is probably the most advanced and powerful shell for any platform today. So your "but they might want a powerful command line" argument really doesn't work.

Microsoft has secure means, like the article mentions. Both RDP and Secure Shell.

Re:No SSH!?

[not+already+in+use]

Maybe not so relevant now, however gaining relevance quickly: Try running Windows remote desktop on a wireless phone. Sure, remote desktop may be convenient if you're on a good connection and more comfortable administering with the UI, but SSH is much more accessible.

Re:No SSH!?

[Bert64]

What do you mean by the newest RDC? I have used the one shipping with windows 2003, it behaves as i describe and every deployment where i've seen it being used. If the version in 2008 behaves more securely you can't really consider that until it comes out of beta.

Proof? Open up a remote desktop client and connect to a server, it displays a windows login prompt that gives away the OS version and if the machine is part of a domain, gives you a list of accessible domains or the name of the local system.

A few years ago i often used servers to encode mp3, because they were much faster... Nowadays you could use it for video, or any other situation where you have a dataset you need to upload and do a lot of processing on. I can have a 4 socket quad core server running away nicely in a server room, i wouldn't want such a big noisy machine on my desk.
Any program that produces textual output could be executed on the server and piped over ssh, for the results to be parsed locally, or on to another server for instance.

I can also download files with SSH, and if the file isn't already compressed i will typically make the server compress the file on the fly (eg bzip2 -9), pipe over ssh and then have my client decompress locally, works great over slow links.
I can also pipe files over and decompress/unarchive them on the fly, instead of downloading and then decompressing (wasting local storage and taking longer as the disk heads thrash back and forth).
I can do audio conferencing over SSH without having to install extra apps (between workstations obviously) with cat /dev/audio etc
I can do disk copies by piping contents of /dev/sda over ssh, i can save to an image file (optionally compressing on the fly) and restore in the same way - every livecd has ssh
I can pipe video files off my server and direct into a video player on my laptop (my laptop has very little spare hd space)
I can have ssh login to servers automatically and tar up directories, and pipe the output to a backup device. I can have a central server retrieve backups from any number of other servers and store them. I dont need to backup the whole machine, i can selectively do partitions or directories without needing any third party apps.

Sure most of this could be done using third party apps, but you wouldn't have the flexibility, and you'd be running lots of extra services increasing the attack surface of your machine, and if you had a sudden ad-hoc requirement you'd waste a lot of time installing a server/client, and it wouldn't be much use to access from arbitrary machines/livecds (all of which have ssh except windows)

The beauty of SSH is that it offers you the flexibility, once you get used to it you'll find that you use it regularly for all kinds of things, and if you use something less flexible you'll often get frustrated. Conversely, if you're not used to the flexibility offered by SSH you won't miss it.
My grandfather drove cars without air conditioning for the past 50+ years and was perfectly happy. His latest car had aircon, and now that he's used to having it he would never consider buying another car without it.

The mp3 encoding was just an example btw.

run through....

[arclyte]

Well, hopefully it's sufficiently different from Vista or we'll all feel a bit run through after having to use it.

Re:Shouldn't that be Windows Server 200X ?

[Shados]

Actually, it may be launched in 2007 even. SQL Server 2008 and Visual Studio 2008 are "officially" launched in 2008, but will be RTM (and will be able to be purchased through regular means) at the end of 2007, and it was hinted Server 2008 may do the same.

But my mum told me to play nice...

[WebCowboy]

...becoause everyone is different and special in their own way!

Historically, Windows hasn't been command line oriented anyway, and remote access is done with Remote Desktop.

Well, historically the rest of the server OS universe HAS bee command-line-oriented and script-heavy, and remote access has been through RSH, Telnet and then SSH when encryption and strong authentication were needed. Nonetheless, int the Linux/BSD/UN*X world there has been a good amount of effort to accommodate the "Windows way". We have VNC, tunneling xwindows over SSH, and yes, there are even clients for Citric and Remote Desktop freely available (and sometimes included as part of an OS distribution).

Things aren't really character stream oriented in Windows, and for security you are supposed to use IPSec.

But Microsoft? Nooooo. Microsoft cannot tolerate differences. It insists we all play the game by their rules and if we don't, they take their marbles and go home. MS doesn't want mixed platform to be easy--they want it to be possible but annoying. The hope is that they can leverage their total desktop dominance to infiltrate the pointy-haired-boss-managed server market enough to hit critical mass, where managers get annoyed at having to maintain two different sets of administration tools, procedures, training resources, etc.

There is no technical reason whatsoever for Microsoft choosing one approach whilst barely acknowledging established practices. It happens quite often where someone bellyaches about "I can't do x in Windows without the GUI" or some such thing and quickly gets a reply from a seasoned Windows admin to just open up a command prompt and type some-such arcane command which is undocumented, or buried deep within the bowels of the MSDN knowledgebase beast. Obviously Windows IS capable, but MS consciously chooses to neglect such practices. SSH is part of the same problem--they could AT LEAST put in a proper SSH-supporting client fer cryin' out loud! A server would be nice too--not everyone wants to dedicate the bandwith for remote desktop connections. There are servers or other machines that require remote admin out in very remote locations sometimes, accessible only by low-speed cellular modems or packet radio. Remote GUIs at 9600 baud tend to be quite impractical compared to ssh, sftp and such. GUIs make a very poor interface for large-scale admin of, say large server farms and clusters.

Microsoft's model might be a "better UNIX than UNIX" within some narrow scope, but Microsoft continues to suffer from severe tunnel vision. It takes them a long time to bring things into focus that aren't right in front of them. Microsoft could've put a more concerted effort into WinFS and Monad and componentised Windows and interoperability tools but it didn't. It had instead to make 3 major releases of .NET and make a sparkly, glassy 3-D GUI and elabourate DRM technology. Meanwhile, the REAL promising technology remain mired in the research department or stumble out barely half-baked.

I'd send MS to the corner for its lousy behaviour.

Re:But my mum told me to play nice...

[IgnoramusMaximus]

It happens quite often where someone bellyaches about "I can't do x in Windows without the GUI" or some such thing and quickly gets a reply from a seasoned Windows admin to just open up a command prompt and type some-such arcane command which is undocumented, or buried deep within the bowels of the MSDN knowledgebase beast.

This is the part of my life as a reluctant Windows admin which drives me up the wall. Windows fanboy monkeys (yes, they deserve to be called that) believe that Windows administration is some sort of game where one collects obscure secret codes, arcane magical marbles and byzantine "Swords of Brain-dead Cutting" from hidden caches in beetween the lines of some half-assed MSDN article by some MS insider or to be passed word-of-mouth when social networking with their buddies, all of this of course undocumented, because otherwise they wound't be, well, arcane, obscure and secret - would they? Naturally, this is the very anathema of proper operating system design where documentation of all commands (or source code if that is unavailable or ambiguous) is always available on demand to the admin. And this inane attitude of course only entrenches in my mind my personal experience of Windows being an unmanageable, unconrollable, arcane pile of vile secret shit loyal only to its MS master which is bound to turn around and bite you on the ass sooner or later.

Of course many admins, faced with this nonsense, opt for the "commerce" way and buy whole bunch of "add-ons" and "tools" for small fortunes to do but the simplest tasks which are made near impossible without either those tools, spending one's life parsing the MSDN Holy Scriptures line-by line or personally knowing some idiots who spend their lives doing just that.

Its maddening.

Re:But my mum told me to play nice...

[Thundersnatch]

You're joking, right? The documentation for a vast majority of open source software is so nonexistent or so out of date as to be laughable. Sure, the big slatwart projects have some reasonable documentation, but even then, you can't tell me widely used stuff like Apache Tomcat, Sendmail, ntpd or even X configuration is intiutive or well-documented. You usually end up trolling through newsgroup posts or a half-dozen pporly organized Wikis to try to find your answer in the open source world.

The issue in the open source world is that every single piece of software has its own configuration file format and command line syntax for the most part. They are all quite different, and documentation in open source projects typically comes last (PostegreSQL is a major exception). It's quite comparable to editing the Windows registry by hand or by command line to do all configuration. At least in the Windows world, you usually get a graphical representation of the configuration using some GUI tool, and that helps you make some sense of things.

We use a large mix of both open source and Microsoft software on about 30 servers in my shop. While speed, functionality, and reliability are the strong points of open source, in my experience documentation and consistency are certainly weak points. You have far more obscure, arcane, and poorly documented stuff to deal with in the open source world.

Re:But my mum told me to play nice...

[IgnoramusMaximus]

You're joking, right? The documentation for a vast majority of open source software is so nonexistent or so out of date as to be laughable.

All of those programs have a natural fall-back mechanism, that is their own source. Every competent Linux/BSD admin is expected to be fluent in several computer languages, starting with the C language.

Sure, the big slatwart projects have some reasonable documentation, but even then, you can't tell me widely used stuff like Apache Tomcat, Sendmail, ntpd or even X configuration is intiutive or well-documented. You usually end up trolling through newsgroup posts or a half-dozen pporly organized Wikis to try to find your answer in the open source world.

See above. Speaking of Tomcat for example, I am not a great fan of Java, but Java was designed to be as self-documenting as possible, and you do have Tomcat's source.

The issue in the open source world is that every single piece of software has its own configuration file format

Vast majority of which are profusely commented, come with examples and have man pages.

and command line syntax for the most part.

And which commands come with man/info pages and respond to --help requests unless you are using some god-awful home brewed distro you yourself concocted.

They are all quite different, and documentation in open source projects typically comes last (PostegreSQL is a major exception). It's quite comparable to editing the Windows registry by hand or by command line to do all configuration. At least in the Windows world, you usually get a graphical representation of the configuration using some GUI tool, and that helps you make some sense of things.

I find all of these assertions highly suspect based on my experience. Sure some bleeding edge software is notorious for being poorly documented, but as I already explained, all of it comes with a natural, built-in fallback mechanism.

We use a large mix of both open source and Microsoft software on about 30 servers in my shop. While speed, functionality, and reliability are the strong points of open source, in my experience documentation and consistency are certainly weak points. You have far more obscure, arcane, and poorly documented stuff to deal with in the open source world.

I suspect then you are not really qualified to be using the open source stuff as you are apparently unable to do what every competent admin is supposed to.

Re:But my mum told me to play nice...

[WebCowboy]

You're joking, right?

I Don't think he is. Windows is exhaustively documented, but not WELL documented in the slightest. There is a difference between the two. Much of what is in MSDN is useless, unclear and misleading...and it is so poorly organised it takes far longer to find what you need than it does to actually use what you've found.

Sure, the big slatwart projects have some reasonable documentation, but even then, you can't tell me widely used stuff like Apache Tomcat, Sendmail, ntpd or even X configuration is intiutive or well-documented.

I find, in general, that nearly all Linux distributions contain much superior documentation than Windows does, especially in documenting command line tools and config files it is completely and totally superior. Windows has no equivalent to "man pages" to speak of. I can tell you that ALL of Apache's projects are thoroughly documented AND well organised (and well indexed by Google--the on-line docs at apache.org are highly ranked). Of all the databases I've used, PostgreSQL seems to be the best documented, closed or open source (even though MSSQL Server 2005 has pretty good documentation on TRANSACT-SQL and how to use SOME of its GUI tools, documentation on its command-line stuff is hidden as if Microsoft is ashamed it exists--or, as the parent poster suggests, perhaps it is an "easter egg" to reward "elite admins"). Sendmail? Yeah, happens to be the among the most difficult mail servers out there to configure but it is pretty well documented. I prefer to use Postfix, and have also found Citadel to be both well documented AND intriguingly easy to set up as a very capable email server. ntpd? Why the heck to you NEED a lot of docs for ntpd? It's about as hard to use as a Showtime Rotisserie Grill(r)(tm). Even if it is less-than-intuitive it is nearly all better-documented than Windows stuff.

You usually end up trolling through newsgroup posts or a half-dozen pporly organized Wikis to try to find your answer in the open source world.

See, THIS is the point. You can type something into google and you find dozens to thousands of postings on the subject, and generally the top-ranked results aren't part of a "poorly-organised Wiki" either. Google for help with MS stuff and you get 2 things: Semi-relevant, barely useful MSDN articles, and search-engine-spam pages loaded with links to those same articles. It is maddening! Besides, I usially dont' have to resort to Google very much with open source stuff as the typical popular open source application is well-documented enough in the man-pages or at the project's website.

It's quite comparable to editing the Windows registry by hand or by command line to do all configuration. At least in the Windows world, you usually get a graphical representation of the configuration using some GUI tool, and that helps you make some sense of things.

You are missing the whole point! The "edit the registry"/command line/config file stuff is EXACTLY what is poorly documented in Windows stuff! And sorry to day, but quite often the GUI representation does more to confuse the situation than clarify, especially when it is a dialogue with 20 tabs or a gigantic regedit-like tree. Oh yeah...that brings me to the registry...what a pile of useless crap THAT is! One big monolithic repository stored in a small handful of binary files hidden in the bowels of a system folder somewhere, with management tools that are almost completely undocumented in the help supplied with the OS, where you have to comb the knowledgebeast to find answers, and if you change the wrong setting there is no undo, and if it's really wrong you cannot reboot. I can't believe you'd mention the registry as a defence for Windows, because all too often you HAVE to edit the registry because some fast-n-friendly GUI app has hosed it. Hundreds of text-based config files in the /etc directory in dozens of formats is still not as bad as the big registry pig.

While speed, funct

Re:But my mum told me to play nice...

[CaptKilljoy]

>Well, historically the rest of the server OS universe HAS bee command-line-oriented and script-heavy

The '60s called, they want their server administration paradigm back.

There are pluses and minuses to both GUI and CLI tools depending on the task. Inisisting on one or the other is the sign of an inflexible fossil.

Re:But my mum told me to play nice...

[rtechie]

It happens quite often where someone bellyaches about "I can't do x in Windows without the GUI" or some such thing and quickly gets a reply from a seasoned Windows admin to just open up a command prompt and type some-such arcane command which is undocumented, or buried deep within the bowels of the MSDN knowledgebase beast. Are you going to seriously argue that Linux is generally better documented than Windows? Are you high? Linux is full of obscure commands with even more obscure switches and options. Many systems have missing man pages, etc.

GUIs make a very poor interface for large-scale admin of, say large server farms and clusters. That's an opinion, not a fact. The large number of companies that make graphical cluster management tools tends to argue against this.

Microsoft could've put a more concerted effort into WinFS and Monad and componentised Windows and interoperability tools but it didn't. Um, they did. Windows 2008 Server *IS* highly componentized, the review mentioned this numerous times, and a LOT of effort was put into PowerShell to allow you do do everything from the command line. There is even a "command-line only" mode called "server Core" now. Did you even read the article?

Re:But my mum told me to play nice...

[jhol13]

No offense but there are abundant amount of F/OSS which has half assed man page, if even that. Actually every single GNU tool has half assed man page (FSF insist on the brain dead "info").

Lets take Fedora Core 6 as an example. "ps -eo comm | sort -u | wc" gives 130 processes running. How many of them you'd expect to have a manual page? How many of them really does?

Only slightly over one third has! (49 has, 81 does not).

Please do not claim *nixes are in any shape better than Windows in this sense (the need of arcane knowledge).

Re:But my mum told me to play nice...

[dave87656]

Regarding Documentation: We use Linux (currently SuSE and Ubuntu, though we are moving our ~50 Linux boxes to Ubuntu). There is alot of documentation for Linux and you can get umteen well-written bibles on any particular version. But, if you want consistent and well written documentation, FreeBSD is one of the best I've seen. It probably helps that there are usually multiple ways to accomplish some task in Linux but only one way in FreeBSD, which makes the documentation task a little easier. Otherwise, for the Windows folks out there. Once I setup a Linux box on our network, that's it. I rarely have to do anything else. Our server and backup server have been running without change for 612 days! I spend all of my time actually writing code. On the other hand, we have a few Windows boxes (die-hard Windows users who believe you can't write a letter in Linux). We have to have a separate person who runs around fixing Windows problems. TCO is a Joke under Windows. We spend so much more time administering Windows that Linux even though we have ten-times more Linux boxes. Oh, and wait until we have to upgrade the Windows boxes to Vista. Oh the humanity.

Re:But my mum told me to play nice...

[jhol13]

All of those programs have a natural fall-back mechanism, that is their own source. Now I am certain that either you are joking or have never ever administered a single server.

The last thing to do when shit hits the fan is to start reading source code. I'd rather go to shop and buy AIX, Windows and Mac OS combined.

Re:But my mum told me to play nice...

[IgnoramusMaximus]

No offense but there are abundant amount of F/OSS which has half assed man page, if even that. Actually every single GNU tool has half assed man page (FSF insist on the brain dead "info").

Info pages may be annoying but they do contain the information required.

Lets take Fedora Core 6 as an example. "ps -eo comm | sort -u | wc" gives 130 processes running. How many of them you'd expect to have a manual page? How many of them really does? Only slightly over one third has! (49 has, 81 does not).

You gotta be kidding. 130 processes?! 2/3 of them are bound to be components of all the GUI crap you've loaded, none of which is expected to have any documentation whatsoever, given that they are internal components of some mega-bloated desktop environment. Unload the Gnome/KDE and then check the process count against man pages.

If you are really interested in manipulating these Gnome components and plugins and what not from a command line, you gotta check the Gnome developer documentation. These things are not Linux applications designated to be used from a command line, and you know it.

Please do not claim *nixes are in any shape better than Windows in this sense (the need of arcane knowledge).

I grant you this: as soon as you try to slap a GUI "environment" designed to have everything and two kitchen sinks included with in it, the amount of knowledge required to maintain this nonsense increases dramatically, in reverse proportion to documentation available. However, if you insist on doing so, in the worst case scenario you still have the source.

I personally do not use Gnome nor KDE, for these very reasons. Do note that these are optional components, design of which is not consistent with the overall Unix/Linux phillosophy and much closer to that of Windows. Hence your complaints.

Re:But my mum told me to play nice...

[IgnoramusMaximus]

The last thing to do when shit hits the fan is to start reading source code. I'd rather go to shop and buy AIX, Windows and Mac OS combined.

Right, because when shit hits the fan with a Windows server, you can just click your heels three times and say "Please fix yourself from your unreliable state!", unlike that nasty Linux stuff which requires you to read documentation and maybe even, or the horror, source! Or perheaps you are suggesting that calling MS only to get some idiot on the phone who does things such as to try to get you to do magic tricks like to load the MSC console on an unbootable machine, only to abandon you when he discovers the problem is beyond him - with a recommendation to wipe-and-reinstall (after having charged your credit card a multi-hundred dollar bill for this perl of wisdom) and leaving you to do hours of prowling through MSDN and knowledge base articles on your own, only to finally boot a linux live CD and start screwing around with replacing DLLs with their older versions on trial-and-error basis, followed by tens of reboots between Windows and the live CD, to get shit fixed is just soooo fucking superior!

Now I am certain that either you are joking or have never ever administered a single server.

Clearly, I have more experience then you in this regard, otherwise you would not be spouting such nonsense.

SFTP is a downloadable option

[jonathanjespersen]

This link explains at a very high level why there is no SFTP out of the box, but it is a downloadable option.

Re:SFTP is a downloadable option

[Knara]

That link says very clearly on page 3 that Microsoft offers no SFTP solution.

Re:SFTP is a downloadable option

[jonathanjespersen]

Ah, my newbie-ism got in the way. I read right past that blurb at the bottom. SFTP = no, but FTPS = yes.

Re:SFTP is a downloadable option

[Knara]

Yeah, I had to read it a couple times to really get what they were saying. Still seems dumb to me, though. I can grok the "no ssh" bit, but to not provide a built in SFTP server because they "ran out of time"? Stupid.

Re:SFTP is a downloadable option

[Knara]

They took the BSD code for telnet and put it in XP. Putting SFTP wouldn't have delayed anything, it's not like MS can't afford to hire the additional manpower. Besides, I see no indication that they're planning to have an SFTP server at all.

Re:No SSH!?

[Psiren]

Sorry, I misread the original post as a complaint that Windows didn't have an ssh server, rather than a client, which didn't make much sense to me. In that case, I agree that it's an oversight, but hardly anything worth getting worked up about. It takes a couple of minutes to install something like Putty.

None of Microsoft's software requires SSH to administer, so why would they bother supplying it? Given that everyone complains bitterly about Microsoft bundling software with its OS, I find it amusing that they're now complaining it doesn't.

Re:server w/out ssh? How much obtuse can you get?

[Shados]

RDP in 2008 is also getting quite a decent boost, both in security (though that was backported), and in usuability. You can now share specific applications instead of entire desktop.... the app seems like its on your desktop (like X can do, but with the nifty advantages of RDP), so that makes it even better :)

Reminds me so much of ITRON

[nawcom]

reminds me of the ol ITRON from Japan. a paragraph or two from a Linux News article (http://www.linuxinsider.com/story/31855.html): "mpact Deferred The TRON Project is not new; in fact, it was poised to its mark more than a decade ago, in Japan's PC industry, but the U.S. government intervened. In 1989, Japanese electronics giant Matsushita introduced a BTRON PC, a machine that stunned the industry with its advanced capabilities. The BTRON PC had an 80286 Intel (Nasdaq: INTC) The HP ProLiant DL380 G5 Server with Systems Insight Manager (SIM). Latest News about Intel chip running at 8 MHz and a mere 2 MB of memory, but it could display moving video in color in a separate window. Also, it had a dual-booting system that could run both the BTRON OS and MS-DOS. When the Japanese government announced it would install BTRON PC in Japanese schools, the U.S. government objected. It called the Japanese initiative "actual and potential market intervention" and threatened the move with sanctions. The Japanese, dependent on the U.S. export market, quickly dropped the plan. The U.S. government later withdrew its threat, but the damage had already been done. Nearly all Japanese companies involved in TRON-related activities had canceled their projects." This is a little different situation, so what will Microsoft do now in order to seize the issue?

Re:No SSH!?

[IgnoramusMaximus]

(And it's definitely a hell of a lot faster than the Unix equivalent SSH+VNC.)

Not really, people just do not understand how to use VNC properly. VNC has a number of compression algorithms (SSH can also compress) which have to be selected for the type of connection you are using. Picking the wrong one (meant for faster links) will slow you down to a crawl. Most common mistake is to use VNC with a SSH redirect to localhost, which then makes VNC pick no compression as it thinks its connecting to ... localhost.

Then there are of course things like the NX protocol which offers yet additional level of smart compression for X11 based sessions and can even compress the RDP protocol for further speed boost.

Re:Favorite Vista features, now in a server!

[CompMD]

Yes, it pretty much is Vista Server. When I was installing Server 2008 Beta 2 it actually said "Windows Vista" at one point in the installation.

Re:No SSH!?

[Blakey+Rat]

I think the huge shortcoming is that SSH isn't integrated into VNC in the first place, which would take care of the concern you point out. I've tried "tunneling" VNC over SSH, and it's hard as hell to set up. In the end I just gave up and used Microsoft's protocol which not only does the encryption by default, but also "locks" the remotely-used desktop for additional security.

IMO, VNC is badly in need of an update. It should have encryption integrated and turned-on by default, and it should do more (or anything at all) to prevent screen peepers to see what you're doing.

Re:No SSH!?

[midknight32]

Microsoft would love it if the desktops and servers in any given office only ran Windows. the problem is that the same admins will be administering gear such as routers that quite decidedly don't, never will, and need SSH for proper security, etc.

Uh oh

[Tarlus]

A Run Through Windows Server 2008 *Holds breath and closes eyes*

Actually, as a Win2k3 admin, I can honestly say that there's nothing truly bad about the OS itself. It has held very solid for me. I say that in part because I don't have to use it for anything more than managing Active Directory.

I would be willing to look into purchasing a new version of the Exchange server if they could redesign it in such a way that it has a clean, easily backed-up pool. As it is right now, I really don't know whether or not my backups of the Exchange server would really be accepted in a system restore. And that scares me.

Re:Uh oh

[dbIII]

Be careful - the trolls that assured me that Exchange 5.5 does perfect backups easily and that we are all incompetant if we worry or run bare metal recovery drills may be listening. The docs do make it look as if the new Exchange is an improvement there just as the current version is a vast improvement on 5.5.

RC0?

[Goaway]

RC0?

What the hell does that even mean?

Re:RC0?

[DigiShaman]

RC = Release Candidate. I suspect 0 means it's their first candidate.

Keep in mind that with Microsoft, an RC version fits between Beta and Final.

Re:RC0?

[Goaway]

Thanks for the clarification, Captain Obvious!

Re:No SSH!?

[Psiren]

Microsoft would love it if the desktops and servers in any given office only ran Windows. the problem is that the same admins will be administering gear such as routers that quite decidedly don't, never will, and need SSH for proper security, etc. So, tell me, why is it's Microsoft's responsibility to supply you with tools to administer non-Microsoft systems? We're talking about an ssh client for fuck sake. It takes two minutes to track down and install one. If you're not capable of that, you certainly shouldn't be administering routers.

Re:No SSH!?

[IgnoramusMaximus]

I think the huge shortcoming is that SSH isn't integrated into VNC in the first place, which would take care of the concern you point out. I've tried "tunneling" VNC over SSH, and it's hard as hell to set up. In the end I just gave up and used Microsoft's protocol which not only does the encryption by default, but also "locks" the remotely-used desktop for additional security.

This would run against the Unix design phillosophy which counsels something along the lines of "small specialized tools, which do one thing well and can be connected together for more complex tasks".

I disagree that VNC is hard to setup over SSH because I do it all the time and I also disagree that VNC must include everything and a kitchen sink, Microsoft-style, to be useful. Microsoft way is the way of complicated, out-of-control, unmanagable balls of spaghetti code made up from a miriad of unrelated pieces of code with vastly different design phillosophies which results in an illusion of security.

For example, no one really knows if the MS RDP server process is secure at all. We have no way of verifying it, but it is also obvious that adding each additional layer of code to it increases its complexity and risk of fatal errors.

MO, VNC is badly in need of an update. It should have encryption integrated and turned-on by default, and it should do more (or anything at all) to prevent screen peepers to see what you're doing.

See above. Unless VNC is made to carefuly use an encryption system which is wholly separate from it and maintained by expert security professionals (via for example loadable SSL libraries) then they should NOT do it otherwise. All that will happen is that they will end up with yet-another poorly reinvented wheel producing the exact opposite of what was intended.

Re:No SSH!?

[Mr+44]

Proof? Open up a remote desktop client and connect to a server, it displays a windows login prompt that gives away the OS version and if the machine is part of a domain, gives you a list of accessible domains or the name of the local system.


If thats actually a concern of yours, then just set the group policy NoDomainUI.

Re:Windows Server + SSH?

[naetuir]

RDP, yes. Not a standard, however. Unless you consider whatever M$ does as a standard (yes, I have some mild bias against them).

While admittedly I am not familiar with "Power Shell," it appears that it is not something that comes directly with Windows on a quick google search... and the fact that Secure Shell (aka SSH) does not come with Windows is what this whole debate appears to be over. It was never in debate whether or not you could get some external software to serve SSH. It's a matter of if they should include it with the distribution.

Re:No SSH!?

[ydrol]

I dont think ssh(or lack of it) itself is the main issue. (esp with increasing numbers of VPNs etc)

Even with SSH I think the real requirement is to have a remote cli access to useful commands combined with a decent scripting language , especially when administering a lot of machines or doing repetitive tasks.

Now WMI+vbscript covers a LOT of that, from an administrative POV, the problem I have with WMI is that it is a different interface to the one you use normally to administer windows at the CLI.

For example, to change the metric on a particular route, on one server, I can fire up the DOS prompt, do a few route commands , maybe craft a 'find' command to pull out the exact route I'm interested in , and then alter the route.

If I had to do 100 servers, each slightly different, Assuming I dont want to install additional s/w on the servers I have two choices (I think):

1) using psexec and the limited functionality of .BAT scripting, means I might just about do this, with a horrid .BAT file that does all kinds of nasty things because of how crappy DOS scripting.

2) The correct way, using WMI+vbscript, but now I have to approach my task with a different mindset (selecting objects from tables etc), which is neat , but its different enough to slow me down whilst googling, "how do I use WMI to add a route" , etc. (coming from C/Perl/Java background - using vbscript is also a PITA but that's partly my fault, I have to keep deleting my end-of-line semi-colons)

With good remote access to a CLI that has half-decent programming constructs, then my solution for multiple servers is the same as for one server (more or less), and that is more efficient for me.

Re:No SSH!?

[Blakey+Rat]

This would run against the Unix design phillosophy which counsels something along the lines of "small specialized tools, which do one thing well and can be connected together for more complex tasks".

The one thing I want to do well is connect to my home computer from work with encryption. If it's hard to set up, hard enough that I give up on it and use a competing solution, it's not being done "well", is it?

There's nothing wrong with the Unix philosophy except that it's machine-centric and not user-centric. The machine-centric "one thing" is "take a string, encrypt it, then return the encrypted string." The user-centric "one thing" is "I want to check my bittorrent download progress at home from work, with encryption so nobody can snoop what I'm doing." Big difference.

I disagree that VNC is hard to setup over SSH because I do it all the time

What does the second part of that sentence have to do with the first? A lot of things I do all the time are hard; doing them often doesn't make them less hard. (It does make you more practiced at it, perhaps, but the difficulty of the task doesn't change.)

I also disagree that VNC must include everything and a kitchen sink, Microsoft-style, to be useful.

Obviously it's useful now. Duh. But it's not AS useful as solutions it's competing against, that's my complaint.

Microsoft way is the way of complicated, out-of-control, unmanagable balls of spaghetti code made up from a miriad of unrelated pieces of code with vastly different design phillosophies which results in an illusion of security.

For example, no one really knows if the MS RDP server process is secure at all. We have no way of verifying it, but it is also obvious that adding each additional layer of code to it increases its complexity and risk of fatal errors.

Nice anti-Microsoft rant, what the hell does it have anything to do with what we're talking about? Microsoft's Remote Desktop might be "unrelated pieces of code with vast-- etc etc" but it sure works well, and that's all I care about.

And I hate to break this to you, but I don't have any way of verifying whether *any* encryption or complex program is secure or not. I simply don't have the brain for it, or the education for it, so from my point of view, the choice is between "trusting the smart people at Microsoft who have millions of dollars riding on being correct" or "trusting some PhD who has a lot of free time and likes Stallman."

Unless VNC is made to carefuly use an encryption system which is wholly separate from it and maintained by expert security professionals (via for example loadable SSL libraries) then they should NOT do it otherwise.

Could you explain to me how "VNC should have integrated encryption" and "VNC should use SSL libraries" are mutually-exclusive, please?

Re:Upgrades?

[mpapet]

1. I'm not talking about some XP boxes. I've got a dozen production servers that upgraded from 2000->2003 beautifully. There isn't an XP box in the world I would upgrade, but on the server side it works.

2. If you think like an XP desktop administrator when it comes to servers, then you must lose quite a bit of sleep in production changes. Good luck with that.

Re:No SSH!?

[ydrol]

For one machine I agree. But for 20 servers on a regular basis, then the Microsoft Philosophy is WMI, which I suspect would put many typical Windows Administrators out of their depth... (programming,database,objects and all that)

However with SSH+Unix Shell, remote administration of many machines via repetitive actions is almost the same as for one machine.

And Remote Desktop Administration only scales up to a certain point for some tasks. I'll admit I'd still rather spend 7 hours knocking out some WMI+vbscript than 3 hours flipping between msctl sessions. But then, if you make a mistake in a script you tend to notice during testing and a script is self documenting. Doing repeat manual actions in remote desktops can give rise to some weird and wonderful errors on your 11th server..

Re:Favorite Vista features, now in a server!

[tmassa99]

Obviously you haven't had much experience with either, or you would understand that isn't the case at all.

Re:No SSH!?

[IgnoramusMaximus]

The one thing I want to do well is connect to my home computer from work with encryption. If it's hard to set up, hard enough that I give up on it and use a competing solution, it's not being done "well", is it?

This is a silly argument. You could define "well" as demanding that your PC does everything you ever wanted a computer to do by pressing the "on" button and saying "Computer! do my stuff!". By that criteria, no software today is well written!

Clearly some balance between "user-centric" and "machine-centric" is needed, until at least we all have sentient computers.

There's nothing wrong with the Unix philosophy except that it's machine-centric and not user-centric. The machine-centric "one thing" is "take a string, encrypt it, then return the encrypted string." The user-centric "one thing" is "I want to check my bittorrent download progress at home from work, with encryption so nobody can snoop what I'm doing." Big difference.

You are right and that is why Microsoft is a champion of the latter approach and sacrifices nearly anything to adhere to it, while Unix/Linux/BSD are aiming for the former and provide the latter only if it makes sense from the perspective of the former. These are essentially opposing world-views and which one is more aligned with your psyche is up to you. Although in your case I sense you would lean towards the Microsoft way.

What does the second part of that sentence have to do with the first? A lot of things I do all the time are hard; doing them often doesn't make them less hard. (It does make you more practiced at it, perhaps, but the difficulty of the task doesn't change.)

It does have the following relationship: I know that it is not hard from experience, by observing the actual relative simplicity of the process, compared to other tasks. It is neither conceptually difficult nor particularly hard to research.

Obviously it's useful now. Duh. But it's not AS useful as solutions it's competing against, that's my complaint.

Again, VNC does not "compete" against RDP. RDP "competes" against SSH + VNC + printer + sound + local file system redirector + ... who the heck knows what else?

Microsoft's Remote Desktop might be "unrelated pieces of code with vast-- etc etc" but it sure works well, and that's all I care about.

See above. Your definition of "well" is different then mine. Mine includes my ability to trust the software I use.

And I hate to break this to you, but I don't have any way of verifying whether *any* encryption or complex program is secure or not. I simply don't have the brain for it, or the education for it, so from my point of view, the choice is between "trusting the smart people at Microsoft who have millions of dollars riding on being correct" or "trusting some PhD who has a lot of free time and likes Stallman."

Except that, of course, that first choice reads "trusting the smart people at Microsoft who have millions of dollars riding on on being able to ensure that they remain the dominant market player (direct result of their corporate imperative) and thus no one finding out if and when they are incorrect". Not entirely an "equivalent" position to what that PHD is all about.

Could you explain to me how "VNC should have integrated encryption" and "VNC should use SSL libraries" are mutually-exclusive, please?

By concocting their own "customized" implementation, for example. Then, even if SSL libraries are called, there is quite a large room to manouver involved in setting up the key echanges, initiating encryption, user authentication and all that other, very complicated, security rigamarole full of arcane pitfalls and gotchas.

Re:No SSH!?

[midknight32]

So, tell me, why is it's Microsoft's responsibility to supply you with tools to administer non-Microsoft systems? We're talking about an ssh client for fuck sake. It takes two minutes to track down and install one. If you're not capable of that, you certainly shouldn't be administering routers.

*shrug* It's not their responsibility. "Responsibility" is beside the point.

Not providing a commonly used and needed tool (after all, they DO provide two ways to use telnet) which is provided in just about every other common dekstop/server OS is something to validly complain about.

I use Server 2003 on a laptop. ^_^

[Ayanami+Rei]

Bluetooth, dock/undock, hibernate, gaming, it all works. And IE is completely declawed so you don't even if you accidentally open an untrusted URL in it, you're not going to get adware toolbars installed and your NDIS stack rejiggered.

Re:I use Server 2003 on a laptop. ^_^

[Slashcrap]

And IE is completely declawed so you don't even if you accidentally open an untrusted URL in it, you're not going to get adware toolbars installed and your NDIS stack rejiggered.

No. IE is simply configured to disallow browsing non-local documents by default. If you disable that feature so that you can actually use it as a web browser then it's the same old shit.

You make it sound like they've improved it in some way when in fact they've just disabled it. Using the same logic, you can vastly improve the security of Firefox by configuring it to use localhost as a proxy and then not actually running a proxy on your machine.

server core is a joke

[formal_entity]

As you probably know, the "Server Core" edition comes without any GUI. This reduces the total amount of bits that needs to be patched later and this in turn needs to less reboot/hassle/downtime. The problem is that .NET depends on the GUI so .NET cannot run on Server Core. This in turns means that you cannot install MSSQL because it contains managed code (not only in stored procedures but in core product). It also means that while you could theoretically install IIS, why would you ever do that? You will not be able to run any dynamics content stuff (ASP.NET etc) on it. I've also heard (from an MS sales person!) that Exchange contains managed code. This means that to benefit from the lower footprint in Server Core, you better run only OSS software (because as you know, no open source server has hard dependencies on managed code). MySQL and what not will run just fine on Server Core. Then again, with no ssh the administration will be a pain in the ass; why not just use Linux instead? GUI is optional without massive loss of functionality.

Re:server core is a joke

[LuckyStarr]

As mentioned somewhere in TFA, copSSH is a nice way to do ssh on Windows. It's basically OpenSSH with a cygwin dll underneath and some fancy clicky admin GUI.

Only if you HAVE to use Windows of course...

Re:server core is a joke

[El_Oscuro]

We unfortunately have to run Windows. Fortunately, it is only to run Oracle databases, so we can lose the crappy GUI, Internet Exploder, and all the rest of the junk. With 2003, I've already ditched the crappy scheduler and replaced it a cron daemon.

At home, I still have one Windows box for gaming. I have already replaced the command shell with Cygwin and plan to replace the Windows GUI shell with KDE 4 when it comes out.

Re:No SSH!?

[plague3106]

I somehow doubt administrating a server via a phone will take off..

Re:No SSH!?

[plague3106]

What do you mean by the newest RDC? I have used the one shipping with windows 2003, it behaves as i describe and every deployment where i've seen it being used. If the version in 2008 behaves more securely you can't really consider that until it comes out of beta.

The version 6 client supports that authentication; Win2k3 SP2 adds support on the server side for that same authentication.

Proof? Open up a remote desktop client and connect to a server, it displays a windows login prompt that gives away the OS version and if the machine is part of a domain, gives you a list of accessible domains or the name of the local system.

Ok, how useful is that? You can get an account locked out for too many failed attempts, and you have no idea what updates are installed either.

A few years ago i often used servers to encode mp3, because they were much faster... Nowadays you could use it for video, or any other situation where you have a dataset you need to upload and do a lot of processing on. I can have a 4 socket quad core server running away nicely in a server room, i wouldn't want such a big noisy machine on my desk.
Any program that produces textual output could be executed on the server and piped over ssh, for the results to be parsed locally, or on to another server for instance.

Not very common to do though, and encoding video? I think any performance gains using a server to do the encoding are offset by the network time you need to send uploading it and the time spent encrypting it.

I can also download files with SSH, and if the file isn't already compressed i will typically make the server compress the file on the fly (eg bzip2 -9), pipe over ssh and then have my client decompress locally, works great over slow links.
I can also pipe files over and decompress/unarchive them on the fly, instead of downloading and then decompressing (wasting local storage and taking longer as the disk heads thrash back and forth).
I can do audio conferencing over SSH without having to install extra apps (between workstations obviously) with cat /dev/audio etc
I can do disk copies by piping contents of /dev/sda over ssh, i can save to an image file (optionally compressing on the fly) and restore in the same way - every livecd has ssh
I can pipe video files off my server and direct into a video player on my laptop (my laptop has very little spare hd space)
I can have ssh login to servers automatically and tar up directories, and pipe the output to a backup device. I can have a central server retrieve backups from any number of other servers and store them. I dont need to backup the whole machine, i can selectively do partitions or directories without needing any third party apps.

More who cares and dubious examples. These aren't common administrative functions. They're not administrative functions at all as far as I can tell.

The beauty of SSH is that it offers you the flexibility, once you get used to it you'll find that you use it regularly for all kinds of things, and if you use something less flexible you'll often get frustrated. Conversely, if you're not used to the flexibility offered by SSH you won't miss it.
My grandfather drove cars without air conditioning for the past 50+ years and was perfectly happy. His latest car had aircon, and now that he's used to having it he would never consider buying another car without it.

I had a Linux server running SSH. It was useful. I could do what I needed to...except that focusing on command line administration makes things way harder than they need to be, which is why I replace it with a Windows server. RD also allows me to do the same tasks though using the GUI tools. So I can actually get my work done.

The mp3 encoding was just an example btw.

I realize that, and its a poor one. We're talking about administering servers, and you're trying to claim that lack of SSH "cripples" the server so that you can't do that well. Its just not true.

Re:No SSH!?

[MostAwesomeDude]

It already has. I know at least two server admins who prefer remote administration via cell phone to actually going into the office to get to the VPN.

Re:No SSH!?

[ExtraT]

It's amazing! This one single post demonstrates the basic difference between a *nix admin and a Windows admin.

Basically Windows admins consider tasks that don't have a GUI interface "who cares" tasks and "dubious". A perfect example of people from a known *nix sysadmin proverb: "Shut up, or I'll replace you with a 10 line script" :)

Re:No SSH!?

[plague3106]

OMG TWO!!!!1111!! Why someone would need to INTO the office to get to a VPN is also beyond me.. seems you would VPN to the office from home... and have a real computer, not a 2" screen.

Re:No SSH!?

[plague3106]

You actually read his tasks right? Encoding an mp3 or a video? Are you REALLY claiming those are even administrative tasks??

Scripting has its place, no doubt. It shouldn't be the default way to administer most functions though.

Vista is not ALL crap

[gnuman99]

As I spent the last week trying to untangle the mess of manifests, I realized one thing. Vista is NOT all crap.

UI popup asking you to verify that you clicked something is not that great. But if you get a virus, you may stop and wander why you get popoup boxes all the time even if you didn't click it. Annoying but maybe effective? Don't know. This is the part of Vista I do not like at all.

manifest files - ughh! Well, if you understand them, they are not that bad. Still annoying to the developers but better than DLL Hell of yesteryears. If you want a different confusion for developers, look at OS X frameworks. Not exactly standard dynamic libraries there either.

The new folder locations are great. Vista is getting closer to what Linux/Unix had for years. Actually, they are easier to understand than Mac OS X stuff.

The real pain are the 64-bit/32-bit file/registry reflections. That is just stupid. Same application = Same key! The lack of manifest = registry reflection is also crap. Open a registry, and it opens a different one for you! Stupid!!

But the changes in Vista are not all bad. There are some good ones. (BTW, manifests and SxS execution was in place since XP or 2000, just no one used it until Vista is forcing it down our throats :).

Of course, I still find Gnome+Linux the most productive environment over Vista or XP or OS X. It just works.

PS. 2003 is not faster than XP. It will only be faster if you install crap on your XP box. What 2003 has is more throughput = less overhead. But that also means less interactivity. And people will not "transition" from XP -> 2008. If they do, then they have too much money in their pockets.

Re:No SSH!?

[Big_Al_B]

And I hate to break this to you, but I don't have any way of verifying whether *any* encryption or complex program is secure or not. I simply don't have the brain for it, or the education for it, so from my point of view, the choice is between "trusting the smart people at Microsoft who have millions of dollars riding on being correct" or "trusting some PhD who has a lot of free time and likes Stallman." Point taken, but I would submit that--your personal motivation or skills notwithstanding--a car salesman who welds the hood shut so you can't see the engine of the car he's selling you is inherently less trustworthy than a charitable fellow who hands you a free car, its manual, the original design specs, all part numbers etc, for you and the world to study.

You may decide never to look at the second car's engine, but at least you could if you wished. That's not true of the first car.

Microsoft just doesn't get it

[jackspenn]

How hard would it be to have the following items added to Windows 2008:

1). SSH Server (so I can remote into my machine over a slow connection or my blackberry)
2). A decent shell (powershell has a lot of potention, if they added powershell support for all management feature s in Windows and AD like they did for Exchange 2007, that would be awesome).

I love parts of Linux and I love parts of Windows and I just wonder why there is nothing that puts the good from both together.

"Read The F****** Source Code?!" Nooooo...!

[Dogtanian]

All of those programs have a natural fall-back mechanism, that is their own source. Every competent Linux/BSD admin is expected to be fluent in several computer languages, starting with the C language. I'm going to play devil's advocate here; I thought your original point was excellent, but suggesting that someone should have to read the source (even if they are capable of it) as a substitute for poor documentation is horrid. You're doing open source no favours with that line (I can just see the Windows types using it to paint Linux apps and documentation as poor-quality and elitist- when, as you originally pointed out, this could arguably apply more to Windows).

Yes, there are extremely good reasons for having the source available, but it being a substitute for good end-user documentation is not one of them. (Code should be well-documented and clearly written, but for the benefit of maintainers, not end users!).

In an absolutely desparate situation if you're prepared to put the time in, reading the source *might* save your bacon, but I'd already be severely pissed off if I had to resort to that. Particularly if the code was opaquely or just downright messily written.

Re:"Read The F****** Source Code?!" Nooooo...!

[IgnoramusMaximus]

I'm going to play devil's advocate here; I thought your original point was excellent, but suggesting that someone should have to read the source (even if they are capable of it) as a substitute for poor documentation is horrid

No that is not a substitute, it is a measure of last resort. The point is that under no circumstances, no matter how adverse, you are put into the same position as you are with the MS stuff, that is begging someone to tell you some of their secret shit at $175 bucks per "incident". Long before you have to resort to parsing the source, you will get a lot of info from the comments in config file samples, the man pages, the html docs and if these are insufficient or outdated, from wikis, mailing lists and even emailing the developers themselves.

However as I kept pointing out, much of this is very rarely necessary because we were discussing the basic OS utilities of which all are documented to great extent in every distro I ever came accross. It was the other poster who threw in Apache, Postgress and all of the add-on apps which would then make his "comparison" to Windows also include the entire MS product line and those of all Windows software vendors, shareware included, to be fair.

Yes, there are extremely good reasons for having the source available, but it being a substitute for good end-user documentation is not one of them. (Code should be well-documented and clearly written, but for the benefit of maintainers, not end users!).

I agree with you, and in actuality most open-source apps included in major distros are just that: well documented. It is the job of distro maintainers to ensure some sort of standard of documentation and it is one of the factors by which distros are judged.

In an absolutely desparate situation if you're prepared to put the time in, reading the source *might* save your bacon, but I'd already be severely pissed off if I had to resort to that. Particularly if the code was opaquely or just downright messily written.

Still it beats begging MS or one of their flunkies for a solution, which you might or might not get based on their whim or buying an app from someone who somehow managed to get an inside track and is now cashing in on it.

Re:"Read The F****** Source Code?!" Nooooo...!

[Thundersnatch]

It was the other poster who threw in Apache, Postgress and all of the add-on apps which would then make his "comparison" to Windows also include the entire MS product line and those of all Windows software vendors, shareware included, to be fair.

No, I explicitly mentioned "Apache Tomcat, Sendmail, ntpd or even X configuration". ALl of which have perfect analogues included with Windows Server editions (IIS/ASP.net, SMTPsvc, w32time, and the Windows GDI).

I mentioned Postgres as a positive example in the open source world. It has documentation nearly as good as that which comes with MS SQL Server (which I believe is Microsoft's best individual product).

Yes, 30-year-old GNU utilites are well documented in man pages. But man pages don't cut it for a lot of other,more complex software. Tyring to figure out LVM2 the first time I used it from the man pages was very painful, and the man pages were the best documentation available at that time.

Re:"Read The F****** Source Code?!" Nooooo...!

[IgnoramusMaximus]

No, I explicitly mentioned "Apache Tomcat, Sendmail, ntpd or even X configuration". ALl of which have perfect analogues included with Windows Server editions (IIS/ASP.net, SMTPsvc, w32time, and the Windows GDI).

Except of course this is a dishonest "comparison" as Sendmail is rarely used these days, having been superceeded by Exim, Postfix, Courier and the like -- but you picked it specifically because of its complex "config" file -- which is in actuallity a state-machine program and exceedingly well documented, Tomcat is nowhwere near the "equivalent" for ASP.net, PHP is. And so on.

I mentioned Postgres as a positive example in the open source world. It has documentation nearly as good as that which comes with MS SQL Server (which I believe is Microsoft's best individual product).

Which is laughable, because having worked with both, I find the documentation of Postgres orders of magnitude better than that of MS SQL, not to mention all the wacky, undocumented, buggy mis-features in MS SQL versions I run into over the years, for the "privilege" of reporting of which I had my credit card abused by Microsoft.

Yes, 30-year-old GNU utilites are well documented in man pages. But man pages don't cut it for a lot of other,more complex software. Tyring to figure out LVM2 the first time I used it from the man pages was very painful, and the man pages were the best documentation available at that time.

I stand by my initial assertion: you are just incompetent. LVM2 is extensively documented, every distro includes copious examples on how to use it and on top of that there are reams of "How Tos" on the web. Like this one, which was available since the LVM days, never you mind LVM2.

Re:"Read The F****** Source Code?!" Nooooo...!

[Thundersnatch]

I ran across those HOWTO pages. They are not good documentation, they are just are a reasonably categorized collection of quick HOW-TOs aimed at command-line monkeys: "type this in if you want to do x".

That site doesn't document in detail how every option of every LVM tool works. Yeah, there are some conceptual basics on how VGs relate to PVs and LVs (which is obvious to anybody who reads the MAN pages or understands sotarge virtualization on any platform), but the exhaustive details of LMV2 simply aren't documented there, or anywhere else I could find.

I decided your linked HOWTO page was not a good documentation resource to use when I kept running across pages like this. There are no explanations as to what any of those commands mean, nor why they might need to be different in some use cases. The majority of that HOWTO is similarly constructed.

Where is the comprehensive reference that documents every option of LVM2? Why is there only one nearly incomprehensible page about disaster recovery of an LVM system, which should be the most important topic? I didn't find any true documentation back in 2005, and I still haven't run across it. Compare that to Sun's documentation for ZFS, and you'll see why I think LVM documentation sucks.

I know C, and even wrote a simple C compiler as an undergrad back in the early 1990s. But I don't code C regularly anymore, and I am certainly not going to try to decipher C source as documentation. I don't have time, and neither do most other IT folks. Professionals do not consider source code documentation. My developers write design and architecture documentation for all of their code, which is then passed on to technical writers so it becomes actual documentation for end users and system administrators. It seems in most open source projects, coders write the documentation themselves, which leads to documentation being perpetually incomplete. Writing documentation is not what coders are good at, nor is it what they enjoy doing.

Re:"Read The F****** Source Code?!" Nooooo...!

[IgnoramusMaximus]

That site doesn't document in detail how every option of every LVM tool works.

Oh so now the complaint is that you might have to check two or more places to get a complete picture! How dare they do not re-create the MSDN subscription and the MS "knowledge" base, complete with identical prompts and structure! I mean you would have to actually learn the traditional organization of information in an environment which was not, gasp, "invented" by Mirosoft! Horror! Heresy! Unthinkable! They all must conform to your way! Now!

That site doesn't document in detail how every option of every LVM tool works. Yeah, there are some conceptual basics on how VGs relate to PVs and LVs (which is obvious to anybody who reads the MAN pages or understands sotarge virtualization on any platform), but the exhaustive details of LMV2 simply aren't documented there, or anywhere else I could find.

Err, its a HOWTO, and it does include the basics. It is meant for people to get quickly operational, not as an end-all, exhaustive, last word on methods of storage allocation!

I decided your linked HOWTO page was not a good documentation resource to use when I kept running across pages like this.

Which is a page with an example of a simplistic boot-time script. In a HOWTO recipe. All you have to do is to follow it verbatim. Next thing you will be moaning about is that the HOWTO should also be the man page (which is where these commands and their options are traditionally explained).

Where is the comprehensive reference that documents every option of LVM2?

• 1. LVM2 Man pages
• 2. LVM2 HOWTO
• 3. LVM2 Mailing list
• 4. Comprehensive LVM administration guide and documentation (LVM2 uses many of concepts present in LVM)
• 5. LVM2 Source

In other words, where it has always been for every other new, still experimental Linux project. I noticed that you keep failing to mention that aspect.

If you are that incompetent (which it seems you are) that you cannot deal with the documentation which all of the other people using LVM2 follow, you can always pay RedHat to hold your hand and step you through the thing on the phone.

I didn't find any true documentation back in 2005, and I still haven't run across it. Compare that to Sun's documentation for ZFS, and you'll see why I think LVM documentation sucks.

The page you linked to does not load for me at all, which makes for an interesting standard to adhere to.

However the general gist of your moaning seems to be that no one has written a 600 page book, starting with a concept of a hard-disk drive and ending at a recipe for every conceivable possibility so that you do not have think at all while installing a new, still experimental software.

In actuality people have done just that, for the current standard, the LVM, like for example here.

Cry me a river.

But I don't code C regularly anymore, and I am certainly not going to try to decipher C source as documentation. I don't have time, and neither do most other IT folks. Professionals do not consider source code documentation.

Microsoft school of "professionals" you mean.

My developers write design and architecture documentation for all of their code, which is then passed on to technical writers so it becomes actual documentation for end users and system administrators.

Which is nice .... and still guarantees absoltuely nothing. At the first inkling of a problem not covered in those glossy pages with cutsey pictures, the user will be up the shit's creek without a paddle as soon as you go bust or they discover that your "yearly support con

Re:server w/out ssh? How much obtuse can you get?

[Bert64]

What advantages does RDP have? RDP always seemed like a kludge while X has always had remote display support as an integral part... Also X11 is a lot older, it's security and bandwidth usage problems are addressed by NX (www.nomachine.com), and the bandwidth use is more to do with the apps than the protocol.

Re:server w/out ssh? How much obtuse can you get?

[Bert64]

SSH is invaluable because of the flexibility it offers, flexibility you don't have on windows by default, and don't have to the same level if you install cygwin with ssh...

RDP is more responsive than plain X, but it's also 10+ years newer, try comparing to NX and it's a whole different story.

Also, SSH is more responsive than RDP or X if all your using it for is as an interactive terminal. Where SSH really shines is the ability to pipe commands and data back and forth, which you simply cannot do with RDP.

Re:Windows Server + SSH?

[man_of_mr_e]

PowerShell doesn't come with Vista, but it will come with Windows 2008 Server, which is what we're talking about.

And I was talking about the encrypted Windows Remote Shell (WinRS) when I said secure shell, not ssh. Both of those things are included with Windows 2008 Server standard.

Re:No SSH!?

[Bert64]

You can get an account locked out for failed attempts? so what? the issue of knowing the os version has nothing to do with brute forcing of passwords... Knowing the OS means you have a much greater chance of success when trying to exploit a system, and often the patch level makes no difference. As a somewhat old example, the rpc dcom overflow from 2003ish. It had universal offsets for xp and 2000 regardless of service pack, but the 2000 offset would crash xp and vice-versa. If you can work out the OS your chance of success goes from 50% to 100%, and rdesktop makes it all too easy. Unix distributors learned their lesson years ago, telnet banners always used to give away the OS version.

Backing up is not an administrative function? I'd hate to have any important data on a server you admin...
Transferring files to/from servers is not an administrative function?
Copying disks is not an administrative function?
Monitoring logfiles is not an administrative function?

Video encoding and audio conferencing perhaps not.

Well for a better administrative example...

I can use SSH to pipe a script to several machines at once, the script could be doing *ANYTHING* and not just things which are within the framework of $MANAGEMENT_TOOL, and i can parse the output from the scripts and automatically act upon specific conditions. The flexibility is what matters, and it surpasses anything any graphical admin tools offer.

You clearly have never found yourself in a position where your trying to do something unusual that the authors of the graphical admin tools never considered.
And you can always script up SSH, to automatically perform tasks you do often, and you can verify the output to ensure everything went as expected. Can you write a script for RDP to simultaneously log in to 50+ machines, perform an arbitrary task and read the output from the arbitrary task to ensure that nothing unexpected occurred?

Also if you really want a graphical frontend, you can use X11 (piped over ssh for security), tho that would require all the X libs and graphical apps to actually be installed on your server, which is terribly wasteful. There are many small embedded devices which can be managed using ssh (routers/switches, nas devices etc)... How much more expensive would these devices be if they had the extra memory, cpu and flash memory required to run a full graphical environment you could admin them from?

no ssh

[MaoTse]

There's no secure shell available because windows has no shell.

No, Power Shell does not count ;-)
Windows is not made according to the unix "onion" model.
Check it out with Cygwin developers.

Oh, for ssh I can recommend Cygwin ;-)

Re:server w/out ssh? How much obtuse can you get?

[Shados]

RDP (especially in 2008) is the best of both worlds. It is amazing speedy and responsive (better than X11, better than VNC, better than just about anything...), regardless of the app you use (give or take some direct stuff, but it even works with desktop compositing in Vista, so you get all the fancy effects, and its fast regardless), will happily work even with a 56k connection (albeit not at full settings, but still very responsive). You really don't need much bandwidth at all before you can't (or barely) tell apart if you're on the physical machine or not.

Now you can also have single apps remotely (as opposed to the entire desktop, which I realise was done before, but not in such a low bandwidth way), and the nature of the app is almost irrelevent on its bandwidth usage (thus best of both worlds). All around, its one of the very, very sweet things Windows has that I'd have issues living without. Its also stupidly easy to configure for pretty complex scenarios (the way single application sharing works in 2008 for example is pretty sweet).

Re:No SSH!?

[kiddygrinder]

or you could like, you know, log in from a pda across the mobile/some wifi network and do some damage control without having to move your fat ass out of maccas, but whatever floats your boat

Re:No SSH!?

[dbIII]

Pointing at pictures really doesn't scale up - that's why we want command line shells. Microsoft are making noises about moving into clusters and if they convince those that write the applications that run on them it may actually happen - pointing at lots of pictures in the same sequence takes a lot longer than kicking off one script on a few dozen hosts at once. Windows server administration by GUI alone is a pain unless you don't have very many servers or don't ever change anything.

People here are talking about different things - the *nix people are talking about doing a lot of stuff on a lot of hosts that may actually be very dissimilar while the MS Windows people are talking about doing a lot of stuff on just a few machines so not many logins. If you only log into six machines then six remote desktops or VNC sessions are not a huge pain - but with a lot of stuff you want to script things (eg. ssh and powershell or cygwin into the MS Windows hosts).

Re:I am surprised. Seriously.

[Almahtar]

This is assuming the delays are cpu bound. If they're IO bound it wouldn't matter how fast your CPU is.

Re:No SSH!?

[Almahtar]

The unix way isn't SSH+VNC. It's SSH + compressed X forwarding like FreeNX. I've had much faster response times with FreeNX than with RDP.

Re:No SSH!?

[Almahtar]

The SSH client ships with Ubuntu. Only the server needs to be installed manually, and that's as it should be for a desktop OS. Win 2K8 server doesn't even ship with the client. That's kind of an issue since servers generally need to talk to servers, and every server OS except the Windows flavors ships with SSH as the primary remote interface.

Re:No SSH!?

[flyingfsck]

Well, remote Desktop wasn't invented by MS either. They bought a crippled version from Citrix.

SSH

[Almahtar]

Mod me down, whatever... I can't believe how many well worded and legitimate complaints about the lack of SSH support got modded troll. We're talking about lack of both an SSH client and server. These are basic tools for an admin using most servers. I'm really surprised that even on /. a person saying "Come on, no SSH?" would get modded troll. That's a legitimate complaint. SSH is essential to my operation. If I bought ANY server OS that didn't support it out of the box I would seriously question its credibility.

MS still doesn't 'get' head-less servers

[flyingfsck]

MS wants you to use RDP for remote management. To do that, each server has to have the full GUI installed and running at all times.

In the Unix world, the server doesn't need to run X. So you can have a zoo of head-less servers and administer them from a desktop with all the GUI tools, since the desktop has the X server and you can use X forwarding over SSH to control the headless machine from anywhere in the world.

So, on Win2008, if you don't install the GUI, then you can *never* use any GUI tools, which is a distinct disadvantage compared to Unix systems.

Re:No SSH!?

[sydneyfong]

No. VNC *is* slower than RDP.

VNC polls the windows for updates, instead of event hooks. This alone gives considerable latency that makes it feel slow.

Re:No SSH!?

[ExtraT]

Scripting has its place, no doubt. It shouldn't be the default way to administer most functions though.

Spoken like a true Windows admin. :)

Re:server w/out ssh? How much obtuse can you get?

[Bert64]

The issue of bandwidth usage and security in X11 is addressed by NX...
I wouldn't say RDP is indistinguishable from local apps at all, there is a noticeable difference even over a LAN... Plain X11 over a LAN is quite speedy tho, as it was designed for.

X11 works with desktop compositing too, even if your window manager isn't running locally (ie diskless terminals etc) so long as you have opengl supporting hardware... You can even play games or full screen video over remote X11, since GLX sends opengl calls over the wire and they're rendered on the local displaycard (tho you could also do software rendering and stream the output over the network if you really wanted).

As for the new features you describe in 2008, it seems like it's starting to catch up to some of the features X11 has had for years.. Tho don't count it until there's a shipping non-beta product, remember all the features microsoft dropped from vista? Who's to say this stuff wont get chopped before 2008 is finalised?

As for ease of configuration, i wouldnt exactly call single applications complex, and such a configuration is trivial on X11.

As for "better than just about anything"... I always found Citrix to be much faster and more secure than RDP especially over slow links, and there's always NX which works very well even for a graphically heavy environment like KDE. Go try it, nomachine.com have some test machines running on 128kb lines with 30+ users connected.

Out of interest, does 2008 handle multiple screens yet? X11 has for years...

On another note, RDP is expensive, unless you buy extra licenses for it your limited to 2 sessions, which is pretty useless.

Re:No SSH!?

[IgnoramusMaximus]

VNC polls the windows for updates, instead of event hooks. This alone gives considerable latency that makes it feel slow.

You are referring to a Windows VNC server, which indeed is forced to do all sorts of underhanded trickery to get its information, since the access to the required data is secret and only available to Microsoft and its partners. In its native environment however, as an X11 server, VNC is simply a framebuffer driver, very much as that of the kernel framebuffer devices. No polling of any kind takes place. The VNC server simply reacts to changes of its buffer state and in this situation it can be on-par with (or exceed) RDP, given correct compression algorithm.

Re:No SSH!?

[plague3106]

Think what you want; needing to drop into a console everytime I needed to fix something on my Linux server was one of the main reasons I moved my home computers from Linux to Windows. I actually want a life outside of administering my network.