This is really neat: some random guy on the Internet has produced a photo album chronicling his 35-year marriage (at least so far!) The captions are really sweet; it’s clear that they’ve had a happy and strong marriage. One of the comments made a good point, too: take lots of pictures now, because you might want them later.
How’s this for irony?
From USA Today: the CEO of McDonald’s died this morning at a rally/conference for franchisees. The cause: a sudden heart attack.
Comments Off on How’s this for irony?
Filed under Musings
E2K3 Routing and Transport Guide
I needed to look up a piece of trivia on the Exchange routing engine for the cookbook, and after a little Googling I found this gem: the Exchange Server 2003 Transport and Routing Guide. I’m not sure how I missed it before, but it’s quite comprehensive. Recommended reading if you want a better understanding of how the transport core works. In particular, its description of how the various connection filtering pieces work together is almost as good as what I wrote in Chapter 8 🙂
Comments Off on E2K3 Routing and Transport Guide
Filed under General Stuff, Musings
Happy birthday, Tim!
Today is Tim’s birthday. What a pleasure it’s been to spend more time with him since we moved up here! I’m impressed with, and proud of, how he’s developed as a well-rounded person since the days when he used to sleep on Kermit the Frog sheets. I enjoy his company, and I’m happy– and thankful– to be his brother. I’m just sayin’. (Now, back to work before the slave drivers notice I’m blogging again…)
Comments Off on Happy birthday, Tim!
Filed under Friends & Family
Good question?
So, now it’s getting personal. From Rob Novak via Ed Brill:
While standing there, I saw a title from Microsoft Press: “Secure Messaging for Exchange Server 2003”. OK, that sounds reasonable. It belongs there. Then I realized something. Why in the WORLD would you need a 506-page book to tell you how to do secure messaging??? You just have to Sign and Encrypt! What is with these people?
Fair question, one deserving of a comprehensive answer. The short answer: there’s a hell of a lot more to messaging security than “sign and encrypt”! What about anti-spam protection? What about hardening the base OS? What about risk assessment? What do you do if your boss comes to you and says he wants to read a coworker’s mail?
The book’s 506 pages because it:
- begins at the beginning with a detailed discussion of fundamental security principles, including the need for good physical security and the difference between various methods of authentication, encryption, and access control
- covers risk assessment and physical and operational security in some depth– rare for a non-textbook security book
- completely describes a workable patch management process, something that every Windows or Linux admin had better be good at (particularly on the Linux side, where patch auditing, assessment, and deployment tools suck. Disclaimer: I don’t talk about Linux patch management. Ha ha.)
- explains how to deploy and use S/MIME– a topic that’s poorly explained in most of the Exchange and Domino books I’ve evaluated to date. Can you cross-certify? Can you issue certificates to use the web client with smartcards? My readers can.
- explains how to use and secure a number of Exchange 2003 features that Domino doesn’t even have, like wireless device access, attachment blocking and control for the web client, the anti-virus API, and so on
- tackles several issues that even Domino admins care about, like message archiving and retention requirements and legal issues about when you can, cannot, should, and should not open or scan user mail for legal or law enforcement reasons, the DMCA, and so on.
In fact, I’m so confident that even Domino administrators who run on Windows would find the OS hardening, archiving/retention, and legal chapters to be useful that I’ll make a bet: I’ll let the Domino community pick a representative to review the book, and I’ll supply a review copy. If the reviewer doesn’t honestly think that this is a terrific and useful book, and that it does a great job of explaining the wealth of security features provided in Exchange 2003, then I’ll donate US$250 to a charity of Ed Brill’s choice. On the other hand, if the reviewer finds– as I’m confident he will– that the book rocks, the reviewer will post reviews at Slashdot, ERCB, his own site, and Ed’s site. Deal?
Comments Off on Good question?
Filed under Smackdown!
Security Tuesday: four new critical bulletins for April
Well, it’s the second Tuesday of the month, so it must be time for the latest crop of Microsoft security bulletins. The summary is here. There are four bulletins (MS04-011, MS04-012, MS04-013, and MS04-014), and all of them are rated “critical”. Patch now.
Comments Off on Security Tuesday: four new critical bulletins for April
Filed under Security
What I like for breakfast
Pancakes are good, but waffles are better.
Comments Off on What I like for breakfast
Filed under Musings
Kate Gregory blogs
Kate Gregory, the woman who got me started in book writing, has a blog. How cool is that? Kate, welcome to the wide world of blogging!
Comments Off on Kate Gregory blogs
Filed under Friends & Family
Exchange 2003 support comes to Windows Storage Server
Microsoft’s finally taken the lid off a very, very cool addition to their product line: the Feature Pack for Windows Storage Server allows you to put your Exchange 2003 databases on a Windows Storage Server NAS box. There are some limitations: this approach is designed to handle up to 1500 concurrent users, and it requires good network connectivity between the Exchange server and the Windows Storage Server. However, it’s a real, live, supported-by-PSS solution that can potentially deliver SAN-scale performance to organizations that can’t afford Fibre Channel SANs. Check it out.
Comments Off on Exchange 2003 support comes to Windows Storage Server
Filed under General Stuff, Musings
Microsoft and the thrift culture
Scoble links to a Microsoft Monitor article on Microsoft’s “thrift culture“:
I also see Microsoft’s thrifty culture as contributing to problems with product pricing. As noted in my report, “Microsoft’s Integrated Innovation: Weighing up Customer Benefits, Risks,” increased integration raises some Microsoft software acquisition costs. Microsoft employees use their own software–and that’s the latest stuff, too, which is another thrifty use of existing resources. I contend that given those modest salaries and use of Microsoft software, product managers are sometimes out of touch with real customer costs and their computing environment little resembles their customers’.
It’s true that Microsoft’s computing environment doesn’t resemble most of their customers’ environments, but I think Joe has the reasoning here backwards: Microsoft’s computing costs are quite possibly higher than they are for most customers, even when you factor in the happy coincidence that MS doesn’t have to buy licenses of its own software.
For example, Microsoft’s email architecture uses on seven-node active/passive Exchange 2003 clusters, with each cluster having its own dedicated SAN. That design offers superb availability and performance, but it’s also very expensive. I’m not aware of any customers who are using similar configurations (although some are using clusters with shared SANs)– it just costs too much. However, the uptime and performance benefits enable a critical part of Microsoft’s business operations, so they spent the money. The same is true of their network– they have a huge and powerful network backbone, with extensive health monitoring, spread all over the world. Why? They need it, so they bought it.
They’ve never been shy about spending money, when needed— that’s the key point IMO. (Another example: check the average age of laptop and desktop computers at MS, or the average time between desktop OS updates– I bet both are way shorter than they are “on the outside”.) It’s true that a penny saved is a penny earned; however, it’s also true that sometimes you have to spend money to make money. The key is that spending money wisely is deeply ingrained into the MS culture to an extent I’ve never seen anywhere else.
Another important difference in the environments has an influence, too. Microsoft is full of überusers. At a typical 50,000-seat enterprise, you might find 10 or 15% of users who match the baseline email usage profile at Microsoft, and I’m sure the percentage of people who use the advanced features of (say) InfoPath or SharePoint is much smaller. The constant flow of new technologies and tools is disruptive, but overall the increase in productivity these tools bring overwhelms their disrupting impact.
I think one of the key drivers behind MS’ aggressive dogfooding is that their users demand, and can gain productivity from, new products’ technology. That’s not always true elsewhere. In fact, when I show ordinary users some of the cool features in Office 2003, it’s clear to them how their productivity would improve, which makes me wonder why the press and analysts so often say that new upgrades don’t offer significant improvements.
Comments Off on Microsoft and the thrift culture
Filed under Musings
Key words a-go-go
According to this article, attorneys are bidding up the value of some keywords in search engine ad placement systems like Google (which powers the ads on my pages) and Overture. The top ranking apparently goes to “mesothelioma attorney”, which costs from $40 to $90 per click. That means if you see an ad with those keywords in it, and you click on it, the attorney who bought the ad ends up getting soaked for the cost of dinner. Wow. (n.b. I am certainly not suggesting that you click on these ads randomly, especially not if they appear on blogs or other places where they might seem out of place. That damages the value of the keywords, of course, and we can’t have that.)
Comments Off on Key words a-go-go
Filed under Musings
Miss Lucy cooks Cajun
Imagine if Grandma Bloch had her own Cajun cooking show. If you can form that image in your mind, you’ve got a pretty good idea of what “Miss Lucy’s Classic Cajun Culture & Cooking” is like. I stumbled across it while setting up the new TiVo (turns out it’s on RFD-TV, which bills itself as “Rural America’s Most Important Network”). It’s terrific. I just ordered two of her cookbooks, Classic Cajun and Classic Cajun Deux. I’ll report back on whether the recipes are any good, but I’m betting they will be.
Filed under Friends & Family
TechEd BOF
If you’ve been around the Internet for a while, you’ve probably heard of BOF, or “birds of a feather” sessions. BOFs are informal meetings held in parallel with conferences like LISA and regularly scheduled meetings like the IETF conferences. The International .NET Association is coordinating the process of setting up a series of BOFs for TechEd 2004. The cool thing about these sessions is that the BOF topics are proposed by TechEd attendees. Their content isn’t driven by MS, or anyone else besides the people in the room. They’re not presentations– they’re an opportunity for people with related interests, whatever they are, to get together and hang out for an hour. The MS TechEd staff is encouraging speakers to encourage “their” communities to propose BOFs here. There are tons of potential topics for Exchange, including security, anti-spam, job hunting, mobility, Notes migration, Exchange 2003 SP1… the list goes on. Let the INETA folks know what you’d like to see.
Comments Off on TechEd BOF
Filed under General Stuff, Musings
TechEdBloggers.net goes live
TechEdBloggers.net is back again this year. I enjoyed last year’s edition; it was cool to see TechEd through the perspective of other speakers and attendees, especially folks who got to go to some of the many sessions I missed out on. To keep things simple, I’m going to post all of my TechEd-related stuff here, not on my personal blog.
I’m currently scheduled for two sessions: a troubleshooting panel discussion and a session on building high-availability Exchange 2003 deployments. Should be fun!
Comments Off on TechEdBloggers.net goes live
Filed under General Stuff, Musings
TechEd blogging
TechEdBloggers.net is back again this year. I enjoyed last year’s edition; it was cool to see TechEd through the perspective of other speakers and attendees, especially folks who got to go to some of the many sessions I missed out on. To keep things simple, I’m going to post all of my TechEd-related stuff over at Exchange Security, but if anything interesting or exciting happens I’ll back-link it here.
Comments Off on TechEd blogging
Filed under General Tech Stuff
Paul's Down-Home Page 