Skip to main content

Microsoft's Model of Swiss Cheese software security is killing my Server

Whenever I set up a server, I always make sure that the operating system is on one disc or partition and that the data or applications are on another. When I set up our Domino server, Domino went on D: drive and Windows went on C: drive.

In the past, I have had the space problems with Domino because it contains data such as mail which grows explosively. I made absolutely sure that I bought a server with a very large hard drive. I look at the Microsoft recommendations for Windows 2003 server partition size and tripled it. The remaining space I allocated to Domino.

A year and a half later, Domino is still going strong with plenty of room left on the partition. Windows however is starting to run out of disk space because of all the Microsoft updates. There's only 15% free space on the drive.

I only run the critical updates not the "nice to have" ones and I don't run any of Microsoft's worst patching offenders, such as exchange and sharepoint.

Why is it then, that since February 2005, there have been 200 updates, replacing 3,563 files and taking up over 700MB of bandwidth? Surely the world's largest software company can afford to employ people to check the security of the operating system and any patches before they release them.

Comments

Asad Quraishi said…
You should consider using AIX. I'll be posting a slideshow on my itstrategies blogger blog within the next week that represents my business case to senior management to migrate from Exchange 5.5 to Notes/Domino (instead of Exchange 2003). One of my justifications is security and the need for heterogeneity, AIX vs. Windows, Notes vs. Exchange 2003. Take a look later next week if you're interested.
12:23 am
Post a Comment

Popular posts from this blog

How to Change Your Notification Options for New Lotus Notes Mail in version 8.x

Don't worry, I'm not patronizing you (my readers), I just decided to re-document this for one of our internal users and thought you might want to be able to use it in your own user documentation. WHAT IS THIS DOCUMENT ABOUT? Some people who don't get a lot of mail, like to be notified when such an event occurs. Notification can be; via a sound via a pop-up box via the system tray (where the computer clock is) The pop up box looks like this; Other people, who like myself, get too much mail would rather not be notified. The aim of this document is to tell you how (and where) to turn these options on and off. CHANGING YOUR SETTINGS To change your settings from the Notes 8.x client; On the Menu, click File , then Preferences... On the left hand side , click on the little plus sign to the left of Mail to expand the options. Click on the option marked Sending and Receiving . In the middle section, under receiving, you can control your notifications. If you untick the box mark...
12 comments
Read more

How to Create a Bootable DVD Using Nero Burning ROM 9

I often need to create bootable CDs and DVDs but it's weird because I frequently end up buring myself a new coaster instead. It's not that the process is difficult, just that nero has a few too many options and I forget which ones to choose and end up picking the wrong one. I figured that the best way to avoid this mistake in future would be to write the steps down. Procedure Insert CD or DVD into your DVD Burner. Start Nero Burning ROM 9 Choose DVD-ROM (Boot) or CD-ROM (Boot) depending on what you're creating You'll be prompted for a disk image source. Choose a Nero Source - you'll usually find them somewhere like this... C:\Program Files\Nero\Nero9\Nero Burning Rom\DOSBootImage.ima Leave the Boot Locale as English - unless you really need a different keyboard layout Tick the box marked [X] Enable Expert Settings Choose Hard Drive Emulation and leave any other settings as they are. Click the button marked New Add any files you want but don't try to add operati...
11 comments
Read more

How to Create an Auto-Response Mail Message in Lotus Notes 8.5.3+

Why would you do this? Suppose that you have an externally accessible generic email address for your company; support@mycompany.com or info@mycompany.com. You might expose this to the web and allow people to send messages to you. Setting up an auto-response email will tell the senders that their message reached its destination and that it will be dealt with accordingly.  It's also good practice to include links to FAQs or other useful information. Why 8.5.3 The techniques we'll be using here work in older versions of Notes but some of the options seem to have moved around in 8.5.3.  I figured it was a good time to show you where they've moved to. The Procedure Start Domino Designer and open the Mail file to be modified.  A really quick way to do this is to right-click on the application tab and choose "Open in Designer". In the Left hand panel of designer, expand Code and then double-click Agents.  A new window should appear. Click the action ...
22 comments
Read more