VMware

VMware Increasing Pricing For Partners

I was forwarded an email today from a VMware distributor that informs VMware authorised partners that their prices are going up.

No customer buys software directly from the big software vendors. Typically the path is either:

Manufacturer > Distributor > Reseller > Customer
Manufacturer > Large account reseller > Large customer

Each link in the chain (or channel) makes a small percentage. There is a “price list” at the top of the chain, but that is often discounted. Discounts are applied to large deals, and that discount can vary depending on sales targets for the product, what is included in the deal (adding more can sometimes reduce the original price), the time in the sales cycle and the size of the deal. In the case of VMware, few ever pay the prices listed on their website.

This is the email sent out to VMware authorised partners:

VMware are reducing those discounts, giving VMware more earnings and reducing the profitability of VMware software to partners.

Do note, that any reseller that has a business plan to make profit from licensing needs to sell A LOT of licenses. Real profits for resellers come in services, not in s/w or tin.

Technorati Tags: Licensing,VMware

Microsoft News – 23 January 2015

If you’ve just emerged from a cave or from under a rock, then you might like to read about Windows 10 and HoloLens. It’s been amazing to see how in “90 minutes”, the image of Microsoft has done a 180 degree turnaround. The carefully orchestrated and timed announcements on Wednesday were very effective.

System Center

Multiple domain names and themes on a single Tenant portal: More WAP-tastic extensibility.

Windows Client

Microsoft Provides a Much More Complete Look at Windows 10: Paul Thurrott
Windows 10 will be Free Upgrade for Windows 7 and Windows 8 Users: MSFT wants everyone to have the best access to online services.
Hands-On with Microsoft HoloLens: Paul Thurrott had an hour with the augmented reality headset.
Windows RT Will Not Be Upgraded to Windows 10: As I predicted quite a while ago, Windows RT went the way of Windows for MIPS processors.
The next chapter of Office on Windows: Universal touch-first apps included in Windows 10 for free (phone and small tablets – license probably limited to personal usage).

Azure

Setting up Active Directory for a Disaster Recovery Environment: Talking about how to get AD up and running consistently in your DR site.
Best Practices for Process Server Deployment when Protecting VMware and Physical Workloads with Azure Site Recovery: Getting the InMage Process Server configured for your replication from vSphere.

Office 365

New Office Visio Stencil: These stencils contain more than 300 icons to help you create visual representations of Microsoft Office or Microsoft Office 365 deployments including Microsoft Exchange Server 2013, Microsoft Lync Server 2013, and Microsoft SharePoint Server 2013
Azure RMS Migration Guidance: The Azure RMS Migration guidance contains a whitepaper with step-by-step guidance and links to cmdlets and tools to migrate on-premises Active Directory Rights Management Services (AD RMS) server key and templates to Azure Rights Management services (Azure RMS) while preserving access to protected content.

Technorati Tags: Microsoft,Windows 10,WAP,Cloud,Cloud Computing,Hardware,Azure,DR,Hybrid Cloud,VMware,Office 365,Active Directory,Office

New Security Vulnerability in ESXi

VMware posted this article where academic research has found a vulnerability with Transparent Page Sharing (TPS). Apparently they can use this to determine the “private” AES encryption key of another virtual machine. Woops … another “breakout attack” for VMware. I’m still waiting on the first one for Hyper-V.

TPS is one of those features that vFanboys cling to when attacking Hyper-V Dynamic Memory. Now VMware are turning if off by default (starting Q4 2014 for ESXi 5.1, and later for other versions). Hmm, this case raises questions about the security design of vSphere.

I agree with VMware that the vulnerability is impractical in terms of usefulness to an attacker. But what if you could use TPS to get the private SSL key of an application server in a multi-tenant cloud, and then use that to launch man-in-the-middle attacks? That would be a serious threat.

Choose your hypervisor carefully – breakout attacks are BAD.

I wonder what fresh hate will be vomited in my direction by the vFanboys 😀 Thanks to Flemming Riis (@FlemmingRiis) for the heads up.

Technorati Tags: VMware,Security,Virtualisation

Microsoft News Summary – 1 September 2014

Frak! It’s September already!?!?!?! Here’s my first update in a since last Wednesday – travel and events took priority.

The big news broke late on Friday and Saturday. The moron judge presiding over the FBI/Microsoft case cancelled the stay on the order to force Microsoft to turn over data from the Dublin data centre to the US feds, thus breaching privacy and violating Irish and European laws. Microsoft is refusing to comply and is appealing to a higher court in the USA.

Hyper-V

Manually Merging Hyper-V Checkpoints: Black magic for those of you who misuse Hyper-V snapshots.

Legal

Your email belongs to you, not us: Microsoft is quite clear on this, and it’s why the US government’s case is BS, and it’s not similar to the IRS demanding that you turnover your offshore bank records.
Microsoft Ireland data warrant upheld, stay on data turnover lifted: The American government wants to kill all American presence in the cloud. Microsoft will resist, and is supported by the rivals.

Azure

A backup to Azure Backup fails if the data source is larger than 850 GB: A hotfix for W2008 R2, WS2012, WS2012 R2 DPM 2012 SP1 and DPM 2012 R2.
How to plan your migration to Azure Websites: This post will showcase the what you need know about the platform when migrating to Azure websites.
Azure Automation – Authenticating to Azure using Azure Active Directory: Azure Automation can now authenticate to Azure using organization identity credential-based authentication, using Azure Active Directory.
Introducing Long Term Retention for DPM Azure cloud backups:

Windows Intune

Microsoft rolls out two new Windows Intune mobile-device management features: iOS and Windows Phone 8/8.1 Email Profile Provisioning and Mobile Policy Support for Enterprise Mode in Internet Explorer for Windows 8.1/8.1 RT.

PowerShell

Windows PowerShell ISE Fundamentals: This built-in tool makes learning PowerShell easy.

Surface

What’s the Future for Surface Tablets? IMO, doom. It’s impossible to sell a business machine to business users if you don’t give businesses a way to buy the device and an SLA-enforced mechanism to support it. First of you to say "BYOD" gets a kick in the groin for drinking 2-year old Gartner KoolAid.

Licensing

Hybrid, Dedicated, and Shared Scenarios: Easily, the most complicated aspect of licensing. It makes VDI look easy.

What’s New in VMware vSphere 6.0: Some nice things, but not that much to be honest.

Consumer

Finally, Microsoft Has Removed The 2GB File Size Limit On OneDrive: It never affected me, but someone must have complained.

Technorati Tags: Microsoft,Hyper-V,Virtualisation,VMware,Azure,Backup,DPM,System Center,Intune,PowerShell,Scripting,Hardware,Licensing

Microsoft News Summary – 26 August 2014

I know very few businesses deployed Windows 8, but any "upgrade" that requires a wipe & replace is not a service pack. However, that’s what Microsoft now thinks, and that’s had an impact on the Windows 8 support policy. Someone in Redmond needs a quick kick in the nether region, because coffee clearly won’t be strong enough.

Microsoft’s Support Policies Have Changed with Faster Windows Releases: If Windows 8.1 was a service pack for Windows 8 … ? Seriously!?!?! Note that Windows Server 2012 is not affected by this madness.
Share your feedback! The virtualization folks in MSFT want feedback on security features in the Cloud OS.
"The VMware hyper-v converged stuff is gonna cause an awesome sh1tstorm": And I didn’t write this!!!

And in other news on this slow morning, Steve Ballmer binged on a TV show featuring one of Hollyweird’s plastic surgery victims. Yeah; it’s always a slow period in the build up to big announcements.

Technorati Tags: Microsoft,Windows 8,Windows 8.1,Hyper-V,Security,VMware

Microsoft News Summary-2 May 2014

The big news yesterday was the general release of the new patch for IE on XP. Personally, I think this is a stupid mistake by Microsoft, and it will lead to some laggards to reason that Microsoft has reversed course on the end of support. Microsoft can comment all they want; most people never read blogs, press, or attend events. The mistake has been made, and it was one of the dumbest releases since Bob.

Windows XP is still on 26.29% of the world’s PCs: According to NetMarketShare. That’s a lot of machines not to get the patch for the recent zero-day IE bug.
Whitepaper and Webinar “VMM (Fabric) Management and Resource Pooling”: By MVP Thomas Maurer
Microsoft Issues Fix for IE Zero-Day, Includes XP Users: This is to fix the recent headline grabbing zero day bug.
Microsoft-SUSE Alliance: Linux and Windows Interoperability for More Than 1,000 Customers: Microsoft extended an agreement with SUSE through 2016 to remain committed to working in tandem on solutions that help customers manage critical workloads in mixed-source environment.
Microsoft Desktop Optimization Pack 2014 Now Available: A new version of MDOP is out.
MDOP 2014 delivers improved BitLocker management with MBAM 2.5: The Springboard blog talks about the improved centralized management of BitLocker with Microsoft BitLocker Administration and Monitoring 2.5, included in the new Microsoft Desktop Optimization Pack 2014.
5 Reasons To Choose Windows Server 2012 R2 Hyper-V over VMware vSphere 5.5: A ever-so-slightly snarky op-ed post by me on the Petri IT Knowledgebase.

Technorati Tags: Windows XP,VMM,System Center,IE,Linux,Hyper-V,Virtualisation,Deployment,Security,VMware

Microsoft News Summary-1 May 2014

Happy May Day, comrades! I was tied up with events the last couple of mornings so here is two days worth of news. Note the new beta for System Center Advisor. The security functionality looks very interesting!

Virtual Processor Scheduling – How VMware and Microsoft Hypervisors Work at the CPU Level: Have you ever wondered how virtual machines get access to the physical processor cores in the server? Ever wonder why one or two VMs run slow sporadically? The topic today is Virtual Processor Scheduling.
Automating VM Customization tasks using Custom Script Extension: Custom Script Extension can automatically download scripts and files from Azure Storage and launch a PowerShell script on the VM which in turn can install additional software components.
Window Azure Fault Domain and Upgrade Domain Explained for IT Pros (Reprised): These two terms represent important strategies in cloud computing for deploying and upgrading applications.
Get a sneak peek at the new Microsoft System Center Advisor Security Intelligence Pack: It looks like some sort of security solution is being added to System Center Advisor: collect security logs, ID patterns, correlate data, change history, and mitigate issues.
38% of surveyed financial companies have not budgeted for a DR plan: Wow!
Disaster Recovery Rights for SPLA: Microsoft has clarified the licensing rules for disaster recovery under the hosting licensing program.
Hyper-V Virtual Machine Storage Controllers Explained: My latest post on Petri.
Linux Integration with System Center 2012 R2: This video provides an inside scoop on Linux integration with System Center 2012 R2 for unified management across on-premises and Microsoft Azure cloud environments.

Technorati Tags: Hyper-V,VMware,Virtualisation,PowerShell,Azure,System Center,DR,Licensing,Storage,Linux

VMware Is More Secure Than Hyper-V … And A Leprechaun Marries A Martian

In case you have been hiding under an IT rock, the world of the Internet has been rocked by a vulnerability found in the widely used OpenSSL. MVP Troy Hunt has a good description of the vulnerability here.

The list of known vulnerable sites is a who’s who of the Internet. Interestingly, servers that run on Windows Server and use the native SSL features of IIS are not affected. Note that Windows Server and System Center use native IIS functionality. Microsoft has also confirmed that Azure is also not susceptible to this attack.

Hmmm, who else is out there that might be vulnerable? Who do many claim is more secure, but really they’ve been found lacking? Who had a breakout attack (maybe more than one)? Who had a weakness in the design of their virtual storage that allows a guest OS admin to read files (passwords) from the host? Which other virtualization company is susceptible to Heartbleed?

Hmm, would it be …

… VMware?

Yup, if you have a recent product from VMware then your virtualization or cloud is vulnerable to attack. Got a public cloud based on vSphere? You are probably vulnerable.

The lesson here is simple: Building alleged enterprise-class software where no-one is responsible for trustworthy computing reviews is negligent. Who reviewed that code?

Now tell me that Microsoft makes insecure software … penguin lovers! Stick your hands up so we can send the men with nets after you conspiracy theorists or your bosses can identify the weak links in their IT departments.

Technorati Tags: VMware,Security

Please Welcome 5nine!

I’m pleased to announce that 5nine have become a sponsor of my blog. 5nine is a key player in the Hyper-V partner ecosystem, making of security, networking, and management tools & extensions.

You’ll find an alternative to SCVMM for small/medium businesses, extensibility to SCVMM and the Hyper-V virtual switch for the medium to large enterprise, and a number of very useful free tools.

Please take the time to evaluate 5nine’s tools and see what they could add to your network.

Technorati Tags: Windows Server 2012,Windows Server 2012 R2,Hyper-V,VMware,VMM,System Center,Networking,Security,Virtualisation

5nine Software Releases V2.0 Of VMware-To-Hyper-V V2V Conversion Tool (FREE!)

5nine Software announced the release of the free 5nine V2V Easy Converter v2.0 yesterday. This will allow you to convert VMware VMs into Hyper-V VMs with support for VHD and VHDX and the following guest OSs:

Windows Server 2008
Windows 7
Windows Server 2003 (x86 and x64)
Most of Advanced Server 2000
Ubuntu Linux
CentOS Linux

Yes: V2V conversions to Hyper-V for Linux guests!

The last three versions of Hyper-V are supported:

Windows Server 2008 R2 SP1 Hyper-V
Windows Server 2012 Hyper-V
Windows Server 2012 R2 Hyper-V

If you have any questions, please contact 5nine Software Information at info(at)5nine(dot)com or via phone +44 (20) 7048-2021 from 7am to 5pm GMT

Technorati Tags: Windows Server 2008 R2,Windows Server 2012,Windows Server 2012 R2,Hyper-V,Virtualisation,VMware