Re: Me too
Not a heck of a lot of Google in my CyanogenMod, mate. And all the tracking's off by default. And it works just fine if I don't add a Google account.
6988 posts • joined 31 May 2010
Not a heck of a lot of Google in my CyanogenMod, mate. And all the tracking's off by default. And it works just fine if I don't add a Google account.
Trevor , I thought you made your living by providing maintenance for windows users, does this mean that you are moving full time to Linux systems and completely giving up on windows ?
Actually, I've mostly quit IT. While I keep a few clients around (I'm back down to around 25), this is mostly to keep my hand in the craft and have some form of legitimacy to what I write. I honestly don't think I do more than break even with any of them anymore. I make my money writing.
A few clients will probably still have Windows. The large ones that - to be frank - have other sysadmins to handle the day-to-day stuff. 80%+ of what I'm called in on today that is sysadmin related would be classified as either "datacenter architecture" or "something went kaboom and nobody else can fix it".
For the most part this actually does leave me working with non-Windows products. Linux (increasingly Debian as clients move away from RHEL thanks to the shitpile that is RHEL 7) on the server side and OSX (seriously, I've seen a crazy uptick in the past month, what gives?) on the desktop side.
Now, OSX is not joy to work with - securing this is proving to be a monumental pain in the ass - but I'm getting the hang of it.
For me, I've gone back to Windows 7. I think there is still Windows 10 on my little conference portable, but to be 100% honest I need to sent that back to Lenovo with a big "WTF this shitty plastic shell is disintegrating put a new one on" sticker anyways. I suspect they'll reset it to the Win 7 pro it shipped with, as they always seem to do OS resets when I send things in and don't want them to do so.
I have said multiple times that the only thing keeping me from really adopting Linux for all non-gaming roles was that the remote access protocols are a bucket of flaming hamster poo. This is still true, but the end of this miserableness is in sight. Weyland/Weston have built the freerdp server in directly, so we can finally use a protocol that actually works over crappy WAN links. That, and SPICE seems to have evolved to be almost not crap!
LibreOffice 5 is a huge step forward in usability for me, while Office 2013 has been a huge step backwards. (I have yet to try Office 2016.) Thunderbird is a bucket of shite, but if I can kick the exchange addiction, it just might do. Zentyal looks promising as a means to boot exchange out the door.
SAMBA 4 has finally reached "usable", and I no longer need Windows Server-based domain controllers for most things. I'm still waiting for a usable UI to configure SAMBA shares, but I live in hope.
Meanwhile LizardFS has provided a good scale out storage option for those looking to build additive storage filers with a single global namespace. Bye, bye DFSR, don't let the door hit you on the way out! And I don't even have to wait for Storage Replica, because I just don't need it anymore.
Scale Computing has taught me that KVM is just fine, thanks. And if I don't want to keep using Scale, I've found both OpenNebula and Proxmox are okay too. Nodeweaver is willing to sell me all-open-source hyperconverged (including OpenNebula-based managment) as a software-only item I can install on my own systems for next to nothing. That's fine too.
To be 100% honest, Outlook was the thing that was keeping me on Windows for so long. Not Outlook is a bloated piece of crap that crashed all the goddamned time, I have to use gsyncit in order to sync with my gmail, and that plug-in conflicts with my scheduleonce.com connector too often for my liking.
The calendar appears to be almost completely non-deterministic, even without the plug-ins and Exchange support for Android is best described as rubbish. Outlook means Office, and I am getting mightily sick of defanging Office's attempts to be "helpful" with each new install. No, I don't want you make fancy formatting decisions at the end of a pragraph, Office, I want <CR><LR> when I hit enter and not a goddamned thing more. And frak off with the smart quotes!
I basically want Office 2003. That was the thing that made me love Windows. It kicked everything else's ass in terms of productivity. Unfortunately, now Office 2003 isn't supported by Office 365, or newer exchange servers and is basically dead.
LIbreOffice comes in "portable" and I can run that right out of Dropbox. No taming the beast with each install. Bloody marvelous. Firefox and Chrome take my settings with them, so they're not a problem. Pretty much everything of importance is in Sync. Everything that's not important is in Dropbox.
What else do I use? Oh, yeah, Trillian. Trillian is cool, but there are a squillion great Linux alternatives. Oh, wait, nevermind, I can get that on Linux too. Skype. Skype goes on my phone, but there's Skype for Linux too. Ummm...ummm.....
Yeah, that's about it. There's lots of other things I use, but they all either have direct Linux ports, are browser-delivered, or have "good enough" Linux-based stuff. Or they are so infrequently used they work just fine as a VM-based item.
That leaves video games. I don't play often, but I have a diverse library. I hate controllers so that rules out consoles. This leaves me building Windows gaming rigs every 5 or 6 years. I'm okay with that. I'll pay Microsoft their pound of flesh in order to play my games.
Once Windows 7 can't be had, I'll move to Windows 10. When I do, I'll lock that SOB down and firewall it off from the rest of the network and treat it like the a toxic digital piracy-thieving piece of shit that it is.
But Windows for primary stuff? No. I just don't see the reason to do anymore.
Look, I'm lazy. I really, really, really, really, really, really, really lazy. I don't want to move off Windows 7. I'm comfortable here and life is simple. But the end is nigh. Windows 7 is going to get Windows XPed, and sooner rather than later.
The problem is, Windows 7 users have nowhere to go. In terms of software you mostly control, it's the end of the line. Now everything Microsoft is all cloud enabled, privacy-stealing bilge pumped from the abandoned mines at Redmond.
I either have to give up on any notion of privacy or control over my own data whatsoever or I have to learn to suck it up and deal with the clusterfuck that is Linux UIs. According to my own principles, the latter is preferable.
So yeah, I'm out. Windows 7 until I can't go any more. And as for clients, I won't take any new Windows clients. The existing ones I am going to try to get away from supporting Windows on the endpoint at all. Windows Server I might keep supporting, but mostly as a vessel for running legacy Win32 apps.
I don't like it, but the choices available are a Giant Douche and a Turd Sandwich. Which do you pick?
If the product is free, you are the product being sold.
Of course, even if you pay for, you're still going to be sold.
You know what? Fuck it, I'm out.
I can't speak to the other offices, but here at Reg North productivity means "git 'er done". Make of that what you will.
I don't think it's an unfair comment. A rubber dick with a wig on it is a more acceptable productivity platform than Windows 8. If the bar for "success" is "we hate this less than Windows 8" then your measurement of success is pretty skewed.
The real question is "do we prefer it to Windows 7"? So far, every non-nerd I've talked to says no. The nerds seem 50/50 split. Those who believe novel has intrinsic value love Windows 10. Those who believe new things need to prove they are worth more than old things tend to stick with Windows 7.
From this I conclude that Windows 10 is - for the most part - "good enough" to people who don't care about privacy or control of their OS. It is not, however compelling enough to pull users away from Windows 7 in any great numbers.
Perhaps this is why trickery and skullduggery is being employed to nudge - or force - users off of Windows 7?
Either way, I am not making a pretty penny doing rollbacks from Windows 10 to Windows 7 and configuring the systems to block the Windows 10 download. Let's hope that revenue stream doesn't dry up for a while, as it pays well for easy work.
Canada already has a professional association for iT. I am working for increased legal recognition.
Taking a stand doesn't mean you'll win. But for it to work not everyone who takes a stand has to win. Even a small percentage winning some of the time can begin to change things, and make security the new normal. That can start to make those who don't provide security for their products seem a worse deal.
Persistence is required. And a diversity of people willing to take a stand in a diversity of situations. But the attempt is not irrelevant simply because not all will succeed in all situations all of the time.
The market has failed to produce solutions thus far. Why do you feel it is rational to cling to a belief this will somehow change? There are very, very few examples in human history of markets self-regulating, especially in a manner good for the population at large.
There are an unlimited number of examples in which markets have failed to self regulate. Belief that markets will self regulate, in defiance of all historical evidence to the contrary, is faith as irrational as any religion.
Civilisations such as the Assyrians and the Greco-Roman civilisation and the Mayan civilisation were not good places to live in if you were, say, a slave, poor, etc
First off, it's worth noting the difference between "citizen" and "not citizen" in these cultures. Even the poor were treated a heck of a lot better than any non-citizen. And, to be perfectly frank, for a lot of the existence of those cultures non-citizens did okay. Not great, but far - far - better than non-citizens in contemporary cultures.
But the cultures you mentioned existed for long periods of time. How people were treated varied. And towards the end of each civilization we see the treatment of people at large degenerating. Slaves are treated more harshly. The poor are treated as non-citizens. Eventually, only the very rich seem to enjoy any rights at all.
Empires have fallen because when conquerors came they found an eager fifth column in an oppressed populace. That is where civilizations end. Hence, in my analysis, a culture it no longer "civilized" when the populace becomes so stratified that the majority are oppressed enough to actively work against the culture as a whole.
Those who pay history no mind will repeat its most egregious errors.
@charles 9: plenty of other professions have codes of conduct, ethical standards and we have legislation to enforce this.
It's only every man for himself in really shitty parts of the world, mate. Like Somalia. Or the US of NSA. In much of the rest of the world - the good parts of the world - people are raised with a belief in a duty of care to their society.
But I've noted your Randian worldview and made the appropriate push of the ignore button. Good bye.
@AC: If they won't listen to you and implement security as a priority then there's fuck all you can do. Being there won't give you power to magically make it better. Leaving - especially if the why of it is explained to the right people - may well make them realize the importance of security. Especially if enough do it.
As for If some unknown sysadmins quit, or developers, who would notice? that depends on who finds out. As a generally rule, if you're good at your job, people internal to the company notice. And if enough people (or high ranking) people leave a company for this reason the press notices. And this is what is ultimately required.
They will just thank the whiner went away, so they could work as they like
If this is the kind of attitude that not only your company but your peers within that company have then you are in a really shitty workplace. If they view you as a "whiner" for having professional ethics what makes you think that their apathy about corporate or professional duty of care will somehow end at treating the customer like a commodity? If they treat others like shit they are going to treat you like shit and you need to get the hell out of there ASAP.
Do you believe answering "I quitted each of them because my colleagues/managers were morons who didn't care about IT security" will help you?
Hell yes it would, at any place that actually worth my time and effort.
Just because the US of NSA has allowed itself to deteriorate doesn't make it civilized. It's not. It's a shithole. An uncivilized shithole that is losing any shred of decency it may once have had.
If my country follows, it too won't be fit to call civilized either. Civilizations work collaboratively for the good their people. The US of NSA gave that up some time ago. As is very clearly evidenced by the unrepentant - even proud - selfishenss of some of the commentards here.
I've never been more disappointed in humanity than I am today.
If "Following Orders" is the only way to put food on the table, ethics kind of takes second priority.
That worldview is fucking appalling. Jesus H mother of goddamned donkeyfucking christ, what the hell happened to us that we've forgotten so much, so fast?
Holy wow. Just wow.
Bad IT in a car can indeed kill people.
Bad IT in planes has killed people.
Bad IT in medical equipment has killed people.
Bad IT in AI-equipped auto-death weapons inevitably will kill people.
And on and on and on....
Assuming your take on things to be correct, how is it rational to take a job knowing that there will be a lax attitude to security, this will lead to security breaches and you, as the minion "just following order" will be the schlub on the hook to take the blame?
How is it rational to say "I'll take some easy money now, knowing that there is a really good risk that shit will hit the fan, I'll get blamed, and end up unemployable in this field forever after that point"? Wouldn't it make more sense to put your labour into another profession where you can actually expect long term employment, instead of an abrupt, messy - and potentially expensive - sacking, followed by being reverted to essentially "unskilled labour"?
We'll have to agree to disagree, Charles 9; I don't consider shitholes particularly civilized. I mean, look at the US of NSA...
@AC Well, at least you're honest. That's not really much of a consolation, but there is that one, small redeeming quality.
I think did answer it: because, apparently, IT is filled with people perfectly willing to put their own desires before the lives of others. Just shrug off any responsibility. You're just following orders.
That's not a civilized country. That's a shithole.
I disagree. Legislation to make information security failures the responsibility of the executive layer personally would stop this almost overnight. The other alternative would be legal recognition of professional associations and banning individuals from working in the field who weren't members. Those associations would then boot out anyone who didn't follow ethical guidelines.
Engineering in civilized countries functions this way. It's time to apply this to development, and IT in general.
So..fuck the customer, the population at large and everyone, everywhere, only you and your job matter?
Sorry, but this one is actually worth fighting for. And it is worth organizing professional associations for. And worth putting time and effort into.
Or maybe you just want to wait until the price of individual selfishness and cowardice on behalf of developers is measured in bodies. How many people's lives is your job worth? Hmm? How many injuries and maimings does it take before you exit your comfort zone? How many people need to face financial ruination before you speak out?
or do you somehow think that, because you're "just following orders" you aren't to blame? That it's only the fault of the higher-ups who pushed back on you over and over to get it done quicker, and you folded like a cheap tent every time?
Do you feel you bear no responsibility whatsoever for the results of your work?
You're absolutely correct. It can get you fired. So you have to make the choice: do you care only about yourself? Or do you have a responsibility to others? I argue that we all have a responsibility to others not to let companies ignore security. Even if it cost us our jobs.
If we were able to make professional ethics a legal requirement for our professions they wouldn't be able to fill those positions with people willing to break with ethics for corporate profit. Not if they wanted to be allowed to keep practicing, anyways.
A combination of legislation and a unified stance is required for this to work.
Who is asking they be fixed "in a week"? The issue is taking information security seriously and doing everything reasonably possible to ensure that it not be given lip service only. For a company Oracle's size, that absolutely includes bug bounties.
But bug bounties aren't the real issue. The Oracle-class stupidity is bemoaning user and researcher attempts to discover bugs in the first place. The concept that a company's need to protect its intellectual property and/or near-monopoly with an EULA should come before security is not only assinine, it is dangerous.
Oracle has been pretty clear about putting security far behind commercial interests for a very long time now. This lady has just been the first to be honest about it. And they threw her under the yacht for doing so!
If yoru software is so awful that you have a "line of CVSes to fix" then you should be out there, fixing those. They shouldn't stay unfixed for ages. And you shouldn't be objecting to people adding new ones to the list.
More to the point, you should have layers of QA, proper unit tests and proper security testing before things go out so that the number of CVSes starts dropping over time.
I don't expect any company to magically solve all security problems over night. I don't expect all code to be without flaw. I absolutely do expect companies - especially large ones - to make security the primary priority. Ahead of new features. Ahead of release dates. Ahead of any other priority in their software.
Corporate profit should not come before information security, especially for vendors as large (and profitable) as Oracle. The hell of it is that it doesn't take a whole lot of investment to resolve this. For a company Oracle's size adding a few hundred extra bodies to security testing design and then to QA (those who implement the tests) and drawing out releases a little so that the bugs can be solved before going out...that's nothing.
And throwing a few measly million at the research community to find bugs in your software is a minor expense for an Oracle. Especially since the stuff the researchers find is going to be the same stuff so easily visible to blackhats using those very same techniques.
Nobody should get to avoid responsibility for security just because they believe they have a $deity-given right to ignore security in the quest for money.
Well, I use OpenWRT. So that's upgradable. Not everyone is allowed to do this, however. My ISP, for example, usually freaks out if you don't use their shitty Actiontec modem/gateways. I was able to score an appropriate VDSL2 modem-only unit from ebay and put my own router behind it. But what if I had had an Actiontec? I can't really do much to it. I'd be entirely at the mercy of the ISP.
This is a really bad situation.
Actually, we are working on HTTPS for all our sites. (There are about 12, including trevorpott.com)
The issue we're facing is one of limited IP addresses. I know that HTTPS should work with multiple sites to a single IP on newer browsers, but I would really like to ensure that we have backwards compatibility support. So I'm in the process of evaluating load balancers and how it is they might (or might not) solve the problem.
In the meantime, we have (to my knowledge) removed from all our sites any member sign-ups on publicly published pages. We have informed our existing members that we're looking to alter our entire security stance on the sites, including eventually altering where the login pages are, switching to .hta access and more.
We've been mostly working on behind the scenes security in the past month. Database and operating system hardening. Automated updates for Wordpress. Security plugin testing and hardening for wordpress. Selective writelock cascades for any site which doesn't have to be writable for that particular timeframe...we've also gone over the code and the databases to make sure we weren't pwned at any point in the past.
Because we aren't in the process of building an active forum presence that requires readers to sign up or subscribe, bur primary focus from a security standpoint has been to ensure that we aren't hosting malicious stuff that could infect readers. HTTPS support is on the list in the near term, but as the sites are (at the moment) publicly facing read-only (rather than interactive) sites, we felt the other security issues had priority.
If you feel there is a really good reason to push HTTPS above the rest of our security efforts to get it done sooner, please, make your case! We're entirely open to it!
Hence why I think both legislation and grassroots nerdrage are required. Corporates are not going to give fucks without both things occurring.
Fortunately, I don't have to make that choice. The Register is, in fact, working on HTTPS support (or so I have been told). But you know what? Yeah. In the long run, if I couldn't convince them that it mattered - especially for a technology site! - I'd probably take my content elsewhere. I don't want to, but I really do think ethics matter.
Someone has to say "no, I won't take that job". I've started to do just this with some of my sysadmin clients. I think it's valid to think about it applying to writing, too.
There is room for discussion about taking things to extremes though. If your employer is making headway and clearly working on the problem, it's probably not going to help anything if you pull the rip cord. But if they just stubbornly don't care about their customers to the point that they ignore security why would you believe they give a bent damn about you?
But before we can hammer out these sorts of fine details we need to start having the discussion about infosec professional ethics in the first place. Glad to see some readers are willing to join in.
Yep. That's a big problem right there. I don't really have a solution to that. Maybe it requires an extrovert to start taking a stand so the rest will follow. Maybe it requires massive encouragement across the industry. Maybe social media can help. But we need to get everyone - even the introverts - to stop allowing badness to ensue through apathy. If anyone comes up with magical solutions to motivate, I'd love to hear them! :)
Hah! Fair point. I think of TLS as "SSL" even though I know the difference. Same purpose, same libraries, same modules...guess I'm just getting old; conflating things that are "close" because of implementation rather than provenance.
To be fair, most western nations seem pretty keen on getting rid of "innocent unless proven guilty", so I'm not sure why anyone would trust any western government if they made their living trading in governmental secrets.
"For too long, we have been a passively tolerant society, saying to our citizens: as long as you obey the law, we will leave you alone."
Prime Minister of the UK.
I would expect that a man "man up" and that a woman "woman up". The exhortation need not be gender determined, nor involve gender roles. It refers to the difference between a "man" and a "boy": namely that adults are required to accept certain levels of responsibility, especially social responsibility, as a matter of course.
It has nothing to do with bravery. It has everything to do with meeting the obligations of adulthood. And yes, sometimes those obligations require sacrifice - even of one's own life - for the greater good.
"Adult up" would be a possible gender non-determinative, though most people seem to prefer "(wo)man up" when gender is unknown. In this case, gender is known, so Assange needs to man the fuck up.
Nice to see Wikibon more or less in line with my own thoughts on the matter. All companies having a "Tier 0" flash tier by 2020 that handles potentially up to 50% of workloads that would normally be considered "Tier 1". By 2025ish the whole of Tier 1 moved to Flash (or a post-flash technology).
I think it's possible we'll be able to build enough foundries to handle that.
It's where people start saying stupid things like "nearline storage will be replaced by flash" or "Tier 1 will be all flash within the next [insert very short timeframe here]" that I start getting tetchy. No, we damned well don't have the fab capacity for either of those scenarios.
I don't think nearline storage will ever be replaced by flash. It will probably take a post-flash technology to do the job. Meanwhile, Tier 0 applications will be on post-flash technologies by the time we've moved "all" Tier 1 applications to flash (2025ish).
Tier 2 and lower applications will still likely be on hybrid storage for a long time to come.
I'm no expert on switches, but couldn't you require that ROMMON images be signed?
I can carry my guns around. In a locked case. With the ammunition in a separate locked case. This is the correct mode of transportation for firearms, just as it is the correct storage method for firearms.
I can unlock my firearms in my own residence if I take appropriate security precautions. This allows me to clean and maintain these devices.
It is not recommended (and is in most cases illegal) to unlock both the firearm and the ammunition at the same time excepting in designated areas such as firing ranges, or designated hunting grounds.
You are not allowed to acquire or retain firearms unless you have a license for that class of weapon. In order to get a firearms license you must learn and demonstrate understanding of firearm safety, including (but not limited to) all of the above.
This is exactly how firearms should be treated. It is sane. It is rational. It allowes Canada to maintain a higher per capita gun ownership than the United States without anywhere near as many firearms-related deaths (intentional or otherwise.)
Philosophies on the ownership and utilization of firearms which are less safety oriented have proven outright disastrous for those nations which have employed them. When dealing with firearms safety come first last and always.
So whistleblowers that make the government money get paid a portion of the proceeds. Whistleblowers that detail how the government is eradicating the rights of it's own people go to prison.
A) OCZ chose to use Sandforce
B) OCZ handled the whole even completely fucking atrociously and they deserved to have been run out of business for that. It is a crime against consumers that they were purchased.
OCZ purchased something from a supplier, put it together and sold it to customers. It was defective. They denied this up and down and then they were awful to customers. Even after it was undeniable, they continued to be terrible. Sorry mate, there is absolutely nothing defensible about OCZ. One of the worst, most awful storage companies in all of tech history, full stop.
OCZ didn't take a huge hit for selling bad flash. They took a huge hit for denying the issue repeatedly and loudly and treating victims of the flaw like shit. OCZ were (and who knows, maybe still are) run by utter twatdangles and how they handled the whole affair will end up in multiple text books about how not to do things in the modern world. Or any world.
The same Carly who demanded that Apple, Google et al simply give up all user data without a fight?
So many flavours of fuck you if you support her. Fuck you in flavours.
I have considered it. I have given their testing methodologies a cursory overview based on what they make available publicly and found that the results I can achieve with those methods more or less line up with what they publish.
The whole incident has piqued my interest for deeper research, however, and I am hoping to pursue this behind the scenes with them over the coming weeks. I have a call scheduled with them at the end of the week, hopefully I'll learn more.
Overall, however, their results have tended to be among the most "realistic" I've seen. They most closely match the "real world tests" that I do; tests that tend to be around 1/3rd the headline achievable IOPS or throughput, usually because real world tests aren't 100% one (IOPS) or the other (throughput).
This confusion is also why many of us in the testing community really do want an open, affordable, standardized set of tests that the industry as a whole can agree upon.
Again, you are mistaken that this as is all about you. This isn't your lawn and your aren't a part of The Register, you write guest contributed, unpaid content and you comment on the message boards.
I'm not a part of The Register? I have 418 articles published here. I've been writing here for over 5 years. At what point are you "part of" a publication, hmm?
Also: my articles are unpaid? That's news to me. And my bookkeeper. And my 4 employees. Because it seems to me we invoice The Register for rather a lot of money. Which is nice. As it does things like pay our mortgages.
It's a hot topic and you want to wave your flag, we get it.
It's a boring topic that the overwhelming majority of Register readers don't give a flying fuck about. Some do, but there's only about 800K - 1M that seem to care enough to poke their noses in on this, and fewer still who care to comment.
And again, you're wrong, I really don't want to "wave my flag" here. People like you whoa re assholes on the internet, make it a very unpleasant topic to write about. I've gotten death threats because I have written something that someone doesn't like; most of the negative feedback begin from the zealots that inhabit the storage industry.
I don't even like storage. I got sucked into being a storage blogger/analyst/whatever-the-fuck-I-am entirely against my will. And once sucked in, I learned fast. Now people see me as "knowledgeable" on the topic and seek me out at an ever increasing rate for advice.
But I hate storage. I really, really do. It's boring and the people are mean.
There are much better things to write about. Things that actually interest me. DevOps. SDN/NFV. Compute hardware. Above all else: security. These are my actual passions. They also "get the clicks" as it were.
Sadly, storage needs a shit disturber or twenty. Your own douchetastic response is exactly why. Zealotry and misinformed ad homenim too often take the place of reasoned discourse, as your perpetual firehose of haterade so ably demonstrates.
But it's not even necessary, you have a voice here and you post regularly on The Register. I'm not trying to shut you up, I'm simply suggesting you chill out and let others chime in without sucking all of the oxygen out of the room by responding to every single comment.
But you are trying to shut me up. That is exactly what you are doing. You feel somehow that you, personally, have a right to dictate when and where I should be allowed to speak. What gives you the right to determine the context of my speech? And why shouldn't I be allowed to participate in discussions both from an official platform (as a writer for The Register) and from an unofficial platform (as a commenter on The Register)?
The various mediums available to me - numerous places where I publish my articles, Twitter, my own personal blog, various comments sections, forums and message boards - all offer me the chance to approach topics in various ways. Some allow me to advance my personal opinion in a more unbridled fashion than others. Some have a mass audience while some a more select one.
There is an entire internet available for you to vent your hate and spew forth opprobrium. Yet here you are, on my digital lawn, trying to tell me what to do.
Given the context there is only one appropriate response: go fuck yourself, asshole.
And maybe, just maybe, you should actually add something useful to the conversation. If anything is sucking the oxygen out of the room it is your worthless personal attacks and pitiful demands for censorship.
The route to people valuing your opinions is to contribute something meaningful, not restricting who can talk until yours is the loudest voice left. If your ego needs satiating, satisfy it somewhere else.
I also just want to back up what Satinder is saying. Tintri have been absolutely amazing about testing their units. They've given me a completely free hand. (I hope to have the review out this Monday, as a matter of fact.)
I have found some flaws with Tintri's implementation. But I've found a crazy amount of good. Tintri has not shackled me with restrictions on testing or on publishing. They've let me toss a unit into production, run every synthetic I can on it, and abuse it in every way. They've made an SE available to me for any questions and shown me how they prefer to benchmark things, but not insisted this be the only path.
I've learned a lot about storage from them. Just as I have from every really good storage company I've worked with. They have fantastic engineers who have taken the time to get really in depth on things I don't understand, or flat out get wrong.
(Side note: I will disagree with Satinder on the utility of SQLIO. Even full of 0s, it's great for testing the network portion of shared storage, and it is also possible to replace the all-0s file with a randomly-generated one so that you are hammering with more than just 0s. I find it a useful tool, if used correctly. That said, Tintri's "Tingle" load generator is actually pretty cool, and a useful item that the whole industry should be using.)
Another thing that Satinder said is important here: education. Of customers and of reviewers. You can't review storage properly if you honestly think you have nothing new to learn. Each storage offering is different. Not only that, but tools to generate and test load are constantly evolving.
Many vendors - like Tintri - do an excellent job of educating, so it behooves anyone (customer or reviewer) who is doing testing to really listen through the various presentations.
The truth is that there is a lot of good storage out there. Hyperconverged, scale out, object and legacy alike. There are a lot of great companies peddling that storage. More to the point, the market for storage is huge, and continually growing.
We shouldn't need to have the petty rivalries that have developed, or be getting bogged down in who is allowed to review what by which means. We should be educating people as to which test are best to simulate (or test) what components of storage. We should be verifying our synthetics with real world workloads. And we should all be absolutely open and honest about the results because it is how we all - vendor, reviewer and customer alike - learn, adapt, and ensure the next round of products are better than the last.
@Virtualgeek: great response. Truly. I have nothing negative to say to that, it's absolutely spot on. It's why I insist on running real world test with workloads I know inside and out (from having run them for 11+ years in production) alongside the benchmarks. There's a lot more to testing storage than synthetics. (See; iSCSI microburst issues with switches; something we don't have standardized tests for yet!)
1) "Profane" language can be used for either emphasis or to provoke a response. It works well in both cases.
2) "Profane"? What era are you from? What was it like watching them invent the steam engine?
3) Yes, I like arguing. Especially with people who like to jump right in on personal attacks.
4) There are rather a lot of people on these forums who post on behalf of their employers. There are also a bunch who are irrational brand tribalists. I see no reason to treat either category as anything other than hostile.
By all means, post things I disagree with. In case you didn't notice, I not only admit that I can be wrong, I tend to point out where and when I feel it is possible that I am wrong, and I will even post information from external sources when I feel that information has come to light which brings my own dialogue into question. (See: posting Chuck's e-mail as an example).
Just because I don't think you are right about your inane blitherings - or that I troll you because you're a douche - doesn't mean I am somehow unaware of my own fallibility or am unwilling to admit it. It really just means I think you haven't clue one what you, personally, are prattling on about.
Also: fuck, shit, ass, and cockmongling cuntpotato! Just because you like the profane.
There is a difference between "difficult to work with" from a technology side and "difficult to work with" from a people side. Lots of companies have decent-to-good tech but miserable people. Plenty of companies have middling-to-miserable tech but great people.
Great tech can make up for miserable people and great people can make up for miserable tech. The exact mixture that works for one company may not work for another because requirements for uptime, support responsiveness an other such things can vary dramatically.
The biggest warning sign I can give is to take a good look at the executive layer. Especially of small companies. If the executives - most critically the CEO and CTO - are "high touch" individuals, you're in trouble. The worst thing in tech is an engineer CEO who won't let the various division heads (sales/marketing/QA/channel/etc) do their jobs unhindered.
High-touch CEOs are a screaming alarm bell warning about oncoming icebergs.
Tech is a tricky business, and I find more companies getting the "people" part of it wrong than those that get it right. Oddly enough, getting the "technology" part right seems easy. There are lots of companies with great technology. It is in managing staff, customer and community expectations - and coping with extremes of emotion from all sides - that tech companies fall down.
Unfortunately, too many in tech think that "the human factor" is irrelevant. Until, of course, it isn't. At which point it's probably too late.
There are still Netlist shills.
Will you people let it go? You lost. Do you really need to drag your sorry, wrecked egos through the mud again, chasing after Diablo jumping up and down trying to lash out? FFS, just let Netlist crawl into a corner and die with whatever pathetic shreds of dignity it has left.
You hardcore Netlist believers are about as crazy as the two people who believe SCO's bullshit and try to convince the world of it. Find a new religion. Yeesh.
I'll eat a $30K install cost if they keep the bandwidth costs down to something sane. Unfortunately, they want thousands of dollars per month 10Mbit continuous use. Fucking madness.
WHY WHY WHY can't I buy a 10Mbit upload for less than $500 a month, or $5,000 a month is I want to actually use the bandwidth?
The questions is more how to make a service like this pay.
Simple. You charge $250 a month for "access to" the 10Gbit fibre, with a "generous" "free" bandwidth allocation of 100GiB. Then you charge them $50/TB over the limit. If they complain, you have them rounded up as terrorists and thrown in jail.
Yes, I live in a country where protesting is illegal and can be classified as terrorism at the prime minister's whim.
Biting the hand that feeds IT © 1998–2017