Vulnerability in X Server Allows the Unlocking of Computer

A very interesting, and potentially very harmful, vulnerability has been discovered in X.orgs's X Server that allows users to gain access to a locked computer. By pressing the Ctrl key, Alt key and * key simultaneously one can disable a user's screensaver and unlock the computer, a glitch discovered by French blogger "Gu1". The technique has already been verified to work on versions 1.11 and higher of X.org's X Server.

According to Gu1, the vulnerability is caused by something known as the "AllowClosedownGrabs" debug option. If this debug option is activated, pressing that key combination will cause any processes that calculate mouse or keyboard inputs to shut down. In the case of the key inputs above, the computer's screensaver, which usually prevents a locked computer from being accessed, is disabled.

Gu1 also says that this debug option had existed up until 2008, though at that time it was disabled by default and well-documented. It has also been mentioned that the developers explicitly pointed out the potential security problems that may arise when this is used in combination with screensavers. In addition to that, developers were able to use an API to disallow the function for their processes.

The function was re-introduced last year though was enabled by default and was not clearly documented and not easily configurable according to Gu1. Developer at X.org Peter Hutterer stated, "This was caused by a miscommunication within the development team." After the function was re-introduced, developers failed in removing the keyboard combination from the default keymap.

Gu1 also mentioned that any Linux distributions that use version X Server v1.11 are vulnerable and added that he was able to reproduce the problem with Debian and GNOME 3 and even with Arch Linux and GNOME 3 and Slock and Slimlock. It is also reported that KDE can also be unlocked this way.

Source: The H - X.org server allows anyone to unlock computer

Power Point Projectors
Most business class projectors will do a good job displaying your PowerPoint presentation. If you have a small presentation group, a 2000 lumen LCD projector will be able to produce a nice and clear picture. For larger audiences you should consider a 5000 lumen LCD projector.

Beta Testing Begins for Red Hat Enterprise Linux 5.8

Linux vendor Red Hat is fancying itself up with a newer platform but is by no means hanging its older customers out to dry. The company is currently in the process of testing the Red Hat Enterprise Linux 5.8 release, which will provide customers with updates to the platform.

Red Hat first launched Red Hat Enterprise Linux 5 in 2007 and in the latter part of 2010 released Red Hat Linux Enterprise 6, which provided the next generation of enterprise Linux features. Red Hat Enterprise Linux was also recently updated to Red Hat Enterprise Linux 6.2, which gave new control and storage features. The upcoming release of Red Hat Enterprise Linux 5.8, which is now in beta testing, will be getting its own set of updates, though resource control won't be among them.

The resource control functionality found in Red Hat Enterprise Linux 6.2 is from the cgroups feature, which is also not present in the Red Hat Enterprise Linux 5.x series. According to Vice President of Linux Engineering at Red Hat Tim Burke, "cgroups was extremely invasive so you'll never see that in Red Hat Enterprise Linux 5. We continue to do minor feature enhancements in Red Hat Enterprise Linux 5." Burke also added that the minor feature enhancements added to v5 must not be invasive or overly risky and that there is also the potential for additional hardware enablement in Red Hat Enterprise Linux 5.

Even though cgroups isn't going to be in RHEL 5.8, other types of enterprise controls are. Some of the new features support Power Management Quality of Service (QoS), a feature that provides power savings to enterprise via automated scheduling based on QoS policies. In addition to that, there is something known as "iotop" support. This is said to provide monitoring for I/O from a process perspective that will be helpful in troubleshooting performance issues.

According to Burke, "RHEL 5 is still getting development features so it's definitely not the end of the road for RHEL 5. Remember we have a 10-year product lifecycle. At this point RHEL 5 is only four years old, so we still have a long runway left for RHEL 5."

Source: Server Watch - Red Hat Enterprise Linux 5.8 Enters Testing

A Copier Rental is a quick way to mass produce important documents for potential customers at an event or conference. Renting office equipment is simple and easy and it can also save you loads of time and money. Rentacomputer.com has been offering copier rentals to more than 1000 cities worldwide for over 20 years.

Red Hat Virtualization No Longer Windows Exclusive

Considering that it's a Linux Vendor, it isn't a surprise that Red Hat obviously wants its customers to run its technologies on Linux. However, when it comes to the Red Hat Enterprise Virtualization (RHEV) management system, customers have always been forced to run the system on Microsoft Windows. However, that is all about to change.

According to Navin Thadani, Senior Director of Red Hat's Virtualization Business, "The management system has been re-written as a Java app that runs on top of a RHEL (Red Hat Enterprise Linux) server. So we've removed the Microsoft Windows server dependency."

Thadani did note that RHEV will still support Active Directory for authentication work. Now the system uses the open source PostgreSQL database as well. The new RHEV update is said to be a zero-downtime upgrade according to Thadani. In addition to that, the new Windows-free management piece will not cost anything extra other than that which Red Hat has previously charged for the RHEV versions that had Windows dependencies.

"The way we price RHEV is that we don't charge for the management system separately," Thadani added. "Ours is a single price for the management system and the hypervisor baked into a dollars-per-socket, per-year price." Thadani also added that enterprises just need to count the number of CPU sockets they will use and that is how much they will pay. Thadani also added that he believes that Red Hat's pricing can be 1/7 the cost of VMware. VMware recently changed its pricing model for vSphere. Pricing is now based on virtual RAM allocations.

In addition to the new management server, the other major change in RHEV 3.0 is a new version of KVM. KVM is the core virtualization hypervisor that powers the solution. According to Thadani, "We've replaced the underlying hypervisor to the new KVM that's going to be shipping in RHEL 6.2. With that, we've picked up performance enhancements, including Transparent Huge Pages for database performance, paravirtualized interrupt controllers, async I/O and an entire rewrite of the networking infrastructure."

Thadani also explained that the networking stack has also been moved from userspace to kernel space to deliver better performance to users. Now, the system can scale up to 128 CPUs with 2TB of RAM at the host level, providing for larger virtual machines.
In addition to that, Red Hat is making it easier to provision and deploy new virtual machines as well as create templates and make virtual machines. There is also a new built-in reporting infrastructure that leverages an embedded Jasper Reports engine.

RHEV is not all about server virtualization exclusively, there is also a virtual desktop infrastructure (VDI) component as well. "We've made improvements to VDI in the area of WAN optimization," Thadani added. The last major release of RHEV was when version 2.2 was released in 2010. When asked about number of customers, Thadani stated, "We've got many, many customers around the world and across industry segments." RHEV 3.0 is currently in beta testing with general availability slated for the end of this year.

Source: Server Watch - Red Hat Revs up Virtualization, Without Windows

Find out what is going on in the Tech Army World.



What are the Top 10 Money Making Missions?

What other companies have joined and what do they do?

How do I join the
Tech Army Organization ?

Red Hat Linux Offered on a Per-Server Basis by IBM on Power Systems

IBM, along with Red Hat, a commercial distributor of Linux, have teamed up to provide Enterprise Linux 6 on IBM's Power Systems that are sold by Big Blue along with first level and second level support provided by Big Blue. Obviously, that isn't very new news.IBM has been a huge OEM partner with Red Hat for years now. What is new is that in an announcement letter, IBM and Red Hat have revealed a per-server license price for Power Systems machines running RHEL 6 which started up back in November. With RHEL 6 out but not certified on the new Power iron, IBM began giving away a free RHEL license on Power Systems Express configurations. IBM has now worked with Red Hat in order to tune up RHEL 6 for Power6, Power6+ and Power7 servers. This includes integration with IBM's PowerVM hypervisor for Power iron. The new licensing for RHEL 6, which became available on April 15th, allows for every pair of sockets in the box to be licensed with 15, 30 or 60 logical partition ceilings per socket pair. A standard 12x5 business hour support contract for RHEL 6 for a socket pair on a Power Systems box costs $1,350 per year for a setup with a 15-LPAR ceiling. Now if you want to increase that to a priority 24x7 support, then your price will increase to $2,150 per year. Doubling up the LPAR ceiling to 30 on a four-socket Power System doubles your support costs and if you quadruple it up to a 60-LPAR ceiling on an eight-socket machine, you quadruple your prices to $5,400 and $8,600 for a 12x5 or a 24x7 coverage. IBM, just like Red Hat, does give discounts to customers who purchase a three-year contract. IBM did, however, stop selling the earlier RHEL 5.5 on April 12. Source: IT Jungle - IBM Offers Red Hat Linux on a Per-Server Basis on Power

The Security Camera Blog Get a regular infusion of new security camera technology information, video and news. Easy to subscribe in a reader or by email.

We help you stay in touch with the latest security camera features.

Dell and Ubuntu Team Up for Linux Cloud Computing Technology

Canonical, one of the vendors of Ubuntu Linux, is expanding their cloud horizons thanks to a new cloud partnership they have formed with Dell. The partnership consists of Dell making the Ubuntu Enterprise Cloud (UEC) technology available on the Dell PowerEdge C2100 server as well as the Dell PowerEdge C6100 server. The UEC deal marks a huge milestone for Ubuntu as it moves from Dell desktops to Dell servers.

According to Nicolas Barcet, Ubuntu Server Product Manager, "It is the first offer that involves Ubuntu Server Edition at Dell so it's a major step extending the strong relationship we have had on Ubuntu Desktop and Netbook editions."

UEC has been a part of the Ubuntu Linux distro since Januty Jackalope was released in April 2009. Other releases by Ubuntu have improved the technology that is based on the open source Eucalyptus project. Ubuntu stated back in April 2010 that it had 12,000 active deployments of UEC with as many as 200 being added each day. This deal with Dell also involves a fair amount of money but an exact amount is unclear.

"Dell receives a share of the UEC Assist contracts it sells; details are not public. Dell does the entire sell, which includes the reselling of UEC Assist contracts," said Barcet.

There were some questions raised as to why Dell has decided to make UEC available now, and Barcet noted that Canonical and Dell have been working on making a simple yet stable deployment methodology. This methodology is reflected in both reference architecture documents as well as a set of pre-configuration files.

Barcet noted that UEC is not certified or integrated with other hardware from major system vendors other than Dell as of right now. UEC offers Ubuntu the ability to enable their infrastructure to run as either a private cloud deployment or a public cloud deployment. While the price utility of cloud computing has made it a good business investment for some companies, there are still challenges that need to be tackled.

According to Barcet, "Novelty of infrastructure as a service is the strongest barrier. We believe that seeing trusted partners join forces to provide an end-to-end solution will help establish the solution."

Source: Server Watch

File Server rentals are ideal if your company needs an extra storage unit for company information while you are testing various types of storage solutions.

Whether you need a short-term rental or a long-term lease, we have the right kind of server for your needs.

Server OS Landscapes Going with the Flow

The world of UNIX and Linux server operating systems right now is anything but boring. However, that may not be the best thing, especially for enterprises that want a background of stability and certainty when they choose a server OS to power their business.

If you use Sun UNIX, then you know all about this. The OpenSolaris project just recently disintegrated into nothing after a long run of uncertainty and was replaced by something probably based on the Illumos project like the OpenIndiana spork. Users of Solaris weren't greeted with such a rude awakening though. Their enterprise OS hasn't actually gone away. They have, however, come to terms with the fact that UNIX is now a product of Oracle which means it is being developed along a very, very different style then it was under Sun.

The Suse Linux Enterprise Server (SLES) is under Novell and is also one of the two leading open source server distributions. The server itself runs just fine but, being owned by Novell, which is known for being a little chaotic, has cast a shadow over the product.

On a lighter side, if you are a Red Hat shop, you can rest assured that you are running the number one open source server OS from a dependable and stable company. In fact, Red Hat Enterprise Linux (RHEL) is respected so highly that Oracle uses it as a basis for its own Linux offering.

But how long will this last? Oracle has decided to drop Red Hat compatibility in its Oracle Linux Product after announcing the Oracle Unbreakable Kernel for Oracle Linux at Oracle OpenWorld last week. According to Oracle, it is a "fast, modern, reliable kernel that is optimized for Oracle software and hardware." Oracle also promises that the new kernel will offer a 75% performance gain demonstrated in OLTP performance tests over a Red Hat compatible kernel, a 200% speedup of Infiniband messaging and 137% faster solid state disk access.

It is rumored that VMware may buy Novell's Linux business, and if that does happen, then Red Hat is going to be a minnow among sharks in the server OS market going forward. To put it into perspective, Solaris is a part of a $140 billion Oracle Corporation while SLES would be a part of a $36 billion VMware. As for Windows, AIX and HP-UX, they are each owned by corporations worth some $220 billion (Microsoft), $166 billion (IBM) and $90 billion (HP) respectively. Red Hat is definitely the odd one out with only $7 billion.

That leaves IBM, HP and Microsoft. All these companies are fairly predictable and boring, but they are also huge. However, with all that is going on in the enterprise operating systems market at the moment, big, boring and predictable may be the perfect thing for many potential customers.

Call Rentacomputer.com today at 800-736-8772 if you are in the market for a Nationwide Copier Rental.