Splunk’s user conference has drawn to a close. After three days with over 160 sessions ranging from security and operations to business intelligence to even the Internet of Things, the same central theme kept appearing over and over again: the key to Big Data is machine learning.
Most open source projects on CodePlex are directed towards developers. Rudolf Henning’s QuickMon is different. It is designed to help the network administrators who keep the servers running so that developers can get a good night’s sleep.
A common theme at the Splunk user conference is the idea that the users are the greatest threat. Even in a well-regulated enterprise where no one has more privileges than what’s needed to do their job, a typical user has more than enough ability to steal massive amounts of data or cause widespread problems. Fortscale seeks to address this issue by using the data that you are already collecting.
Most companies still manually track configuration changes using a wiki or spreadsheet. Only the most basic information such as IP addresses are included, as recording everything is just too tedious. Even knowing basic information such as who made the change is difficult and time consuming. Tripwire seeks to eliminate this problem by proactively monitoring configuration changes.
Traditional signature based anti-virus/malware software is suitable for home users, but not for corporations. As seen repeatedly in the news, targeted attacks against specific companies are becoming more and more common. To combat this threat, advanced threat detection techniques are needed.
CloudFlare have made SSL available to all free subscribers to its content delivery network (CDN) with Universal SSL. The move addresses both cost and complexity issues that have previously confronted web site and application owners wanting to deploy SSL. CloudFlare takes care of issuing a certificate at no cost to the end user, and enabling SSL becomes a selection from a dropdown menu.
At the opening keynote for Splunk .conf2014 we heard about GE Capital’s developer culture, Red Hat’s internal IT focus, and Coca-Cola’s “Data Lake” theory of information management.
REST and REST-like interfaces over HTTP are all the rage these days. Not too long ago we told you about Oracle releasing a prototype of their HTTP-based API for MySQL. Not to be out done, Steve Lee of Microsoft has released sample code for exposing PowerShell over HTTP. And to make it interesting, this web server is written entirely in PowerShell.
RubyMotion recently announced that its Android Support had entered public beta, which should allow early adopters to get started now developing for the Android platform. RubyMotion is a terminal based toolchain used to create native iOS, Mac, and now with this beta version, Android applications, using the popular Ruby language and tools.
Last week Amazon Web Services and Rackspace notified customers that their servers would be rebooted as a part of Xen hypervisor patching. This is the second time that AWS has scheduled reboots as a part of its cloud infrastructure maintenance, and AWS published guidance for building applications resilient to reboots and restarts.
There is a lot of speculation as to why the next version of Windows will be called “Windows 10”. And while we’ll probably never know what happened behind the closed doors of the marketing department, there are solid technical reasons why it can’t be called “Windows 9”.
Amazon Web Services recently added several features to its Auto Scaling service to improve control over the managed Amazon EC2 instances. It is now possible to hook into the pending and terminating lifecycle state transitions to perform custom operations, which is also available for in service instances via a new standby state. The DetachInstances API now allows to remove instances from a group.
A Java REPL will soon be coming to a JDK near you. Robert Field, engineer on the Langtools team at Oracle, recently proposed the creation of a Java REPL ("Read-Evaluate-Print-Loop") project. After a vote, the project, known as Project Kulla was approved. A REPL is essentially a scripting shell or console, such as a UNIX shell or Groovy console, that can be used for algorithm exploration.
"Chaos Engineering", a term recently coined by Netflix, is an umbrella that embraces all Netflix's activities on controlled failure injection. Bruce Wong, Engineering Manager of Chaos Engineering at Netflix, wrote about what Chaos Engineering is, its aims, and the roadmap to achieve them. InfoQ reached Bruce to learn more.
A remote exploit (CVE-2014-6271) has been in bash discovered that potentially affects any application that uses environment variables to pass data from unsanitised content, such as CGI scripts. After the release went public, other exploits were discovered (CVE-2014-7169). Official patches have been released to fix them. (Originally posted 24 September, updated 25, 26 and 29 September)