Silicon Shecky

Infosec Practitioner

Connect

The problems with the Cloud…

By 1 Comment

Everyone is talking about Cloud computing. Put things up on The Cloud. SMBs save money by moving to The Cloud. The Cloud is not everything its cracked up to be though, as one of the biggest cloud providers has recently shown.

Before we get into the heart of this op/ed type piece (I do try to use facts, but the thoughts are my own), let us take a basic look at what cloud computing is generally being marketed as. The basic idea is that you remove the server from your location, put it on the Internet through a secure host (the biggest names hosting are Microsoft, Amazon and Google), therefor giving you the ability to work from anywhere, not have to worry about server maintenance, or having an IT department( there are other aspects such as MSPs, Backup to remote data centers, and more that do not apply to this article). To quote the movie Murder by Death, “Interesting theory, one small problem. Is stupid, is most stupid theory I ever heard!”

Why is it so stupid (In my opinion). For a few reasons. First and foremost is security. Take a look at the recent problems with Google and China and you will see what I mean. The hacking, the lack of being able to harden a server yourself (or letting an IT company you can hold responsible), the lack of control. Take a look at what is going on through some of the security sites, not just the small spattering you hear from mainstream media(which will not always tell you the full story due to corporate connections). Now you might say, but I’m small why would someone want to hack me, and that is not the reason you would be hacked. It could be a side effect of being hosted on a much more visible target (again, Google, Microsoft, Amazon etc…).

Once you get past the security aspect, you run into, what happens to your data overall. Who owns it? If you got out of business, does it get destroyed properly? What if you decide to move off the cloud to a local server, does the hosting company have to keep copies of your data due to regulations? A lot of those types of issues are easily solved through contracts, but are you reading through the contract properly. From personal experience with Off-Site backups, the company I work for and our partners put in writing that the data is our clients, and if they want it destroyed due to changing services, going out of business etc… we can do that. This is just data backup though. What about when your whole server is up there?

Finally the reason the cloud is not ready for prime time is infrastructure. Mostly ISP speeds and costs. think about it, you start saving money by bringing your server up to the cloud, but find that access times to files, to e-mails, is extremely slow, and that cuts down on your productivity. The fastest you can go is going to be the slowest link in the chain.

Most businesses are still working off the T1 assumption. A T1 is 1.5Mbp downstream and upstream. This really is not a lot compared to the sizes of files, amount of data being transmitted, and other small factors such as number of people sharing that line. If you are on the cloud, you no longer have just e-mail constantly streaming in, but authentication protocols, Active Directory communications (if its a Microsoft server), Word documents, Quickbooks data (if needed) and much more. Think of it this way, the average home Internet speed is 12Mbp down, 1.5 Mbp up. Faster on the downstream, same on the upstream, which would be your clog. A T1 averages $500-$1000 per month. Home Internet costs around $30-$70 per month but does not have the Quality of service needed to be reliable for could computing. Fiber Internet is the solution (60+Mbp down and up for $1000=$1500 per month right now), but availability of it is spotty at best. Until this bottleneck is fixed, no matter how secure it might be, or guarantees about the data ownership are resolved, I cannot recommend could computing.

The biggest thing to realize is that there is give and take in everything. To really come up with savings, you have to figure in items such as security, lost time due to connectivity, plus you still need someone to be able to take care of your local PCs. A good local IT consultant in the long run is still a better option for most SMBs. A Managed Service Plan with a local IT firm is probably the best, cause its a one low cost solution that covers most everything, and you can budget for because the cost is locked in for the length of the contract. Think about that before you go cloud hopping.

Ubuntu 9.04 Review Part 2

By 2 Comments

So, its been around a week that I have had the latest version of Ubuntu installed on my lappy and I have more thoughts and a couple of gripes on it.

The new version of Gnome that comes with it is slick. Doesn’t look all that different, but some of the small changes are nice, plus it is definitely more stable. I”m still playing a bit with the package manager and installing and removing software to see how that works and what is available. I did notice that Postgres is not available through the add/remove software feature, which did disappoint me a little, but not as bad as the following problems, which show it is not really ready for prime time yet.

First issue is the automatic search for updates when you log in. At one point in time on 8.10 it worked, and was done with its check rather quickly after logging in. Then some update came down and all that changed for the worse, and it is still that way. When I log into the machine it takes 10+ minutes for it to finish the update search and during this time frame the machine works like a slug. Yes, its a 4 year old laptop, but considering that the updater is the only thing that consistently slows my machine down, I have to say that there has to be some issue with it.

The biggest issue I’ve found so far has to do with Wireless Networking. Oh, don’t worry, it will find your card, and you can connect to a network, provided it is not using WPA for security. I did try to set the machine up to connect to my WPA Secured wireless network, and it will not connect to it. Of course the fact that the built in wireless software for Ubuntu does not show you a list of available wireless networks is a big drawback in its own right. Yes I can get a 3rd party scanner, but if Ubuntu wants to compete with the big boy’s (Microsoft and Apple) Then it needs to have that scan functionality out of the box and enabled by default. Even if they only gear it for businesses, or netbooks, when you travel you need the simplicity for the average Joe.

Of course that brings us back to the problem with the Average Joe and the Linux community. One day maybe those geeks on the Linux board will realize that the only way for them to be accepted is if they stop putting down non-tech people. Only then will Linuxx truly be ready for the Desktop.

So here we go…

By Leave a Comment

I can’t express how important it is to make sure you not only document your network, but what a pain it is when you don’t.

6 weeks of planning and having to map out Active Directory comes to a head for myself this week as I take care of the last parts of the redesign. Of course a lot fo this time could have been prevented with the proper documentation.

And I don’t mean just listing out what harware you have and how its connected. Active Directory, Network Shares, Security on the shares, all of it should be documented. Not just in case you need to change things, but to show what work has been done, so others can understand what has been done, how things are set up, and more importantly why they are done that way.

It also help out when trying to track down potential causes of issues. It doesn’t matter if its SBS or not, it should be done. Use Visio, make a network notebook, whatever floats your boat, but just do it