Looking at the human factors in security breaches
Posted by Gary Williams on November 1, 2017
4/5 (2)

There have been a lot of high profile security breaches this year, the highest profile has to be that of Equifax as that is a breach which has the potential to run and run for some time to come. Deloitte also got breached and alongside those large companies which should have known better, there have been various others impacting systems such as Disqus.

Of course, once it was made clear how the breach occurred, a lot was said about how bad it is that the breaches accorded and how it should never have happened and this is quite valid from a technical standpoint but, the reasons that these security issues were allowed to exist go far beyond the technical and into the realm of human factors.

To be clear, I’m an IT pro, I love what I do. I’m not a psychologist and nor am I attempting to be one but I also have an interest in how disasters unfurl, not least of which are aviation disasters. Whenever there is an aircraft accident the investigators always look at the human factors alongside the technical and mechanical ones and I think that it’s time that the IT industry started to do the same when reviewing IT disasters including security breaches.

Root causes of data breaches

Learn More

Please rate this

Disaster Recovery and why hypervisor HA may not be best
Posted by Gary Williams on August 10, 2017
No ratings yet.

A lot of the time I see and speak to people asking about DR solutions when what they really want is HA with a few backups so I wanted to use a blog article to go through some of the technical terms used in conjunction with DR.

When people say “I want DR”, I’ll ask them about the sort of disasters they are looking to protect against and most of the time the response is “I want to keep working if my hypervisor crashes”.

Linux VMs restart

Learn More

Please rate this

You can’t have too much monitoring
Posted by Gary Williams on May 25, 2017
No ratings yet.

One of the things I come across time and again is a lack of monitoring in what are supposed to be corporate environments. I am honestly surprised at how little monitoring is carried out on infrastructure. These days, it is quite possible to carry out some very in-depth monitoring by using a freely available software on Linux and Windows. In this article, I’m going to go through the various monitoring tools that I use to monitor both production and my lab environment.

Having extensive monitoring in a lab is handy when testing systems as not only are it possible to get an idea of the sorts of information you can get from the device when it’s in production but you also get to see how it works thanks to having a greater visibility of the system. These little insights are always handy for putting into documentation ahead of deploying to production plus it’s a huge help when you’ve already seen error messages before and have a clearer understanding of what may have caused them.

Graylog view server CPU usage diagram

Learn More

Please rate this

VMware’s Photon and containers in VMware
Posted by Gary Williams on April 12, 2017
4.5/5 (2)

The past month has been categorized as something of a performance and upgrades challenge as one of the constant calls I hear is “application X is going to slow”, of course, a month ago it was fine but today it isn’t and normally this is just down to increasing load.
One of the common fixes for increasing load is to add more vCPU and RAM but often that can cause its own set of problems especially when NUMA boundaries are crossed and when vCPU contention pushes things a little too far.
The second part of the challenge is the upgrade challenge where various applications need upgrading but there are dependency chains to take into account, this is the sort of thing where application X needs a very specific version of application y. In those cases, an upgrade is much easier to do by reinstalling the OS and starting again then transferring the data across!

As a potential solution to these issues that I’ve been exploring is Docker on VMWare’s Photon OS.

 VMware Photon logo

Learn More

Please rate this

Using Blue/Green environments to avoid a Gitlab style outage
Posted by Gary Williams on March 13, 2017
No ratings yet.

As most of you are probably aware, Gitlab is, in part, a source code hosting repository which suffered something of a major outage just a few weeks ago. Unusually, they posted a very full and frank report on what actually happened. It’s very rare for a company to do this and even rarer for it to be made public, I wish more companies would do this, even if it was just an internal review with the blame put on the process, it would at least highlight where the weaknesses are in the infrastructure.

Diagram user router web server application server database server

Learn More

Please rate this

Fighting Azure AD Connects custom installer
Posted by Gary Williams on February 8, 2017
5/5 (3)

I’ve recently been spending more and more time looking into various cloud technologies such as AWS and Azure. One of the projects I’ve been working on required the on-premises active directory to be extended to Azure to allow for a future introduction of various Office365 elements.
The process for doing this is fairly easy as it’s just a matter of installing the Azure Active Directory Connect tool onto a server, creating the domain in the Azure portal and then waiting for Azure AD connect to Sync.

Microsoft Azure AD connect setup

Learn More

Please rate this

Exploring VMWare’s VPID Technology
Posted by Gary Williams on January 11, 2017
5/5 (3)

I’ve been using VMWare’s VPID (Virtual Port ID) technology for some time now both in work and in the home lab but I was curious to see just how VMWare handled a NIC going down and then coming back up and it turned out to be a lot more powerful and smooth than I first though.

In my lab, I’ve got several HP Microservers and a mix of TP-Link and Netgear switches.
I’ve found the TP-Link switches to be perfect for a lab as they have 48 1GBit ports and 4 1GBit FC ports. They haven’t cheapened out like Netgear have with the link between the last two Ethernet and the first two FC. With Netgear, you can only use last two Ethernet OR the first two FC ports.
You cannot use all of the ports on the switch. With TP-Link, all the ports are available and I find the web GUI a little more initiative although I did experience a bug on the TP-Link where the SNMP Engine kept crashing. This was fixed in a firmware upgrade so it wasn’t a major issue.

Anyway back to VMWare and VPID!

Virtual Machine Port Group

Learn More

Please rate this