Fedora 7 VS. Debian Etch Business Card - You’ll Never Guess Who Wins

In an attempt to save money, the agency I work for is in the process of migrating a lot of mission critical components to virtual environments. The Virtual Infrastructure implementation is an excellent idea, when carried out properly.

The IT department is also in the process of implementing the ITIL framework. ITIL is basically a set of best practices that result in lower costs to the department and better customer service to our clients. Part of the framework involves a Central Data Repository; an area technicians can quickly find information pertaining to incidents and/or problems. What better application than Mediawiki? After sharing this idea with a colleague in another bureau within the department, he agreed, and was even kind enough to give me space on his disaster recovery server. This is when everything turned into a heeping pile of manure.

Failure to adhere to the ITIL framework lead to a huge uproar that ultimately resulted in a loss of all the work put into configuring the virtual server, installing Debian, Lighttpd, Mysql, Mediawiki, etc. So, back to square one. A service request is sent to our Server Team at 9:30:09 A.M. on 8/22/2007 with the following text:

This request is for a Linux VPS with the intention of running the recently approved software, MediaWiki. Please create a virtual server using the Debian business card image available at: http://www.debian.org/CD/netinst/ The server itself will require less than one gig of hard drive space, and shouldn’t require more than 512MB of ram. Please enable SSH access and provide server information/credentials via encrypted email once setup. Please ask any questions or include any comments within this request.

Thank you for your time.”

Take note of the meek resources I’ve requested: a gig of hard disk space, and half a gig of ram (Did I mention I love Debian?). At 10:54 A.M. the same day I received an update asking what I’d like the hostname set to. My response is sent within 6 minutes, and the ticket’s status is changed to IN PROGRESS. How exciting!

8/23, 3:49 P.M.:

It’s now day 2, and I’ve yet to hear anything. An update is requested.

8/28, 9:01 A.M.:

5 days later, a reply from the Server Team! “working this today.”

9/5, 1:31 P.M.:

Another update is requested.

9/7, 8:20 A.M.:

No response to 9/5. Another update is requested.

9/10, 9:45 A.M.:

A reply! “looks like we are getting the virtual machine image from security team.” New Status: DEFERRED

At this point, I’m becoming very discouraged. A request that takes 15 minutes to complete is now approaching day thirty with ZERO progress…

9/24, 1:26:40 P.M.:

Will someone please update my request? It’s more than 30 days old, now.. Thank you.

9/26:

A number of emails are exchanged between the server and security teams.

10/4:

No updates since the 26, so I change the request to a: NEW REQUEST in hopes someone will DO SOMETHING. Later that day, a technician marks the ticket as NOT STARTED, which is hilarious considering all the dialog within the request.

A couple more weeks pass with several update requests and little to no sign of progress.

10/22:

The ticket is finally marked completed and closed.

Shortly after, I received an encrypted e-mail that includes the server’s IP, a user name, password, and the root password. Fire up putty, login to the server:

# ps -auwx

WTF? anacron, atd, auditd, autofs, cups, dc_client, dc_server, dhcdbd, gpm, hplip, irqbalance, jexec, judzu, mdmonitor, messagebud, mingetty x6, on and on and on, WHAT IS ALL THIS CRAP, and WHY is it running on my server? This can’t be Debian…

# uname -a

Linux hostname.***.******.****.** 2.6.22.1-41.fc7 #1 SMP
Fri Jul 27 18:10:34 EDT 2007 i686 i686 i386 GNU/Linux

eeerrr, this can’t be real, someone please STAB ME.

# df -H

 Filesystem	Size	Used	Avail	Use%	Mount /LogVol00

 		20G	3.7G	16G	14%	/

 /dev/sda1	104M	20M	80M	20%	/boot

 tmpfs		530M	0	530M	0%	/dev/shm

Fedora 7 was the name, system stability and efficiency wasn’t the game. Obviously a bloated desktop type installation, consuming close to four gigs of hard disk space, running over 40 processes with a 400+MB memory footprint, even without X-Windows running. Two months and this is how they honor my initial request? Some bloated, cheesy, commercialized, damn near useless distribution with four gigs of crap a server would never use? And this was setup by our SECURITY TEAM? Someone, please, explain the logic behind running irqbalance on a single processor, or even the logic in having SIX, yes SIX mingetty terms running. This just wouldn’t do.

I emailed the gentleman that sent me the credentials asking if he would replace this Fedora Crap 7 image with the Debian image located on the disaster recovery server mentioned above. He basically said, “Sure, no problem. As long as it’s Fedora 7.” My reply:

“No, it’s not Fedora 7. The Fedora image provided was consuming 3.7 gigs of available hard disk space. Gnome, the x-windows environment, several GTK+ libraries and other useless packages were unnecessarily installed. Fedora also has a memory footprint over 400MB at startup, decreasing overall efficiency and performance. I attempted to remove as many of the unnecessary packages as possible, but the yum package manager has very limited, poor I should say, functionality compared to aptitude. The image provided is a desktop installation instead of a server installation. What makes a desktop Linux installation with close to 4 gigs of software that will go unused more secure than a historically rock solid, stable, secure OS that requires less than 500 megs?”

A response via email just wouldn’t do, so he decides to come to my office and explain why this situation isn’t worth losing his job. Just recollecting all these events have upset me, so I’ll stop here. Stay tuned for an update on the Mediawiki’s progress, there’s some real humor involved in this one :)

Additional Posts Worth Reading

 

Comments »

No comments yet.

Name (required)


E-mail (required - never shown publicly)


URI - Web Site Address






Subscribe

Site of The Day

Sponsors

Categories

Recent Comments

  • Arthur: I can’t even be an Ebay affiliate. Tried various ways but still declined. Any help or suggestions?
  • chicago web design: I can’t imagine that these will last very long before Google banishes them all. But for now...
  • D.Ksyte: Anyone involved with cron job scheduling might find this resource useful. Cron Sandbox at HxPI is an...
  • FoNiX: “…decode md5″ is not possible, only bruteforce: generate hash and compare with original.
  • Z@$#: plz plz decript this hash for me any one….its really important…. 2CAD28C7C619F27DDE7B83C4999795BA
  • Joe: Thanks for writing this up. I tried the second method…however after the debian install the screen looks...
  • Scott: Was this issue ever resolved? I just started having a problem a couple weeks ago. I don’t do any kind of...
  • Prashant Patel: I had integrated Sp3 in Xp But finding one problem. In the Task Manager Process windows many services...
  • Ed: This looks like a real ‘leet’ linux command but it misses the point. Why would a hacker keep the name of...
  • Sudesh: My account was disabled but I followed their guideline and in one sec it was back on :) Here is the...

Top Commentators

Miscellaneous

  • Add to Technorati Favorites