Thin Client, Or Fat Client? That Is the Question

theodp writes "If virtual desktops are so great, asks Jonathan Eunice, then why isn't everyone using them? However encouraged folks are by the progress virtual desktop infrastructure (VDI) has made, and however enthused they may be about extending the wins of server virtualization over into the desktop realm, you don't see analysts and developers eating the virtual desktop dog food. And even the folks you meet from Citrix, Microsoft, Quest, VMware, and Wyse — the people selling VDI — use traditional 'fat' notebooks. So, are you using virtual desktops? Why, or why not?" I wonder how long the abbreviation VDI will stick around.

I had the same issue as a psychologist.

[santax]

So I moved to Europe. Now all my clients are thin and as a side-effect my sex-life improved greatly.

Re:I had the same issue as a psychologist.

[santax]

Let me dedicate this one to all those AC's out there. http://www.youtube.com/watch?v=Vk9g9HIbZdc

Re:I had the same issue as a psychologist.

[santax]

vicious dick infection? :O

Performance

[Chukcha]

Videographic performance is one sticking point.

Re:Performance

[Firethorn]

Having used some actual thin clients, it's not bad, though I wouldn't want to game on it.

I think the core point would be that because of the way licensing works - you have to buy the client, pay for a license for the client, a license for all software used on the client(if you're going to be legal), it ends up actually being more expensive than a bottom line, but still capable full PC.

The HD adds, what, $20-40? The licenses for our thin clients was more like $100.

Re:Performance

[cratermoon]

The licensing costs end up being the key issue in companies of any size. By the time they set up and license all their people with client machines and all the applications, a company will spend about as much as just buying PCs in bulk from Dell or whoever and site licensing the corporate-standard MS Office suite. Pile on top of that the various fiddly things about virtual desktops that just don't work like having a real desktop PC raising the support costs and it's not competitive.

The central server with dumb terminals era ended long ago, except in niche applications. Desktops and laptops that a capable enough are just too cheap and standardized desktop support contracts from third-party support operations pretty much rule the budget considerations. For virtual and really thin clients to take off, the licensing would have to be notably cheaper and support for the edge cases like traveling remote access would have to be much better.

Re:Performance

[Mordok-DestroyerOfWo]

Another problem is buying the thin clients themselves. I can't remember off the top of my head, but the price difference between a client and a new workstation is barely enough to offset the difference in licensing, not to mention user complaints on performance. We toyed with the idea of retrofitting older workstations but supposedly we'd miss out on VMWare's/Teradici's proprietary PCoIP protocol. When it comes down to it, it's cheaper for us to buy more RAM and replace parts as needed on our existing workstations than purchase the needed infrastructure and thin clients to even begin replacing our workstations. I have begun giving some of our secretaries (or whatever the PC term is this week) older workstations with Debian with few complaints and more than one compliment on performance, however our GIS and admins will always need Windows and a beefy graphics card.

Re:Performance

[elsJake]

Hardware: Sunray , 20$ a pop. + beefy server
http://www.surpluscomputers.com/350480/sun-microsystems-sun-ray-thin.html

Software: Ubuntu + LTSP
(took a whole 5 minutes to set up on my lan)
https://help.ubuntu.com/community/UbuntuLTSP/LTSPQuickInstall

Now go have a picnic.

Re:Performance

[geobeck]

I studied this issue in the early 00's. The company I worked for had delayed buying any new client hardware to the point where we had administrative users on nine-year-old Dells and AutoCAD users on five-year-old machines. So of course we needed to buy new machines for everyone, and we wanted to find the cheapest solution. Well, management wanted the cheapest solution; users wanted to get some work done, rather than waiting until lunch time for their computer to log in.

In our case, including licensing and server upgrades (which were minor, because we had excess server capacity due to a shrinking company), it would have been cheaper to use a thin client system--but only for the administrative users. AutoCAD was not supported in a thin client environment (is it, even today?), and our service technicians absolutely hated using Citrix to access the ERP system. (Logging into the west coast from China, Germany, or even the midwest was ridiculous, waiting half a minute for your cursor to move across the screen.)

I finally managed to convince my boss, who loved the thin client concept, that because of remote users and AutoCAD users, it was best for us to kill off our Citrix system altogether. The power users got fast new workstations, the administrative users got shiny new PCs, our server room was leaned out and less prone to overheating, and everyone lived happily ever after--until the company folded 18 months later due to incompetent management.

Re:Performance

I've done contract work for one of the major credit card companies as a data analyst, and they require us to go through Citrix clients (among other hoops) for a very simple reason: security. There is no way for us to perform an end-run around all of their security for the simple fact that they control our environments, tools, everything. It doesn't matter what kind of system we have (Windows, Mac, Linux, bottom-of-the-line laptop or ass-kicking Alienware), we're limited by the environment that they set up for us.

They could easily pay triple what it's costing them, as long as their security measures are in place, that's what matters most.

Re:Performance

[jvin248]

Check into LTSP.org
The concept there is you transform previous thick clients into thin clients (basically rip out all the drives and network boot off the servers). You can take 10 year old desktops that are limping along on decade old OS and programs that don't fit on there anymore and run them from the central server with more horsepower. Then you're not buying new thin clients.

Re:Performance

[dave562]

Any legit company who is pushing VDI and thin clients will tell you that the ROI on the hardware does not materialize until the first hardware refresh. Instead of doing a full refresh every three to five years and having to buy mid-range to high end workstations, you can buy the least expensive hardware available, and then buy extended warranties for it.

The only thing that made any sense to me was the support aspect of it. Instead of having to touch every single desktop every time there is an application update, you just update the main image. If the update goes haywire, you just roll back to the previous image.

Instead of having to have multiple images for different application configurations (accounting, general office, etc.), you can have one image for the actual client itself and then everything else is controlled via policies. The application profiles determine which user has access to which applications.

VDI is a good way for medium to large sized organizations to save on IT costs. That is bad news for the workstation jockeys but good news for the accountants and every else who can spend less on IT. Of course the savings aren't huge. Realistically you might be able to reduce a couple of head counts, or put off having to hire more entry level IT folks.

VDI won't revolutionize the corporate IT landscape, but for organizations who can leverage it, it will make certain things easier and more efficient. I would have killed for it at my last company. They had a near zero budget for workstations, and an application that was used by 50% of the organization and updated a half dozen times a year. Every update required visiting about 50 PCs, and spending 15-30 minutes running the patch. They didn't have SCCM / MOM / SMS and even if they did, the app updater would bork 15-20% of the time. It would have been great to have a Citrix style published app.

Re:Performance

[Daniel+Phillips]

We can't even get our people off of windows desktops, what makes you think we can get them onto Ubunto at the same time as we go thin client?

Neither could Google until one day their windows machines got hacked by the Chinese government then oh wait they could.

Re:Performance

[Rich0]

I see. And how many billions of dollars per year does your employer make, rounded down to the nearest integer?

If the answer is zero, you're not really the target of VDI...

Re:Performance

[CAIMLAS]

Here's the big difference,though:

* Physical desktop infrastructure is short-sighted.
* VDI is long-sighted.

Yes, the costs may be higher in some regards, but it shifts your focuses significantly.

Instead of having four to eight "desktop jockey administrators", you've got maybe three 'server administrators'. You've got fewer physical assets to manage, which means:

* user-experienced stability problems become apparent almost immediately
* you have fewer physical assets to manage
* hardware failures are treated as 'maintenance window' scenarios, or a quick plop onto someone's desk.
* Software infrastructure upgrades are fast: instead of 100, 500, etc. targets to upgrade, you've got 10, 50.
* Users do not experience nearly as much downtime related to upgrades, and most of the work can be done transparently during working hours.

Depending on the environment, a LOT can be said for a tightly run ship with fewer skilled administrators instead of a hodgepodge of workstations and an army of technicians. You can effectively run a tight ship with diverse application requirements this way, vs. the 'old way' where someone has a Windows XP machine on their desktop for legacy crap and a new W7 machine for their other work. You are no longer bound so much to the 'hardware upgrade cycle'.

Re:Performance

[CAIMLAS]

Well aren't you a special little snowflake.

Guess what? You aren't everyone. If everyone had the same needs you do, software companies - catering to the domain needs of people, companies, conglomerates, municipalities, and governments - wouldn't exist.

Just a couple things which open source won't (doesn't) do (well/sufficiently):

* CRM, particularly for specific domains
* Human accounting
* healthcare
* Legal/trial workings
* Drafting, rendering, and animation (still one of the only domains exclusively populated by 'real' desktops running Windows)
* Pretty much any and all retail establishments which want to track merchandise

As a result, we've got software which runs only on Windows. Isn't it interesting how supply and demand works?

Re:Performance

[hairyfeet]

Why does EVERY FOSS guy think it is about Windows and Office? Hint: It is NEVER about Windows and Office, it is about all those funky ass "mission critical" apps that do not run on Linux full stop. From the charting and accounting software, to the payroll apps, damned near everything in most business will NOT run on Linux, and a good 80% of them I'd say have NO equivalent on Linux.

Just saying to a corporate customer "Just use Linux" is about like walking up to a graphic designer and saying "You don't need that pesky Photoshop, it isn't free as in freedom! here enjoy the Gimp". Try it and see how well it goes over. It is NEVER Windows or Office, those are easy. There are a bazillion other niche apps won't run on Linux, would cost a buttload of money to have a custom version made for Linux, and that is even if you can get the data out easily. Hint: Often you can't. Nearly every SMB and SOHO in my area relies on Quickbooks. What is there even close? GNUCash? It is about as close as Gimp is to Photoshop.

So in conclusion while I'm sure it'd be nice for Linux adoption if all people did at work was use a browser or make documents, but that is rarely the case. It is all those OTHER apps that are used every single day that bite you in the ass, NOT Windows and Office.

Re:Performance

[FictionPimp]

That is why we are piloting a VDI deployment this year. I work at a community college and we are rolling out thin clients using a combo of VMWare, Unidesk, and Panologic. What we were drawn to was how easy it was to control what applications the user gets, patching the desktop and applications, improving security, faster recovery times if there is a software issue (like a virus that slips past), and lastly because we have kiosk computers, being able to have non-persistant desktops (This will save us a little money as it replaces software like deep freeze).

We are in a unique situation however where we need to give users access to multiple operating systems and applications on a given hour. In the past we would need to build our physical machine's bigger then normal so they could handle windows XP + a virtual machine for windows vista or 7. For about the same cost of the PC hardware we would have purchased for the number of PC's we selected for piloting I was able to purchase the server, software licenses, and thin clients needed to do the accomplish the same task. Our hope is that we can save soft costs when it comes to managing these computers and that the thin clients will last longer then a typical PC refresh and saving us cash in the long run (as you pointed out).

Other features that weighed on our decision was how easy it was to recover a dead machine and being able to leverage de-duplication. Currently, if our CFO's dell computer died, we would need to retrieve his computer, recover his files, image a new computer (providing a suitable computer was in stock), install any custom applications he requires, and finally place his data back where it belongs (providing whatever died is not in stock to replace). Ideally all of his data would have been backed up on the network, but being a typically user he probably saved to other locations as well (And being someone like a CFO, you can't give him the usual 'you should have done it like we told you' speech). If the thin client dies, it is literally just a walk to his office and a swap of the device. If he can't wait that long he could just go to any other thin client and log in to get his desktop. Further more, UPS devices at the desktops are no longer required. If the power goes out, the desktops are still running in our datacenter with it's own generator.

Our back-end storage has de-duplication. This combined with the cloning technology unidesk leverages has us with 25 desktops deployed and only 60 gigs of storage used. While user data will increase that amount as the system is used, we could have 1 or 100 desktop and would still only store 1 copy of the OS and 1 copy of each application installed. The savings can be significant.

We are also hoping that the thin clients will ease our way into windows 7. As a college we are constantly being pushed by students, outside companies, and our own faculty to be technologically current. There has been a huge push for us to start moving to windows 7. Unfortunately, there are still many applications that are not supported on windows 7 that some staff members require. There is also course material (some certification tests) that have not yet updated their material for windows 7. Using this system we will be able to offer both XP or Win7 at any location where there is a thin client. So if you run into a document that doesn't work right in office 2007/2010 you can quickly 'reboot' into XP and office 2003 and get your job done while you wait for the author of the document to update it. This comes at a great time because a lot of our computers are at the end of their life cycle and would not meet the requirements to run windows 7. We can provide them with a thin client with XP and all their apps, then slowly rollout windows 7 allowing them a transition period where both systems are available to them.

We know that VDI won't be the solution to all of our problems. There will always been users with notebook computers, classes that require high end video cards or lots of ram (3d modeling, etc), and other situ

Re:Performance

[jimicus]

"Enterprise" in IT doesn't mean what you'd expect it to.

It usually means "far too complicated for its own good".

Re:Performance

[Bert64]

On the contrary, businesses go for what's been sold to them by someone who claims to know what they're doing...

Most businesses lack any in depth IT knowledge and have to rely on third parties, many of whom are either unscrupulous or incompetent. No well managed business would allow anything remotely important to be tied to a single supplier, and yet you see this happen all the time in IT. So is it a case of the business being ignorant (and thus being fooled by salesmen etc) or are they aware of the risks and simply choose to accept it because they think there is no choice?

Incidentally, i have seen MANY businesses who significantly change the way they do business to accommodate software that works in a particular way or has particular bugs. Businesses will often just put up with whatever crap is sold to them, they very rarely do a proper evaluation or consult anyone who is both impartial and knowledgeable.

Re:Performance

[Rich0]

Read carefully. According to the most recent news I could find Red Hat was expected to earn 0.9 billion in revenues this year, which is zero when rounded down to the nearest integer.

Red Hat's customers are more of the target for thin-client computing.

Developers

[Nerdfest]

Developers won't generally use them ... as with so may computer related things these days, VDI is not about usefulness, it's about control. It makes it easy to lock employees down to a standard desktop, and provision or restore them with minimal effort. It's not necessarily a bad thing, but it's not really aimed at developers.

Re:Developers

[EdIII]

I am your exception then.

It was really tiresome going from home to the office with a laptop, and taking it on trips. I also hated the occasional rebuild of my development environment (tools, apps, etc.). So we have a VDI on a server at our datacenter. Now all I need is remote desktop and I have a consistent development platform regardless of what equipment I am using. Considering that most of the development I do does not require heavy graphics and does require access to the datacenter (Internet) it really can't be done locally or standalone anyways.

I do wish there was an easier way to do multiple screens. As it is now, I have multiple user names and open up a desktop for each screen. It is not at all inconvenient since the clipboard is shared amongst all the connections and dragging windows across multiple screens really is not a great loss.

The added benefit is that all of my documents and data are safe in one place (off-site backup withstanding) and any thing that would compromise the machine I am using to establish the remote connections would probably not compromise the VDI at the datacenter.

Re:Developers

[jedidiah]

> If you are the only user on the computer and it has infinitely fast I/O...

Well. This is the problem with "server sharing" in general.

Ultimately, it all ends up as a means for management to pad their bonuses by creating the illusion that they are saving money.

It doesn't matter if it's "developers" or applications that can really hammer the hardware.

Security

[MichaelSmith]

Employers love thin clients because they give more control over the information moved in and out of the organisation. You don't have to worry about blocking Lady Gaga CD-RW disks if the user only gets a picture of the data anyway.

But then the same limitations create a constant demand for new solutions to work around problems which should be simple. How can the PHB work on the plane? What is a switch dies and takes out sixteen users?

I have seen thin clients used successfully in a doctors office, where the integration requirements are simple. I can't see it satisfying every requirement in the engineering environment where I work.

Re:Security

[Rogerborg]

What is a switch dies and takes out sixteen users?

Replace switch with spare. Back online in an hour or so.

Attempt to fill in IT service request to replace switch. Realise need computer to do that. Pick up phone, but forgotten how to use. Wander hallways seeking IT support monkey. Monkeys elusive, cunning, always escape behind cubicle. Finally corner one, demand support. Monkey needs key to server room but IT manager must authorise taking key off hook. IT manager away doing Six Sigma Course. Monkey suggest fill in IT service request. Escape into air duct.

Reality of corporate environment not always match SLA. Rogerborg sad, but must speak truth, even if delivered in cursive.

Re:Security

[Cid+Highwind]

Furthermore, queue... dick-measuring about how an hour of downtime for 16 users is totally unacceptable in "the enterprise" and how my users need five nines uptime, (even though all they do is play minesweeper and write reports). Insinuate anyone who would tolerate more than a minute a decade of switch downtime is a homeless, shoeless, neckbearded GNU/hippie. Quote federal regulations about reliability for nuclear reactor primary safety systems, vaguely hint that the stuff my users are working on is just as important/dangerous (it isn't; it's reports and minesweeper, but this is slashdot and appearances must be maintained). Cast aspersions upon the qualifications of anyone who thinks thin clients are reliable despite the crippling switch failure issue.

Re:Security

[R3d+M3rcury]

What is [sic] a switch dies and takes out sixteen users?

Fair enough. But let's consider our lives here in 2010.

Let's say your switch dies and takes out 16 users. They're sitting there twiddling their thumbs and can't do anything. If they had desktops, they could be productive! They could handle their e-mail--wait, no, the switch is down. They could work on that presentation--wait, no, they need clip art which is stored on the central server. They could submit their corporate expense reports--wait, no, you have to use the web form for that and they can't get to the web server. They could fill out the form on their computer and print it--wait, no, the printer's on a different subnet so they can't get to it. All they can really do is play solitaire and minesweeper until the network is back up.

If you're going to depend on your network, whether with VDI or with more conventional network services, you're still going to need a reliable network. So the whole question of "What happens if a switch goes down?" is moot--you're still not getting things done.

Re:Security

[dkuntz]

What is a switch dies and takes out sixteen users?

Um... even with fat clients, if a switch dies, wouldnt that take out anyone who's on that switch anyways? I mean, yes, they'll have access to their desktop, but not anything on a fileserver, such as shared spreadsheets... or email, or web, or anything else outside of their walled off system.

Switch would still need to get replaced, no matter if the person had a thin client, a fat client, or a Cray YMP...

Re:Security

[EdIII]

You know I was starting to get offended by your post on behalf of all the IT "monkeys" out there. Until I realized that sometimes it really is that stupid and my credibility was shot because I was eating a banana while reading your post...

Re:Security

And after two posts like that, cue the grammar nazis ;)

They use 'fat' laptops because they travel

[fotbr]

I've yet to meet a salesman who will claim with a straight face that the thin-client solution works well when one is traveling and working out of hotel rooms and client sites on a regular basis.

Re:They use 'fat' laptops because they travel

[ShawnDoc]

How does the iPad get around the problem of over saturated hotel networks or poor 3G connectivity? What does it bring to the table that isn't the same as a thin client on a laptop? That's right, it doesn't and nothing.

Re:They use 'fat' laptops because they travel

[SunFireSpaz]

Sun..err..Oracle via General Dynamics has a Sun Ray thin-client laptop with 3G called a Tadpole.

Re:They use 'fat' laptops because they travel

[MightyMartian]

You're not answering the question. Regardless of whether it's a PC, a notebook, a netbook, a tablet, a smartphone or a CPU up your uncle's ass, the fact of the matter is that poor and oversaturated network connections like you will inevitably find in a hotel room or public WiFi is going to mean very slow screen updates, slow cursor and keyboard updates, and so on. Using a fucking touchscreen doesn't magically cure these problems. It's not like an iPad has some magical faster network connection.

Loving it, need more of it

[pablodiazgutierrez]

At work we all have latest generation laptops that end up working as dumb terminals through VNC. A bunch of servers and a load balance connection hub to always route you to the least used one make sure no work is lost if the laptop drops or is stolen, and with current network speeds, it's pretty much like working locally, with the added benefit of an 8-core beast compiling for you, and little to no maintenance on my side. If anything, I'd love for things to go thinner. I lug my laptop, which is heavy enough, from home to work and back every day. Then at work I dock it to use the 25" screen and full keyboard on my desk. If I could just have a small device that acts as a real dumb terminal with some processing power and minimal storage, I'd be happy.

Re:Loving it, need more of it

[ducomputergeek]

Interestingly enough, the one company I know around here that went thin clients two years ago is back buying their employees laptops. My understanding was the thin client approach was great when it was working, but if something went wrong you could end up with a lot of people not able to do anything and all. And apparently they had a couple instances where that happened. Turned out for them the costs involved in building in redundancy into everything (network switches, routers, servers) ate away at all that projected "cost savings" and may have wound up being more expensive.

Personally I get by with my iPad for all non programming tasks anymore. I can do everything from Email to document creation using iWork. I have a docking station at work and one at the house. I still have a iMac at the office so when I need to fire up XCode or Netbeans I can. But that's once a week. I have a Mac Mini at home hooked up to the TV. But even that has largely been replaced by my Xbox for streaming movies from Netflix. And the TV I just bought now has Netflix built in...

There could be a day when all I have is a couple web enabled appliances around the house and that's it. No "computer" at all.

No, he's not

[zn0k]

> If VDI (virtual desktop infrastructure) is so great, then why aren't you using it?

Eunice isn't saying that, he's quoting Brian Madden as saying so and then gives his opinion on why he thinks they sooner or later will.

You can tell because of the sentence directly before the one quoted above:

>Virtualization analyst Brian Madden asks an excellent question:

But hey, fuck accurate summaries, right?

This is the year

[timeOday]

of VDI on the desktop!

Actually, if it happens it will be fairly gradual, the result of ever-improving infrastucture and improved technology at many levels. Just as the Pocket Computer / Smartphone has evolved gradually. For example, the Apple Newton failed, whereas the iPhone was later a blockbuster. Why? Lots and lots of reasons. Some of them, such as faster/cheaper/smaller processors and networking, apply directly to virtualization as well.

Re:Too Slow

[bernywork]

I'm not sure what you worked on and when, but with native virtualization instructions in modern processors, there is no noticable speed difference, the biggest place where people see issues is with disk contention with a badly designed storage platform behind the virtualization solution.

Medium weight client.

[characterZer0]

My development environment is a Xen VM or two.

My client is not thin though. I run the window manager, browser, mail client, IM application, SQL application, and a few other programs on the desktop, and use ssh -X and sshfs to do my development work on the VM.

I have tried running everything on the VM via XDMCP, VNC, and NX, but it is just too slow anywhere but on the LAN. Until I have a 100Mb connection to my house (instead of the 2Mb/384Kb connection with 50ms ping times to google.com I currently shell out $55/mo for) the thin client does not work.

It's the connectivity

[Todd+Knarr]

It's all a matter of connectivity. If you're using a traditional "fat" desktop (or notebook), you're self-contained. All your software's there, you aren't dependent on any connectivity to the outside world to get your work done. A "thin" virtual desktop client, by comparison, is completely dependent on having a network connection to it's host server to operate. Without that connectivity, it's a doorstop (and a light-weight one at that, so it doesn't even do very good at blocking a door open). And in a world of corporate firewalls and filters there may not be any connectivity that the VDI client can use. Anything other than HTTP/HTTPS may be blocked completely, and HTTP/HTTPS traffic will usually be forced through a proxy server that, even if it allows the kind of streaming connection a VDI client needs, introduces so much delay that the desktop becomes useless. And that's when the network's working correctly. Add in random network outages and traffic congestion at the wrong times and corporate systems that require non-corporate machines to VPN to the corporate network (and to have specific anti-virus and management software installed before the VPN's allowed to connect) and it makes a VDI client distinctly unreliable and hard to deal with. Meanwhile, the guy with the "fat" notebook may have more system management headaches and software synchronization issues than the VDI system, but he's still getting his work done while the VDI guy's sitting twiddling his thumbs while the techs try to sort out all the problems.

Re:It's the connectivity

[scdeimos]

If your company wants to deploy VDI they'll figure out the connectivity requirements soon enough.

You're right, though - any kind of network or server outage has people twiddling their thumbs while you're still paying them. Not ideal.

The main complaints I see about VDI, aside from connectivity issues, is that it "isn't fast enough" to play video and games. Big deal. The majority of corporates are supposed to be working in Office-like apps typing documents, editing spreadsheets or pulling together slideshows - no video requirement there. Big bosses don't want you to access YouTube or whatever other time-wasting video sites you like to inhabit.

The minority of people actually needing physical desktops (for things such as network sniffers and maintenance) won't be on VDI.

Re:It's the connectivity

[Todd+Knarr]

The problem is that it isn't your deployment where the problems lie. It's in everyone else's networks where they aren't deploying your VDI solution exactly the way you did, and so the networks aren't set up to make it "just work". If it's internal... well, you can manage desktops relatively easily using the same tools you use to manage the servers (or you should be able to at any rate, in the kinds of networks I'm used to the only difference between a desktop and a server is the video card and what software packages are installed). The only advantage VDI gives you is being able to host multiple desktops on a single box, but that becomes rather pointless when you don't need any special support to simply log in to a larger server the same way you'd log in to your desktop (XDMCP, it's not rocket science). And you don't even need to do anything special to keep users from installing or storing stuff locally, just don't give them a local login on the box on their desktop.

Virtualization has a lot of uses, but VDI seems to me to be an attempt to patch over all the problems created trying to graft network transparency onto a GUI/desktop system after having declared that you don't need network transparency in the GUI/desktop system. I look at it and go "But... we were doing this 20 years ago! What's making it so hard to do it today, and why are you tolerating it?".

Then again, I laugh at current Web developers struggling to implement the 3270 workstation (badly) and wonder when they're going to move to the VT100 like their predecessors did and for exactly the same reasons.

Eating the dog food

[nurb432]

I have to differ, i do as i preach and have been using VDI in some form or another since i started 'pushing' virtual machines at the office.

If *I* cant run it, how can i tell others to?

Why am I not using VDI? I have my own cloud.

[VortexCortex]

Really, I'm not interested in controlling a remote desktop. What I really wanted was my own private cloud to store and sync all my data to/from my various "clients".

I looked around and didn't find a solution that let me stream my media, control all of my home systems, have encrypted backups of my data distributed among the PCs of my friends and family, along with a native app & a web interface to rule it all.

Just s/friends and family/other offices/ to apply these needs to business.

VDI is not the solution I was looking for. A turn-key "local cloud" where I control all of the data is what I want. I've glued several FOSS solutions to achieve this, and am testing a new cross platform system of my own... Remote Desktop can kiss my ass, all I need is the data (processor speed & RAM are cheap; The "thin client" of today is a behemoth in yesterday's standards).

People just want to use all their data on all of their hardware. Ultimately we must either run our own servers or trust a 3rd party to "host" it for us. I opted for the former because the latter gives me the willies.

In hell, they use Thin Clients.

[w0mprat]

I've seen thin client networks done badly, and I think if you factor in the cost of having a large part of your business unable to work due to a single router flaking out, or your citrix server farm doing something wierd and eating everyones work, you might have eaten up any savings from purchasing and servicing traditional fat clients on desks.

An occasional one-time saving on cost is eaten up by [sometimes massively] amplified on-going cost in any downtime you inevitably face.

Suggested addendum to the powerpoint presentations I know that drive these bussiness decisions: Your network infrastructure better be damn good. You also better not think it's a great cost saving strategy deploy your thin client infrastructure to remote sites with dodgy WAN links.

Laptops as hybrid thin clients make a lot more sense - your business could get up and move. Now, I've seen that done well.

Um... "Virtual Desktops"?

[Admiral+Burrito]

I've been using vitual desktops since FVWM in the mid 90s, and it has nothing to do with what this guy is talking about. I'd think Slashdot would know better, but of course times have changed. Am I going to have to start calling it Spaces now?

Re:Some are...

[hedwards]

For banks, I think that probably ought to be required. Industries like that and places that need to tighten control of the data love VDI, as it makes it a lot harder for somebody to gain access or more worryingly leave secure data on an insecure machine.

Re:Anyone who asks this question should not be in

[caitriona81]

I'm going to call BS partly on this. Most of the business world is using basic productivity software, probably Microsoft Office, with some users needing access to an accounting package or CRM. Thin clients aren't so much about up front cost as they are about reducing long term support costs. Using thin clients in an enterprise or small to medium business environment gives you a lot of benefits to the long term bottom line. From a security perspective, you cut the "attack surface" of your network very sharply - from dozens if not hundreds or even thousands of desktops that each need antivirus, security updates, administration, and security monitoring, down to a handful of servers that you can lock down pretty tightly. From a support perspective, you are no longer managing all those desktops, you are now managing a handful of servers. You have all the data for your organization where you can make sure backups are happening, and where you can keep tabs on what data is being stored and where it's stored, so you no longer have to worry about that file with a million customer social security numbers or credit card numbers sitting on someone's desktop, where you won't find out about it until after it walks out the door. Also, with a good setup, you ease the pain of patch days a fair bit, since you don't have to chase breakage across all those desktops, just across the app servers. You remove the expectation of user control because a thin client is clearly not a desktop (the "but I can do it at home, why can't I do it here" syndrome). These are damn good reasons to go to thin clients on the desktop, even if the up front costs are the same or even slightly more, and they apply to most desktop users. Only "high-performance" application demands, like CAD, and software development need fat desktops. Now, on the laptop side of things, internet connections in the field aren't something you can count on, even with mobile broadband and wifi penetration, it's not always there, and it's not always good enough. so thin clients aren't going to make much headway there for a long, long time.

Running both fat and thin

[digitalhermit]

I keep a few Linux instances running on some VMWare and KVM based servers on my home network. The desktop systems run vncserver and I can access the sessions remotely from any system in the house. Though I run some of the same apps locally, there are enough reasons to run them on the central server.

1) The types of apps I need are not available easily on the client. For example, I use some photography related apps under Ubuntu. These are free and easily available via the Software Manager. The same quality of apps are not available under Win7. For example, there are some HDR utilities I use in Ubuntu that work quite well. Similar software under Win7 or MacOSX costs $40 or so.

2) The netbooks I've started to use don't have the power needed to run some of the larger apps. Though my main laptop (CentOS 5.5) can handle it, I have some Atom based systems that have issues running a JDE or full blown dev environment.

3) I have *many* client devices. At last count I have 10 laptops in the house. These run CentOS, Ubuntu, MacOSX, Win7, WinXP and Fedora. This is unusual for most households, but reflects the type of environment I'm seeing in smaller businesses. No matter what client I use I can run my set of apps.

A step back

[xhrit]

Using a modern thin client is pretty much like using 50s era time-sharing systems, with the exception that the modern variation slaves inferrior microprocessors to a more powerful cluster of devices, instead of slaving pure IO devices to said systems. The question then becomes if you are carrying a device that is in itself more powerful then the systems in use even 5 or 10 years ago, what advantage does connecting to 'the cloud' holds over the advancements in computing technology that originally allowed us to move away from this computing model?

Fundamentally the issue is data security and usage control. There is no advantage to the end user, only the content providers who maintain the system.

Re:Anyone who asks this question should not be in

[jkmartin]

The promise of thin clients has never been on upfront costs. The advantages have to do with maintaining the clients once they have been deployed. Think patches, service packs, O/S upgrades, memory upgrades, HD replacements, etc. With traditional desktops many of these changes can only be done by going to each machine individually. Additionally, thin clients make backup/restore trivial whereas trying to enforce data retention standards on desktops is always a battle. While these issues may not present themselves in a small to medium sized company, trust me when I say that with thousands of installed desktops there are hundreds of people dedicated to maintaining the hardware and managing the environment.

I'm not sure what you mean by "there aren't suitable thin client options for most businesses." Most of the actual business of say a bank, or an insurance company, or a web vendor, or just about any company that isn't a full fledged software developer comes down to a few apps that rarely require huge amounts of memory, the latest video card, or even a hard drive since most of those apps just run as a client and save data on the server anyway. In fact I can think of few businesses where thin clients shouldn't represent the majority or installed systems.

Re:hmm

[hawguy]

Why not just use a server? Amazon EC2 will rent you a "micro instance" Win2003/2008 server for 3 cents/hour ($21.60/month) or an Ubuntu server for 2 cents/hour ($14.40/month) plus a few bucks for storage.

http://aws.amazon.com/ec2/pricing/

Just don't do anything I/O or bandwidth intensive since you also pay for I/O and bandwidth.

Huh?

[WED+Fan]

Granted, I'm working in a highly secure environment with secure images, so we are all over the VDI for development. It allows my dispersed developers world wide organization of death and destruction to work in a large team environment while being in Europe, Florida, California, Washington, Japan, Hawaii, and Singapore. And yes, I am being completely serious.

It does allow us to provide a central pool of tools that make changes without dealing with the local machine that is controlled by another agency.

It may be old school but it works

[emeitner]

At my place of employment, 250 employee co-operative retail with three locations, I set up a 2 node DRBD/Heartbeat cluster. It is running NFS, Samba, LDAP. Clients, 42 of them, g are $275 Zotacs(Mag HD-ND01-U) running Ubuntu 10.04. I developed a disk image with everything the way we want it. It takes me 10 minutes to set up a new machine and most of that is the unboxing part. Clients authenticate via LDAP and mount NFS homes via autofs. Some apps are local such as Firefox and Thunderbird. Other business apps are accessed via A XenApp/Citrix server using the Citrix Native Linux client. And then there are the HR and Finance SAAS applications. Now the clients could just offer a RDP connection application and the Citrix server could be a server providing virtual desktops. But why? It would add a few more layers of complexity with little benefit. The client machines are cheap, fast, easy to replace. The OS is free. The user gets the performance of silicon on the desk with the storage reliability of a server in the closet.

Gaming on RemoteFX (videos)

[splerdu]

Crysis on RemoteFX
Starcraft 2 on RemoteFX

Thin is In

[pogson]

There is so much FUD in this topic. M$ and "partners" try to upsell this technology to make sure they can tax it. If you run GNU/Linux terminal servers and simple X window system clients you get all the benefits of virtual desktops at much lower costs: cheaper servers (more processes per gigabyte and no licensing fees), cheaper thin clients (no need for gB of RAM or hard drive) and better performance (files are cached in RAM on the server or retrieved by a hot RAID). I use this technology a lot. I get 5s logins and 2s opening of windows to huge apps even using old PCs as thin clients. The usual VDI solution involves one virtual machine per client, a huge waste of resources although flexible. If you want low cost and reliability keep it simple and stick with GNU/Linux. It costs about $30 per client to have a good server on-line. New thin clients can be bought for less than $50 and used ones cost nothing (old XP machines are $0). Don't listen to the FUD. Go all-in for thin clients and forget the VDI bloat. Use GNU/Linux.

Re:Why I think they may not use thin clients

[Todd+Knarr]

Pretty much. I divide users into 4 categories:

1. Ordinary users. They don't use computers, they use applications. The computer's just the plumbing needed to make the applications work. They don't know tech, they don't want to know and they really shouldn't need to know. They need their applications, and they should have as little access to and control over the plumbing underneath them as practical. Give them the tools they need to do their job and leave the maintenance of those tools to the guys over in the tech shop.
2. Specialized users. These are people who have a particular skill or ability, something they were hired specifically because they can do, and they need particular special tools to do it. These people should get the tools they need and the access they need to do the jobs they were hired for. If needed, sandbox them. Don't try to force them into the "ordinary user" mold, they were hired because they aren't ordinary users and the fact they aren't is what makes them valuable to the business.
3. Developers. These are the people who're going to be writing the software everybody else is going to use. That means a couple of things. First, they're going to need more control over the systems they're using. They're going to have to debug problems and figure out how to configure things to make their software work, and they can't do that without a lot more access than normal. Second, they're by definition going to be working with stuff that isn't part of the normal setup. They're working on the next generation of stuff, obviously that's going to involve using the next generation of tools and supporting software too. And they tend to know more about the internals than even specialized users do. They know version control and all that, and they know all about the amount of work needed to recover from losing data and they want to avoid it if possible. Give them the control, sandbox them into a development network if needed, and trust them to do their jobs.
4. Systems and network administration and maintenance. These are the techies that make all the IT infrastructure work so #s 1-3 can do their jobs. If you're worrying about controlling their access and environment, you're missing the point: these are the people who've got root, who spend their workday in the internals of the system, they've got total access and control and they can't do their jobs without it. If you're worrying about them damaging things, you've got a more fundamental problem than access control. So stop worrying and again trust them to do their jobs. They don't want to damage the network, remember they're the ones who're going to have to clean up the mess and they don't want to make more work for themselves than they absolutely have to.

The higher the level you're at, the less useful thin clients tend to be. OTOH, at level 1 thin clients can be really useful if you've got control over the networks involved and can configure it so things work smoothly. Just don't try forcing someone at level 3 into an environment intended for level 1 (or vice-versa). It won't work, and you'll spend more time patching things up and finding workarounds for problems than you'll ever see in purported savings.

Re:Reply: Mission Security or Mission Performance

[BenEnglishAtHome]

DO NOT allow security to mitigate mission performance!

You say that like it's an absolute. It's not. All security measures mitigate mission performance. It's just a matter of how much you're willing to stand and where you're willing to draw the line.

I think most of us are willing to lock the building doors at night and run AV software. Both of those security measures mitigate against highest possible mission performance, as when low-level employees without keys can't come in to get some work done during off hours or a virus starts killing machines.

I'm willing to bet that you are actually willing to accept some mitigation of mission performance in the name of security. You can't be as nuts as your post made you sound, can you?

And if that's the case, making your position by overstating it as in your post does more harm than good. Non-IT folks who insist that NO mitigation is acceptable contribute mightily to unnecessarily high tension between the IT folks (who just want to help them get their work done while avoiding some screwup that causes the whole organization to stumble) and their customers. I've known of cases where system monitoring found a really nasty virus or trojan on a laptop and immediately took it off the domain. Then I've seen the executive to whom that laptop was issued DEMAND that their computer be immediately placed back on the domain because they had work to do. Like you posted, he would "...NOT allow security to mitigate mission performance!" (well, HIS performance, anyway, and screw everybody else).

Absolutism like that is just stupid. So tell us where you draw your lines. That would be a much more helpful insight than what you've provided thus far.