I work for a, blah blah blah... thousands of servers.
Try including the hw platform and or model. Try to group servers in sub domains.
ent45001.web.foobar.com
ent45002.web.foobar.com
ent65001.db.foobar.com
ent45002.db.foobar.com
ult10001.snmp.foobar.com
ult10002.snmp.foobar.com
ent65001.backup.foobar.com
ent45002.backup.foobar.com
If you want to add location stuff too that is ok, but try to keep the names simple. 8 characters is fairly restricitive, so you may want to create an exception for the aix servers or whatever.
Also, mapping secondary names to the machines/apps will be useful, so ent45002.web.foobar.com might also be www1.foobar.com...
Forget about rack info if you want it to scale and have memorable names. ent45002.web.foobar.com can be remembered but e4us15a3 is just crazy.
If all you have is the machine name to find a server you have bigger problems, IMNSHO. Buy a program like Action Remedy (AR/Remedy) or just setup a webpage/db so people woth servers can add the info about their servers to a central location... Be sure to keep some kind of secondary copy (hard copy is better in case of network outage, you get the picture?)
If you have tons of info in the names, be sure to disallow ZONE TRANSFER on your dns or else you will be providing the ENEMY with a map to you network in a few minutes...
come up with standards for models, applications, numbering, etc. Refuse names like goofy, mickey, etc, or the whole thing will be much less useful.
i.e.: Compaq = cpq Sun = Sun IBM = IBM Sun Enterprise Server = Ent
I could go on, but you know the models you have and the abbrevs you'd like.
Allow 2 or 3 chars for numbering.
Create sub domains for each application: web db ldap smtp
make up ones to fit each application or hw-implemented app (loadbalancer/network filer, etc)...
Hope this helps. Be sure to SPAM everyone in your company, and hold open discussions, but come up with something fast, and make it COMPANY POLICY so admins have to follow it and rename their boxes if they don't follow it initially...
and name your network ports the same as the machine name... that helps too.
I have owned 2 burners, and the external HP one is DEAD. I used it for about 6 months and now all I get is a hardware error, which won't go away, no matter what system I hook it up to...
HP is a cool company, but my experiences have all been kinda weak...Their servers had (and may still) PLASTIC wire management for the power, kvm and network cables. I am sure they saved a buck on that, but it showed.
Can you imagine a racks worth of these running virutal beowolf clusters?
Seriously:
200 servers per rack. Let's say 2 virtual nodes per box, that's a 400 node cluster in a rack! Bammmmmm!!!!
And with a NAS on the backend you could use 200 small unique root partitions, and just about shared everying for content and common binaries.
"quote from article"
Richeson said the architecture provides for clustering - Racemi expects to be popular in Beowulf circles - and fault tolerance - a spoiled blade falls over to its mates and can be hot-swapped out - and reliability - there are no moving parts except the two fans per blade.
"/quote from article"
"off topic, but I hope you agree"
I have always wished for something different though. I use a standard desktop environment: GUIs, an OS, storage, connectivity, input and output devices... But as I upgrade my machine I am tied to the hardware that I can fit in to one box. I wish I could just add some new stuff to my desktop without being limited to one machine.
I know client/server does all this, but I want to jsut add a mahcine to my "desktop" and get better perfomance and capacity,etc.
What I really want is this:
A desktop environment which behaves like a single machine. A desktop which uses local and remote resources seamlessly. A desktop which I can add processing-power/storage/etc to by simply turning up another box and adding it to my environment.
[#mydesktopconfig
groupmembership=yes
headless=yes
stealconfighost=10.10.10.3
stealhostauth=""
#cpu-power - auto will try to find cpu speed automatically and guess rating (1-100000)
cpu-power=233
#netcon - auto will try to rate network speed automatically
netcon=125
continent=africa
locale=921
#remotestatehost=
maintainlocalstate=true
#insertfakesettinghere
all_your_cpu_are_belong_to_us=true
]
Then I would be happy. I could always by another mahcine and ADD it to my current config gaining everything I bought...
As someone who works for the company with the largest install base of MSSQL I have to say you will see good uses of a database and poor uses of a database application. Every had a SQL perform slowly after upsizing from Access? Try turning off Select-into-bulk-copy.
Some DBAs think it is fine to update some code without a backup first. Some think it is cool to just publish new code without testing it, because that makes them more efficient.
While these often don't cause problems, they do sometimes. Often they run to their boss pointing the finger at US (we host their server, they generally admin it).
Anyone running a critical website knows better than to deploy untested code. And this is just for a damn website. This is not nuclear material they're are tracking, it's your order for toilet paper you placed online!
Will Slashdot and it's readers get a grip? Even lazy admins of open source apps can make mistakes or deploy broken code or take short-cuts in general!
Please set your safetys to ON prior to blaming SQL or MS for all the lame admins short-comings...
Wouldn't you all have been smart enough to find a bug in a closed source app like the one used here? You are smart right? So, don't blame the car for going off the road when you had a 12 pack for lunch and a speed-ball for the long ride home! Or for that matter, the Cop who put you behind bars afterwards.
I rather liked the VIDEO of the couple gettin' it on in the upper deck at a ball game.
1 - 2 tickets to Major League Baseball game $60
2 - hot dogs and beer for you and girl friend $22
3 - the video of you fucking her, on the Internet - priceless!
I think you changed too much from the original problem to claim 100% accurate guessing. The guessing needs to happen at once, without the advantage of "turns".
In your game, if the first person sees the same color hats on the other 2 guys, what does he use to guess 100% accurately his hat color (because passing would indicate different color hats to the other guys!)???
Re:Microsoft != bad software (Mod parent note up)
on
Live Streaming Video?
·
· Score: 1
I checked out that story and it had a banner add for a DELL server. If you try to customize the server, you'll notice the default configuration is missing an OS!
I seem to remember a/. story in which M$ was calling companies who sell PCs without an OS practically criminal. I find it strange how MSNBC and DELL are promoting a config that M$ is publically against.
And another thing, the article talks about slumping OS sales causing slumpling revenues...
The supporting argument for how this helps them (IMHO) is in the stories you'll never now about or mysteries which will forever remain unanswered. I am sure they know how the data could be linked and hurt their goals... which is probably why the data is used in such a way that they keep the sources safe from outside discovery.
Someone shows up dead, "hmm, he was a nice guy without an enemy..."
Or, faction A defeats faction B, b/c they got the drop from information originally sourced from a Backdoored Appication or Operating System (BAOOS) that the NSA "leaked" to them.
I could not agree more with your sentiment, Mr. Flibble.
I knew a high school teacher who had a good drill he would use early in the semester, to teach a lesson about privacy and conforming . The drill was to hand out index cards to each student, then ask the following type of questions, each getting slightly more personal... "Write down your name... Write down your age... SS#, parents names, home phone number, virginity status, parents...yadadada.
The end of the exercise usually involved a student who was begining to get uncomfortable answering those questions, on paper, for use by a teacher(the intended response), and the scripted answer was, "Ahha! OK, rip up the index cards, and think twice about giving others your personal (private) info.
We (everyone) need to value privacy and the ability of the individuals to remain "private" if they so desire.
When the NSA, or some other party, gets to embed their wishes in commercial software (backdoors), the ability to remain "private" if you run those applications is gone. Unattainable.
We need names of apps and good reverse engineers, and the original coders who have the know.
How come we don't see postings about networks that act strangely and mysteriously, say, sending packets to an nsa.gov box? Wouldn't firewalls detect this type of thing and log it? Or maybe they send the info back to microsoft or something so the traffic looks harmless. It kind of reminds me of Real Media player GUID, MS's Office GUIDS, netscape's SmartDownload tracking features...
The threat is real, it is a matter of to what degree we are being monitored and cataloged.
So they have the ability to target ads for things you might like or have shown an interest in previously. big deal, right?
now suppose your mom is visiting and there are nothing but 1-900-cum-on-me ads. Or ads for guns and rolling papers when the social worker supervising your adoption drops by for the weekly visit. Maybe they even realize that your TiVo is sending these ads on purpose.
I'd personally rather hit mute when the lame ads come on or change the channel to something more to my liking, instead of having the targeted ads.
One of the things I like about t.v. is that it is a one-way medium. With TiVo it no longer is.
plus, i can't see paying a recurring fee for this or allowing someone elses device (TiVo's) to make phone calls back to the mothership on my behalf. How hard would it be to pack a microphone in to one of those things and have it use filtering software looking for key words like assassinate and then reporting that back to 'big-brother'?
I have been meaning to write a script to find default installs of mssql. The reason is the password is blank by default. Mssql comes with a tool called odbcping.exe. A sample command would look like this:
odbcping.exe -S 10.0.0.4 -U sa -P
If the returned text contains "CONNECTED", you are in.
This isn't ground breaking or anything, but now I can write a script that takes a list of hosts that were listening on port 1433 (use a port scanner) and I have an almost sure fire way of finding a server that is misconfigured(a.k.a. insecure).
The rest is trivial. If you can access the system as sa, you do just about anything(xp_cmdshell 'net user') or what ever you 31337 heart desires.
The admins of a system on the Internet with a blank a password need to have their fingers chopped off.
Regardless of how WU was vulnerable or hacked, the Internet is driving people online who don't belong there, and they are being put in possitions of power and they don't even know or care.
my.02 on personal security:
most people compromise their own privacy...
Slashdot Mirror
Is this for real or not?
god bless you. i laughed out loud (I live alone) for a full 3 seconds.
was that a triple entendre(sp)?
nice one/.
FP? WOOHOO?
If it is my music, how are making mp3s illegal?
Try including the hw platform and or model. Try to group servers in sub domains.
ent45001.web.foobar.com
ent45002.web.foobar.com
ent65001.db.foobar.com
ent45002.db.foobar.com
ult10001.snmp.foobar.com
ult10002.snmp.foobar.com
ent65001.backup.foobar.com
ent45002.backup.foobar.com
If you want to add location stuff too that is ok, but try to keep the names simple. 8 characters is fairly restricitive, so you may want to create an exception for the aix servers or whatever.
Also, mapping secondary names to the machines/apps will be useful, so ent45002.web.foobar.com might also be www1.foobar.com...
Forget about rack info if you want it to scale and have memorable names. ent45002.web.foobar.com can be remembered but e4us15a3 is just crazy.
If all you have is the machine name to find a server you have bigger problems, IMNSHO. Buy a program like Action Remedy (AR/Remedy) or just setup a webpage/db so people woth servers can add the info about their servers to a central location... Be sure to keep some kind of secondary copy (hard copy is better in case of network outage, you get the picture?)
If you have tons of info in the names, be sure to disallow ZONE TRANSFER on your dns or else you will be providing the ENEMY with a map to you network in a few minutes...
come up with standards for models, applications, numbering, etc. Refuse names like goofy, mickey, etc, or the whole thing will be much less useful.
i.e.:
Compaq = cpq
Sun = Sun
IBM = IBM
Sun Enterprise Server = Ent
I could go on, but you know the models you have and the abbrevs you'd like.
Allow 2 or 3 chars for numbering.
Create sub domains for each application:
web
db
ldap
smtp
make up ones to fit each application or hw-implemented app (loadbalancer/network filer, etc)...
Hope this helps. Be sure to SPAM everyone in your company, and hold open discussions, but come up with something fast, and make it COMPANY POLICY so admins have to follow it and rename their boxes if they don't follow it initially...
and name your network ports the same as the machine name... that helps too.
I have owned 2 burners, and the external HP one is DEAD. I used it for about 6 months and now all I get is a hardware error, which won't go away, no matter what system I hook it up to...
HP is a cool company, but my experiences have all been kinda weak...Their servers had (and may still) PLASTIC wire management for the power, kvm and network cables. I am sure they saved a buck on that, but it showed.
Can you imagine a racks worth of these running virutal beowolf clusters?
Seriously:
200 servers per rack. Let's say 2 virtual nodes per box, that's a 400 node cluster in a rack! Bammmmmm!!!!
And with a NAS on the backend you could use 200 small unique root partitions, and just about shared everying for content and common binaries.
"quote from article" Richeson said the architecture provides for clustering - Racemi expects to be popular in Beowulf circles - and fault tolerance - a spoiled blade falls over to its mates and can be hot-swapped out - and reliability - there are no moving parts except the two fans per blade. "/quote from article"
"off topic, but I hope you agree"
I have always wished for something different though. I use a standard desktop environment: GUIs, an OS, storage, connectivity, input and output devices... But as I upgrade my machine I am tied to the hardware that I can fit in to one box. I wish I could just add some new stuff to my desktop without being limited to one machine.
I know client/server does all this, but I want to jsut add a mahcine to my "desktop" and get better perfomance and capacity,etc.
What I really want is this: A desktop environment which behaves like a single machine. A desktop which uses local and remote resources seamlessly. A desktop which I can add processing-power/storage/etc to by simply turning up another box and adding it to my environment.
[#mydesktopconfig
groupmembership=yes
headless=yes
stealconfighost=10.10.10.3
stealhostauth=""
#cpu-power - auto will try to find cpu speed automatically and guess rating (1-100000)
cpu-power=233
#netcon - auto will try to rate network speed automatically
netcon=125
continent=africa
locale=921
#remotestatehost=
maintainlocalstate=true
#insertfakesettinghere
all_your_cpu_are_belong_to_us=true
]
Then I would be happy. I could always by another mahcine and ADD it to my current config gaining everything I bought...
"/end off topic"
As someone who works for the company with the largest install base of MSSQL I have to say you will see good uses of a database and poor uses of a database application. Every had a SQL perform slowly after upsizing from Access? Try turning off Select-into-bulk-copy.
Some DBAs think it is fine to update some code without a backup first. Some think it is cool to just publish new code without testing it, because that makes them more efficient.
While these often don't cause problems, they do sometimes. Often they run to their boss pointing the finger at US (we host their server, they generally admin it).
Anyone running a critical website knows better than to deploy untested code. And this is just for a damn website. This is not nuclear material they're are tracking, it's your order for toilet paper you placed online!
Will Slashdot and it's readers get a grip? Even lazy admins of open source apps can make mistakes or deploy broken code or take short-cuts in general!
Please set your safetys to ON prior to blaming SQL or MS for all the lame admins short-comings...
Wouldn't you all have been smart enough to find a bug in a closed source app like the one used here? You are smart right? So, don't blame the car for going off the road when you had a 12 pack for lunch and a speed-ball for the long ride home! Or for that matter, the Cop who put you behind bars afterwards.
wow, 3 digit id...
2p?
THIS is basically what I was refering to.
I rather liked the VIDEO of the couple gettin' it on in the upper deck at a ball game.
1 - 2 tickets to Major League Baseball game $60
2 - hot dogs and beer for you and girl friend $22
3 - the video of you fucking her, on the Internet - priceless!
Bwahaha!
I think you changed too much from the original problem to claim 100% accurate guessing. The guessing needs to happen at once, without the advantage of "turns".
In your game, if the first person sees the same color hats on the other 2 guys, what does he use to guess 100% accurately his hat color (because passing would indicate different color hats to the other guys!)???
Mod parent note up
I checked out that story and it had a banner add for a DELL server. If you try to customize the server, you'll notice the default configuration is missing an OS!
/. story in which M$ was calling companies who sell PCs without an OS practically criminal. I find it strange how MSNBC and DELL are promoting a config that M$ is publically against.
I seem to remember a
And another thing, the article talks about slumping OS sales causing slumpling revenues...
Your post makes me laugh.
When they made you go out and pick up lunch, what did you get?
Buwahaha
The supporting argument for how this helps them (IMHO) is in the stories you'll never now about or mysteries which will forever remain unanswered. I am sure they know how the data could be linked and hurt their goals... which is probably why the data is used in such a way that they keep the sources safe from outside discovery.
Someone shows up dead, "hmm, he was a nice guy without an enemy..."
Or, faction A defeats faction B, b/c they got the drop from information originally sourced from a Backdoored Appication or Operating System (BAOOS) that the NSA "leaked" to them.
EOM.
I could not agree more with your sentiment, Mr. Flibble.
...yadadada.
I knew a high school teacher who had a good drill he would use early in the semester, to teach a lesson about privacy and conforming . The drill was to hand out index cards to each student, then ask the following type of questions, each getting slightly more personal... "Write down your name... Write down your age... SS#, parents names, home phone number, virginity status, parents
The end of the exercise usually involved a student who was begining to get uncomfortable answering those questions, on paper, for use by a teacher(the intended response), and the scripted answer was, "Ahha! OK, rip up the index cards, and think twice about giving others your personal (private) info.
We (everyone) need to value privacy and the ability of the individuals to remain "private" if they so desire.
When the NSA, or some other party, gets to embed their wishes in commercial software (backdoors), the ability to remain "private" if you run those applications is gone. Unattainable. We need names of apps and good reverse engineers, and the original coders who have the know.
How come we don't see postings about networks that act strangely and mysteriously, say, sending packets to an nsa.gov box? Wouldn't firewalls detect this type of thing and log it? Or maybe they send the info back to microsoft or something so the traffic looks harmless.
It kind of reminds me of Real Media player GUID, MS's Office GUIDS, netscape's SmartDownload tracking features...
The threat is real, it is a matter of to what degree we are being monitored and cataloged.
So they have the ability to target ads for things you might like or have shown an interest in previously. big deal, right?
now suppose your mom is visiting and there are nothing but 1-900-cum-on-me ads. Or ads for guns and rolling papers when the social worker supervising your adoption drops by for the weekly visit. Maybe they even realize that your TiVo is sending these ads on purpose.
I'd personally rather hit mute when the lame ads come on or change the channel to something more to my liking, instead of having the targeted ads.
One of the things I like about t.v. is that it is a one-way medium. With TiVo it no longer is.
plus, i can't see paying a recurring fee for this or allowing someone elses device (TiVo's) to make phone calls back to the mothership on my behalf. How hard would it be to pack a microphone in to one of those things and have it use filtering software looking for key words like assassinate and then reporting that back to 'big-brother'?
If microsoft cannot make a virtual appliance work right, how are they supposed to make a real one work right?
I am not looking forward to embedded NT. No matter what they say, we'll all be rebooting our toasters...
"Honey, we need more bread!"
odbcping.exe -S 10.0.0.4 -U sa -P
If the returned text contains "CONNECTED", you are in.
This isn't ground breaking or anything, but now I can write a script that takes a list of hosts that were listening on port 1433 (use a port scanner) and I have an almost sure fire way of finding a server that is misconfigured(a.k.a. insecure).
The rest is trivial. If you can access the system as sa, you do just about anything(xp_cmdshell 'net user') or what ever you 31337 heart desires.
The admins of a system on the Internet with a blank a password need to have their fingers chopped off.
Regardless of how WU was vulnerable or hacked, the Internet is driving people online who don't belong there, and they are being put in possitions of power and they don't even know or care.
my .02 on personal security:
most people compromise their own privacy...