Slashdot Mirror

← Back to Stories (view on slashdot.org)

Delta Air Lines Grounded Around the World After Computer Outage (cnn.com)

Posted by msmash on from the computer-glitch dept.

Delta Air Lines says it has suffered a computer outage throughout its system, and is warning of "large-scale" cancellations after passengers were unable to check in and departures were grounded globally. The No. 2 U.S. carrier said in a statement Monday that it had "experienced a computer outage that has impacted flights scheduled for this morning. Flights awaiting departure are currently delayed. Flights en route are operating normally." A power outage in Atlanta at about 2.30 a.m. local time is said to be the cause of computer outage. CNN reports: "Large-scale cancellations are expected today," Delta said. While flights already in the air were operating normally, just about all flights yet to take off were grounded. The number of flights and passengers affected by the problem was not immediately available. But Delta, on average, operates about 15,000 daily flights, carrying an average of 550,000 daily passengers during the summer. Getting information on the status of flights was particularly frustrating for passengers. "We are aware that flight status systems, including airport screens, are incorrectly showing flights on time," said the airline. "We apologize to customers who are affected by this issue, and our teams are working to resolve the problem as quickly as possible."

49 of 239 comments (clear)

  1. Incompetent IT by sjbe · · Score: 5, Interesting

    A power outage in Atlanta at about 2.30 a.m. local time is said to be the cause of computer outage.

    Kind of amazing they haven't figured out how to make their system redundant, distributed, and/or robust. It makes zero sense that a power outage in Atlanta should have any effect on a flight going from Salt Lake City to Seattle. If this was the first time something like this had ever happened I could see them being caught off guard but stuff like this is nothing new and multiple airlines have been affected. You would imagine that having a robust network would be job number 1 for their IT people since one failure like this can easily cost tens of millions of dollars.

    1. Re:Incompetent IT by Anonymous Coward · · Score: 2, Insightful

      More than likely an underfunded IT department. IT people often know what's needed for a reliable system, but the higher-ups just seem them as a cost center and won't provide them with a sufficient budget.

    2. Re:Incompetent IT by NotInHere · · Score: 5, Insightful

      Probably the higher-ups who decided that redundancy is not required are long gone and doing something different now. They could show off how nicely they could cut so many costs to their bosses and probably got a big bonus for the two quarters they were employed before going to the next job.

    3. Re:Incompetent IT by mjwx · · Score: 5, Insightful

      A power outage in Atlanta at about 2.30 a.m. local time is said to be the cause of computer outage.

      Kind of amazing they haven't figured out how to make their system redundant, distributed, and/or robust. It makes zero sense that a power outage in Atlanta should have any effect on a flight going from Salt Lake City to Seattle. If this was the first time something like this had ever happened I could see them being caught off guard but stuff like this is nothing new and multiple airlines have been affected. You would imagine that having a robust network would be job number 1 for their IT people since one failure like this can easily cost tens of millions of dollars.

      I wouldn't be so fast to lay this at the feet of IT.

      I'm certain they wanted to make it robust, distributed and redundant but that all costs money. When PHB's with MBA's see IT as a cost centre, they see all this redundancy as "waste" to be cut back. Budgets are reduced and so are capabilities.

      This is the kind of stupidity I see from American companies all the time. Here in Europe, computer downtime like this for a mere hour costs millions of pounds for an airline as they become liable not just for refunds, but also for extra costs as travel insurers pay large sums of money to get people where they're supposed to go. The reinsurers will then send their lawyers to present the airline with a nice bill.

      --
      Calling someone a "hater" only means you can not rationally rebut their argument.
    4. Re:Incompetent IT by Anonymous Coward · · Score: 2, Interesting

      AFAIK pretty much all airlines run scheduling software from a single company (I remember reading an article about how Southwest moved from an in-house system to the same as everyone else due to complexity issues), so it's not so much the airlines but this 3rd party that seems to have somewhat fragile software.

      Still though, this begs to be something hosted in a datacenter/cloud with an online shadow in the background of another location replicating everything and ready to take over at a moment's notice, or something similar. Pretty standard these days, but airlines are so tight for money that they end up sometimes shooting their own feet...

    5. Re:Incompetent IT by tripleevenfall · · Score: 4, Funny

      "Johnson, get in here"

      "Yes sir?"

      "You said you apped this in the cloud. How does the cloud go down?"

      "Well, er... "

      "Where are the damn synergies? I was told there would be synergies!"

    6. Re:Incompetent IT by tripleevenfall · · Score: 4, Insightful

      For any IT discussion on slashdot, as time T increases, the probability of a neckbeard blaming "MBAs" approaches 1

    7. Re:Incompetent IT by Kierthos · · Score: 3, Insightful

      From the sound of things, I'd say the cabbie played you. I wouldn't be a bit surprised if this is a scam he runs regularly.

      --
      Mr. Hu is not a ninja.
    8. Re:Incompetent IT by jbengt · · Score: 3, Insightful

      On one hand, airlines are not swimming in cash so everything requires a tedious business case.

      On the contrary, after going through bankruptcies in recent years and shedding debt, pensions, etc., plus with the current low fuel prices, most airlines are currently swimming in cash.

    9. Re:Incompetent IT by Kjella · · Score: 5, Insightful

      Kind of amazing they haven't figured out how to make their system redundant, distributed, and/or robust. It makes zero sense that a power outage in Atlanta should have any effect on a flight going from Salt Lake City to Seattle. If this was the first time something like this had ever happened I could see them being caught off guard but stuff like this is nothing new and multiple airlines have been affected. You would imagine that having a robust network would be job number 1 for their IT people since one failure like this can easily cost tens of millions of dollars.

      Scaling out is easy if you're Facebook or Google and nobody cares about a perfectly consistent truth. If you run transaction processing like airplane tickets people damn well like to know if they got their ticket booked and Delta want to know if they got paid, they want ACID compliance not "eventual consistency" NoSQL. That usually leads to mainframes and 99.99999% uptime systems with redundant power, network links etc. not clusters and distribution. Maybe also a hot failover next to it hooked up by a fat pipe. But if shit hits the fan big time in the data center, it goes down. Doesn't look like it took them *that* long to scramble what I assume is their cold backup online.

      The passengers aren't happy but hey sometimes shit happens with planes or crew or airports or whatnot leading to delays and cancellation. I've had a rescheduled flight and night in hotel because KLM got delayed and weren't allowed to liftoff because the destination airport was closing, it sucks but this is a fact of life for airlines. It becomes a big story because it happened to lots of people at once, but over say a year how how big a deal is it really? I'm sure they'll do a post mortem but I'd be surprised if they moved away from a centralized architecture.

      --
      Live today, because you never know what tomorrow brings
    10. Re:Incompetent IT by JaredOfEuropa · · Score: 2

      It's not always due to cost, sometimes it's plain stupidity. I did some work for a company that experienced a similar outage (not an airline company but one equally dependent on their datacenter). They had a new DC and spent good money on it, with redundant systems and power, top notch fire suppression systems, spare no expense. One day the mains power failed, the backup generator dutifully kicked in, died, and the secondary backup tried to start and failed. Turns out they had 2 backup generators. Hooked up to the same Diesel tank. Which was empty. The cost of adding a second tank would have been trivial, not to mention the paltry cost of having someone periodically check that there actually is some fuel in there.

      By the way, this was a European company.

      --
      If construction was anything like programming, an incorrectly fitted lock would bring down the entire building...
    11. Re:Incompetent IT by shuz · · Score: 2

      I know people get upset about these kinds of things and airlines have really high public exposure to failure. But processes do fail. I don't work for Delta and don't have any affiliation with them. But I work in the sector and have felt the sting of system failure. Don't be quick judge and hindsight is 20/20. An example of what could have caused this is a complex network + storage device failure. It is reasonable for devices that never get turned off to experience failure to turn on if they ever lose power. I'm sure Delta has a DR site but the DR site may also have experience failure if it was in close proximity to the main site. Also failing over to a DR site can often take many hours. This is all the price to be paid for the efficiency of computing. A year from now few people except for employees at Delta will even remember that it happened.

      To all the folks around the world affected by this, hang in there. If they are offline after 24 hours then it is probably time to question what is going on. To the fine IT folks at Delta, I've been there good luck to you and don't forget to rotate out folks for resting. A freshly rested brain works faster.

      --
      There is or can be built a machine that can simulate any physical object. -Church-Turing principle
    12. Re:Incompetent IT by Voyager529 · · Score: 2

      "Where are the damn synergies? I was told there would be synergies!"

      Johnson: "Sir, the synergies are configured, just as you ordered. When one part of the system goes down, the whole system goes down. They work together that way, just like you asked."

    13. Re:Incompetent IT by ilguido · · Score: 2

      As far as I can tell the surface is a great machine. I've known like 50 people who own them and they've all said they love it.

      Now tell me how many of them were aircraft pilots, air stewards or the likes.

      Maybe you just have an irrational bias against anything Microsoft because you don't like some things about them?

      I have a very rational bias against silly business decisions, mr. Coward.
      I am pretty sure that the money spent on those 11,000 tablets could have been better spent on backup servers or other essential IT equipment, not on something that looks like a pure marketing decision.

    14. Re:Incompetent IT by MachineShedFred · · Score: 2

      Swimming in cash or not, if your entire enterprise hits the pause button stranding thousands of people in places they don't want to be because of a failure of your disaster recovery / business continuity plan, that's a universally bad thing, and an abject failure to plan or realize the potential of a multi-hour data center loss.

      Someone fucked up.

      --
      Slashdot still doesnâ(TM)t support Unicode after it was added to the HTML standard in 1997.
    15. Re:Incompetent IT by Solandri · · Score: 3, Insightful

      I used to live in Point Roberts, WA and power was very unreliable. I worked from home half the week, so I bought two UPSes (one for the computer, one for the cable modem and router), and kept a charged car battery in the house with a 12V inverter which would give me by my calculations about 10 hours on my laptop (on top of my laptop's 5 hour battery). I had plans to buy a generator as well.

      One day the power went out. The UPS kicked in. Power usually came back within a couple minutes so I kept working. After about 10 min, the UPS began warning it was nearly drained. So I shut down the desktop and switched to my laptop. Unfortunately I hadn't charged it so I got a low battery warning after about an hour. I lugged out the car battery, clamped on the leads for the inverter, plugged the laptop into the inverter, and fired it up. I was back in business again.

      Got on the laptop, logged in to work. 30 seconds later the Internet went down. No cable TV as well. The battery keeping the cable company's equipment powered must've died.

      You can make all your systems redundant, distributed, and robust. But unless you control all the network lines between you and all the places you need to communicate with, you're not in total control over the reliability of the system. (And if you're curious, I was without power for 3 days. I had to move my refrigerator's contents outside to keep them cool since it was winter, and use a wood stove to keep the house warm and cook my meals. I dropped plans to buy a generator since there was no point if my Internet connection would only last about 90 minutes.)

  2. Re:Shouldn't have upgraded to W10 ! by NotInHere · · Score: 4, Insightful

    Even IF one of your data centers has a power outage (which should not happen as you should have backup generators and batteries that give power until the generators are spun up), you should always have at least ONE other backup data center to take over if something really fails for you.

  3. That's about $100 Million per day in lost revenue by billrp · · Score: 3, Interesting

    You would think they would have a backup for the backup power. But like someone earlier said, this outage sounds suspicious.

  4. Report: Fire destroyed generators by McGruber · · Score: 4, Informative
    A fire at the datacenter caused the outage, according to a post on post from "walterD" in Flyertalk.com's "Delta computers down ..." thread:

    According to the flight captain of JFK-SLC this morning, a routine scheduled switch to the backup generator this morning at 2:30am caused a fire that destroyed both the backup and the primary. Firefighters took a while to extinguish the fire. Power is now back up and 400 out of the 500 servers rebooted, still waiting for the last 100 to have the whole system fully functional.

    1. Re:Report: Fire destroyed generators by pz · · Score: 4, Insightful

      Here's the thing that amazes me.

      500 servers.

      The airline runs on 500 servres.

      I was part of an early social networking site that, at its peak had 20 M users, with about 10K actively using the site at any given moment. We ran with 200 servers and had really very excellent render time (this was getting on to a decade ago, and if our page loads ever got above 1 second it was considered a near crisis; our email/messaging system, that I wrote, handled 150 M messages per day). It just can't be that hard to run an airline site compared to running a web site that peaked at Alexa 100. They need 500 servers? Five HUNDRED servers? And with the resources of a multi-billion dollar company, they're STILL ALL IN ONE LOCATION?

      They need a new IT team. Or a new management to give them the support they need.

      --

      Put my fist through my alarm clock with its ding-dong death inside my ear. - The Blackjacks.
    2. Re:Report: Fire destroyed generators by bfpierce · · Score: 3, Insightful

      "with about 10K actively using the site at any given moment."

      You actually think Delta only has 10k actively using their systems at any given moment? They probably have that many ticket counter staff logged in, not even counting customers, technicians, pilots, and so on.

      Yeah, I get the 'why is your backup in the same building as your primary', but they probably need 500 servers.

    3. Re:Report: Fire destroyed generators by Critical+Facilities · · Score: 4, Insightful

      Interesting. I manage Enterprise Data Centers for a living. My expertise is the Facility Infrastructure (generators, UPS, switchgear, etc). What's being described in that post you linked to sounds very possible. I'd just about lay money down that this was a failure in an Automatic Transfer Switch. And as others have said, I pretty much guarantee that due to the corporate attitude of "facilities is just an expense center on a spreadsheet", there's been pressure to trim costs........including decreasing frequency of predictive maintenance like Infrared Thermography.

      A well maintained ATS should be able to function flawlessly for many, many years (like 20 years). To have faulted so badly that it took out the whole switch (which would definitely make the primary and generator feeds inaccessible) sure sounds like deferred or non-existent maintenance to me.

    4. Re:Report: Fire destroyed generators by swb · · Score: 2

      Calm down. Your social media site wasn't flying a half million people around the world in pressurized aluminum cans every day.

      Not even counting future travel reservations or queries, how many DB transactions do you think they handle per passenger per day alone? And none of that counts any other potential transactions, such as service info, flight data such as aircraft telemetry, employee data, regulatory information and so on.

      500 servers sounds almost too low, especially when you consider that probably more than a few are either legacy systems or run some kind of specialized software to move data between new systems and external legacy systems.

    5. Re:Report: Fire destroyed generators by raftpeople · · Score: 5, Insightful

      "It just can't be that hard to run an airline site compared to running a web site that peaked at Alexa 100" - You clearly have no idea what you are talking about. Go learn about the complexities of running an airline, the different software required, the number of users and systems supported, etc.

    6. Re:Report: Fire destroyed generators by cdrudge · · Score: 2

      What exactly is "a server" though? A server can be anything from a single processor with a reasonable amount of memory to many multi-proc multi-core beasts with more memory than most people have disk space. Toss in virtualization and does 1 server = 1 physical machine, or 1 server = 1 virtual machine?

      Being an older airline, I'd be surprised if there wasn't one or more large mainframes in the mix as well, something your social networking site probably didn't have.

    7. Re:Report: Fire destroyed generators by Critical+Facilities · · Score: 4, Informative

      Well, to be clear, I'm just speculating here, but I'm not implying that the GENERATORS blew up, I'm speculating that the ATS blew up. It is a very common topology to have multiple Generators connect to one main bus, and then have that bus connect to the Data Center via an ATS. In other words, yes, there is/are redundant Generator(s), but they all connect to one central bus, which then connects to the UPS Systems via the ATS and other switchgear.

      The failure rate of ATSs is pretty low (when they're maintained), so it often becomes a value engineering decision during design. Yes, you could have each Generator connect via its own ATS, thus distributing the risk, but in so doing you increase your constructions costs, increase your maintenance costs, etc. The bean counters don't like that, and it becomes hard to convince them that it's worth it when you can't come up with statistical proof that a failure of the ATS is likely.

    8. Re:Report: Fire destroyed generators by silas_moeckel · · Score: 2

      Once the fire dept is onsite all bets are off. They will kill power from the other generators etc to insure crew safety. This is where prep is key so that they feel safe working an electrical fire without killing all power.

      --
      No sir I dont like it.
    9. Re:Report: Fire destroyed generators by lamer01 · · Score: 2

      I worked for one of the largest airline reservation systems. It is a very complicated space, many degrees of complexity above your run of the mill social networking website. Unfortunately, the underlying technology goes back many decades (it is mainframe based, I am not sure these other 500 servers they mentioned do). I think that with the newer tech out there, it could probably be re-engineered to be totally fault tolerant but it would be a massive undertaking in $$$$$. To give you some clarity of the complexity, the system even calculates the weight distribution of planes as passengers check in and clears them for take off accordingly.

  5. Mainframes in the airlines by Zondar · · Score: 2

    Last time I worked with the airline industry, they were still heavily reliant upon mainframe systems. That means putting redundant equipment at diverse datacenters is more costly. It's not like spinning up a new rack of x86 VMWare servers.

    1. Re:Mainframes in the airlines by shuz · · Score: 2

      Many planes are leased or rotated off of budget after a certain maintenance schedule. Airlines run very thin profit margins despite how it may appear. Think about all the choices you have when flying? The Northwest airlines portion of Delta used to run mainframes in Minnesota. I don't know what they use in Atlanta. Mainframes can be much more efficient than a bunch of Oracle/Microsoft DB's running on VMware. It isn't a trivial task to fail over to DR for most companies. One of the scariest things are DB sync lag. If the database in DR becomes too far behind the primary DB then hundreds if not millions of people that purchased tickets, transfers, baggage logistics etc might be lost. The chaos from that might well outstrip the chaos from delaying all flights until the primary DC might be recovered or at minimum networking from the primary DC/Databases can be restored to the DR site and a 100% sync status can be confirmed. Even if everything seems perfect, going to DR is really scary. Please take everything that a company does in this situation IT and Management wise with a massive grain of salt. One last thing that is really hard to swallow as an airline customer. You don't have the "right" to fly. You have a privilege. Any business has a monetary incentive to give you that privilege. It would be bad business otherwise. But at the end of the day no business has the legal responsibility to serve you. With the exception of health care and health insurance in the US.

      --
      There is or can be built a machine that can simulate any physical object. -Church-Turing principle
  6. Fire when not ready by XXongo · · Score: 2

    Even IF one of your data centers has a power outage (which should not happen as you should have backup generators and batteries that give power until the generators are spun up),

    Actually, what I'm hearing is that a fire in the backup generator took out the primary generator. So, this is a case in which the backup was the problem, not the solution.

  7. Backup data center? by sjbe · · Score: 5, Insightful

    Actually, what I'm hearing is that a fire in the backup generator took out the primary generator.

    Shouldn't have any effect on the BACKUP DATA CENTER. One facility can go down. It happens. It should take a thermonuclear war to take out several if they are doing it right.

  8. For those claiming bad managers and saving money: by Anonymous Coward · · Score: 4, Interesting

    Most of y'all probably don't know what you're talking about. Here's what's going to happen:

    1) Delta will file a loss-of-business / data system failure claim after things are stable again
    2) They'll haggle with their insurer long after this little story is forgotten (and yeah, lots o' heartache today, but it's still probably going to be little.)
    3) Delta will get a settlement of some dollar amount
    4) Some bean counter will eventually tally the cost of that policy versus the payout versus how much all those redundant backups would have cost. The accountant will most likely conclude that it was a smart idea to have bought that insurance policy and NOT paid out the multimillions of dollars IT was asking for in redundant systems.
    5) The insurance company will note the payout as a blip on its financials (probably already expected by the actuaries.) Insurance company will keep making profit.

    The little air traveller is screwed and blued, but Delta and its insurer will keep flying. Doing business today without a data loss rider on your business insurance would be the really stupid idea, much more so than wasting money on redundant systems that are more expensive than said rider.

  9. Surface vs Actual by 1080bogus · · Score: 2

    While on the surface it may appear their IT department is "incompetent" as one person pointed out, other factors could have contributed to the outage. Management not approving proper tests to be done or another datacenter in a completely different location. Improper maintenance on the generator(s). While IT may request things be done or placed a certain way, doesn't mean the facilities team care or understand why and do it their own way anyways. Like why have two generators located right next to each other? They probably shared the same resource for operating as well.

    It takes an event like this for people to realize the importance of listening to the people who implement and maintain their infrastructure. I'm sure anyone who saw this happening is digging through their memos and pulling out the multiple requests for disaster recovery solutions to prevent these things. Not to show them, haha I told you so, but to cover their ass when they start looking for someone to fire.

    It's easy to point out IT as the scapegoat but sometimes they just have to deal with what they're given by the higher ups.

  10. Re:Arguing for resources is part of the job by fnj · · Score: 5, Insightful

    Bullcrap. A boo-boo this massive is BY DEFINITION a management fuck-up. It is management's [only] job to ensure all departments are doing their jobs competently. They don't get to say "well gosh, engineering told us they knew what they were doing". Yeah, it isn't EASY, but it's why they get the obscene compensation levels.

  11. A version of Godwin's law by sjbe · · Score: 3

    For any IT discussion on slashdot, as time T increases, the probability of a neckbeard blaming "MBAs" approaches 1

    Yeah, it's sort of a riff on Godwin's law. If you blame "MBAs" for a problem, that person has no fact based arguments left so the argument is over and the person doing it loses the argument. It's basically scapegoating and tribalism at its worst.

    Management is a pretty easy target. Management has to make decisions with imperfect information (like playing poker) whereas engineers are used to working with greater certainty (more like playing chess) and it's hard for many of them to wrap their head around the difference. Engineers who don't actually know any better seem to think MBA is shorthand for management incompetence. Never mind that a MBA is a degree, not a person or even a category of people. It's as stupid and incoherent as saying CS = incompetent programmers. I happen to be an engineer but I'm also a certified accountant. I have degrees in both engineering and business and I use both in my day job running a manufacturing plant. I can say with absolute confidence that there are just as many engineering school graduates who are bad at their jobs as there are business school graduates who are bad at their jobs. I run into both routinely. And just as many who are good at their jobs as well. Just because you may have run into some of the bad ones doesn't grant the right to paint the rest with the same brush.

    1. Re:A version of Godwin's law by torkus · · Score: 2

      If you want to throw blame around...let's give it to the 1% crowd.

      I'll even justify it...watch!

      Redundancy and proper backup costs $. Odds of occurance are quite low and pointy-haired people have this habit of cutting budgets to meet spending targets and save money, and all that. Why? Oh, because their bosses say so...the execs and board. Why? Because the company can get an extra $xyz in EPS by cutting budgets back and taking the low % risk on themselves in the short-ish term.

      So yeah, we close down the secondary datacenter and justfiy it with getting a redundant backup generator or something ... save a chunk of money, improve the company's margin by a smidge (which is considered impressive given how much they've already squeezed) .. and the stock market reacts to the 'innovative savings' positively which raises the stock price by a bit.

      That 'bit' matters when you own 6- or 7-figure $ in stock of that company...and your yearly $millions bonus is tied to the same. It's the same reason companies habitually gut their employee base ... not because the company is about to be insolvent but because their stock price sucks (generally due to not having 'enough' profit). /rant

      --
      You can get rich if you own a politician, but you have to be rich to buy one in the first place.
    2. Re:A version of Godwin's law by jbengt · · Score: 2

      Management has to make decisions with imperfect information (like playing poker) whereas engineers are used to working with greater certainty (more like playing chess) and it's hard for many of them to wrap their head around the difference.

      As an mechanical engineer in the construction industry, I can testify that working with imperfect information is the normal situation for us. And that "management" often requires engineers to boil down extremely imperfect and uncertain cost data into a singular "hard" number like Return On Investment so they can fool themselves into thinking they are making a fact-based decision. (OK, the better ones realize that there's a huge range of possible outcomes depending on external factors, and try to take account of error bars and the like, but those decision makers are relatively rare.)

  12. Re:For those claiming bad managers and saving mone by NatasRevol · · Score: 2

    Accountants don't have a good idea of lost business opportunity or lost customers.

    So while the basics may make financial sense, that doesn't actually mean it was a good idea.

    --
    There are two types of people in the world: Those who crave closure
  13. Sounds like a problem with flight planning by Ami+Ganguli · · Score: 5, Informative

    I used to work on one of these systems.

    The flight planning system takes inputs from several sources - weather forecasts, notices about airspace closures, etc. (NOTAMs), and booking info - and creates an optimal flight plan for the aircraft.

    A modern airline doesn't have enough flight planning staff to take over manually if the system fails, so if your flight planning goes out, your fleet is gradually grounded.

    The large number of servers is due to the optimization problem. You need to take into account the flight conditions and fuel costs in different locations in order to decide your route, altitude, and fuel loading. Since fuel is a huge percent of the operating cost of the airline, it pays to invest a little extra computing power into optimizing these and save a bit fuel on each flight.

    Our system had lots of redundancy but, with all the data feeds, there are lots of moving parts. It's not hard to imagine a scenario where, for example, you get everything transferred over to your disaster recovery site, but for some reason the weather feed isn't coming in and you can't make flight plans.

    --
    It is tempting, if the only tool you have is a hammer, to treat everything as if it were a nail. - Abraham Maslow
  14. Paperless Tickets by Vlad_the_Inhaler · · Score: 4, Interesting

    This story brought to you courtesy of paperless tickets. Yes they are cheaper, yes it is simpler if people can print their own tickets, but the IT has to be up and running.
    I remember an airline IT outage back in September 2004, there was a bug in the OS's error-handling routine for a particular class of error. This had all been tested with this particular OS level and had worked, but they had been forced to change the OS configuration to accomodate some new software and the bug was in place. Moving to new discs required a reboot, an additional configuration error caused problems. If it had been fixed within (I think) 90 minutes all would have been fine. The outage was 8 hours.
    Passengers turned up at the airports with their paper tickets and were allowed to board. Any pre-allocated seating was ignored. People were laughing about flying the way things used to be, a good time was had by most.

    Then came paperless tickets. The next outage had effects more like those we see in this case.

    --
    Mielipiteet omiani - Opinions personal, facts suspect.
  15. This is unadulterated bullshit by HBI · · Score: 2

    Of course it's the MBAs fault. Their very raison de etre is calculating the costs of additional redundancy, and comparing that against the costs of a global operations failure and the ensuing loss of business due to carrier unreliability. Then, presenting this data to a decision maker for action.

    There are only two ways that they can get off. One way is if the decision maker chose to accept the risk, knowing it fully. The other way is that if the IT department didn't advise them of the risk. I evaluate the chances of the IT department being dumb enough to not know what would happen as near zero.

    You're left with MBAs who failed to present the business case properly or a CEO who is a retard. Choose one.

    --
    HBI's Law: Frequency of calling others Nazis is directly correlated with the likelihood of the accuser being Communist.
    1. Re:This is unadulterated bullshit by schnell · · Score: 2

      Just out of curiosity, is anything ever IT's fault? Or is it always the evil MBAs? Is there any chance that we, the collective Slashdot audience, have absolutely no clue what the internal funding, competency, vendor choices and strategy of Delta are?

      --
      "95% of all Slashdot .sig quotes are incorrect or completely fabricated." -Benjamin Franklin
  16. Re:Arguing for resources is part of the job by Nkwe · · Score: 3, Insightful

    Or they ran the numbers and calculated that even if they have an outage like this, the cost of that outage would be less than the cost of preventing it. If all you care about is the bottom line, you might not care if you inconvenience a bunch of customers for a few days.

  17. Single data centre for critical resource? by MarkH · · Score: 2

    Blimey I wouldn't do that and running a bog standard stream service never mind an airline with 100 million a day of revenue.

    500 servers is about 50 racks. About 500,000 a year plus about 2,000,000 for kit and 4,000,000 for software and licenses and 250,000 for interconnect . So capex 6,000,000 and opex call it 1,000,000 per annum.

    I normally rate a major dc failure ( more than 10min ) at about once every 5 years.

    Easy business case.

    Also generator and ups fail over is tough to test with one dc. Which hit this one bad.

  18. Insurance by sjbe · · Score: 4, Informative

    Without Federal requirements there is no way a corporation is going to spend that kind of money.

    A few failures like this one and they'll dig into the couch cushions to find the change for it. Having a backup data center for stuff that will shut the company down is not exactly a tough thing to justify. This shutdown alone would probably justify the cost in a single day.

    They have legal protections in place to assure they retain their terminal slots, so while they aren't making money now they won't lose in the long run.

    Perhaps but if they managed their IT properly they wouldn't have to lose money now. They can buy the insurance or they can take the risk of serious illness so to speak. Their choice and their funeral. Sounds like they rolled the dice and came up snake eyes today.

    The only businesses with total data recovery sites and plans to actually use them are Banks, and that is because they are required by the FDIC.

    Not true. Some medical practices have them. Some internet firms have them (at least for the mission critical stuff). Some bits of the military and government have them. Insurance companies have them. Stock exchanges have them. And there are more as well. If it's valuable enough you have a backup data center of some sort.

  19. Re:Arguing for resources is part of the job by sjames · · Score: 2

    It couldn't possibly be that they predicted exactly this and presented it clearly to upper management who then decided they could get a really fat bonus for keeping costs down and deploy the golden parachute before the inevitable disaster.

  20. Re:Shouldn't have upgraded to W10 ! by Kreplock · · Score: 2

    Somebody has lot's of 'splaining to do, surely. Power up the deflectors.

  21. Re:application recovery vs infrastructure recovery by Anon-Admin · · Score: 2

    Off the top of my head I can name over 20 companies that have full failover to a backup DC. One of them is an Airline that everyone knows the name of.

    Hell, I have configured stretch clusters for companies so that in the event of a DC failure the secondary DC is available with 0 down time and the failover is automatic. So it is done, it is normal operating procedures/best practices, and there is no reason the SECOND LARGEST AIRLINE IN THE USE IS NOT DOING IT!!!

    If you want to argue that some small company of 1000 people is not doing it that is fine but there is no excuse beyond management failing to do their job for this one. I think the board needs to look into it and start cutting people from the top down.