Emory University: The Windows7 Incident

  • Thread starter Thread starter nsaspook
  • Start date Start date
  • Tags Tags
    University
AI Thread Summary
Automated software deployment poses significant risks, as demonstrated by an incident where a Windows 7 deployment image was mistakenly sent to all Windows machines, resulting in repartitioning and reformatting of the SCCM server itself. This highlights the potential for catastrophic failures in automated processes. Past experiences with automated updates have also led to issues, such as USB ports becoming unrecognized after an XP update, emphasizing the need for careful management of software deployments. The discussion reflects a nostalgia for manual update processes, which, despite being labor-intensive, allowed for greater control and customization. The rise of technologies like systemd and CoreOS, which offer rapid deployment and enhanced stability, is seen as a response to the challenges posed by automated updates. Concerns remain about the inability to halt problematic updates, leading some organizations to adopt separate networks for development and production to mitigate risks. Overall, while automation can streamline processes, it also necessitates robust backup and recovery strategies to prevent data loss and operational disruptions.
nsaspook
Science Advisor
Messages
1,479
Reaction score
4,864
The risks of automated deployment of software.

Facts as we know them:

A Windows 7 deployment image was accidently sent to all Windows machines, including laptops, desktops, and even servers. This image started with a repartition / reformat set of tasks.
As soon as the accident was discovered, the SCCM server was powered off – however, by that time, the SCCM server itself had been repartitioned and reformatted.

http://it.emory.edu/windows7-incident/
 
Computer science news on Phys.org
We are developing a more automated approach and technicians are testing it now.

Sounds funny in the context, doesn't it?
 
I guess that some people will get a lesson in backing up their data. :devil:

I'm not a big fan of automated deployments. My company sent out an XP update last year that caused all of the USB ports to not be recognized on docking stations for some laptop models. They never did figure that out - the solution was to wait until the Windows 7 upgrade a few months later.
 
Isn't that how SkyNet got started?
 
Borg said:
I'm not a big fan of automated deployments.

Ah, the good old days back in the 1970's when sending out a software update to our customers involved

- several visits to different computer service companies around the UK to get time to build and test the software on lots of different types of computer and operating system
- several more visits to make copies on reels of magnetic tape in lots of different formats.
- For a few customers, transferring the binary data for the executable programs onto punched cards (maybe 20,000 cards per customer), and packaging them and labeling them up so even an untrained gorilla couldn't get them in the wrong order, and shipping them by courier.

Sending an update to 200 customers was about 3 weeks work for somebody - plus the time to fix the mistakes caused by wrong labeling of 200 identical looking but incompatible reels of tape, etc!
 
Some advice never changes:
If you are experiencing any issues with your PC after it is re-imaged, please be sure to reboot first, which may solve your problems.

:biggrin::biggrin::biggrin::biggrin::biggrin:
 
AlephZero said:
Ah, the good old days back in the 1970's when sending out a software update to our customers involved

- several visits to different computer service companies around the UK to get time to build and test the software on lots of different types of computer and operating system
- several more visits to make copies on reels of magnetic tape in lots of different formats.
- For a few customers, transferring the binary data for the executable programs onto punched cards (maybe 20,000 cards per customer), and packaging them and labeling them up so even an untrained gorilla couldn't get them in the wrong order, and shipping them by courier.

Sending an update to 200 customers was about 3 weeks work for somebody - plus the time to fix the mistakes caused by wrong labeling of 200 identical looking but incompatible reels of tape, etc!

IIRC, didn't a box of punch cards hold 2000 cards? So, ten boxes of cards per customer to hold 20K cards?
 
SteamKing said:
IIRC, didn't a box of punch cards hold 2000 cards? So, ten boxes of cards per customer to hold 20K cards?

Yup. And that was only about 2 mbytes of data!

And sometimes the company mailing department didn't bother to read the shipping instructions, and sent the package half way round the world by sea to save money... :cry:
 
I've been following what seems a major change in the Linux world and while it is highly controversial (in fact I have often opposed it, at the very least on the Desktop) it apparently is also very compelling to many as one by one each major distro but 2 have fallen to it. I am referring to systemd which started as a replacement for the old, tried and true SysVInit, but has been revealed to be a thrust to a Core OS. There is now one called CoreOS which, partly because of extreme parallelization, can be deployed on thousands of systems in minutes. Furthermore it employs a read-only root system (partly for it's resistance to both hacking and inadvertent screw ups) and has whole system updates on a scheduled basis.

Whatever else it is, it is also a very big deal, and is worth watching it's development if you have any interest is Enterprise systems. I am mentioning this in this thread not to hijack it but because exactly these sorts of problems propel such development, either internally or in competition, or both.
 
  • #10
SteamKing said:
Isn't that how SkyNet got started?

Exactly! After being burned by the IT dept more than once by pushed updates that messed up some odd ball device driver to a special interface we hired our own engineering IT group person to manage our computers. (with orders to leave things alone unless it's been approved by the user or is a emergency virus or security update)
 
  • #11
AlephZero said:
Ah, the good old days back in the 1970's when sending out a software update to our customers involved

- several visits to different computer service companies around the UK to get time to build and test the software on lots of different types of computer and operating system
- several more visits to make copies on reels of magnetic tape in lots of different formats.
- For a few customers, transferring the binary data for the executable programs onto punched cards (maybe 20,000 cards per customer), and packaging them and labeling them up so even an untrained gorilla couldn't get them in the wrong order, and shipping them by courier.

Sending an update to 200 customers was about 3 weeks work for somebody - plus the time to fix the mistakes caused by wrong labeling of 200 identical looking but incompatible reels of tape, etc!
I was referring to the inability to stop them. The computers that I work with are set up to match customer requirements with regard to software versions of Java, browsers, etc. The IT department at my company thinks nothing of pushing updated, corporate-specific versions of software that are nothing like the versions being used by the customer. The updates also frequently reset customized settings causing hours-long bug hunts. It's gotten so bad that the company has split off its network in two - one development network that doesn't get automated updates and the main corporate network for everyone else.
 
  • #12
My experience of SCCM isn't good so far, but it's early days yet, maybe it's just a learning process. No disasters, just a lot of problems getting deployments to actually work.
 

Similar threads

Is Science Vulnerable to Software Bugs?
Replies
2
Views
2K
I could really use some help picking my optional module [GameDev]
Replies
2
Views
2K
Current and Future AI Threats to Humanity and the Human Response
Replies
10
Views
4K
Could a Mac be useful for a physics student?
Replies
2
Views
2K
STOP: 0x0000008E (0xC000005, 0XBF04DF7B, 0xED924B18 0X000000000)
Replies
23
Views
6K
BRS: PKI Cryptosystems for SA/Ms: A Tutorial
Replies
13
Views
3K
Requesting suggestions for languages, libraries, and architectures for parallel (and sometimes non parallel) numerical and scientific computations
Replies
8
Views
4K
Admissions Can someone critique my statement of purpose? (Master's Degree in Quantum Engineering)
Replies
8
Views
4K
Meet jtbell: Meet a Mentor Series Interview
Replies
12
Views
6K
What Miraculous Experiments Did Nikola Tesla Conduct in His 1899 Lab?
Replies
8
Views
9K

Hot Threads

Recent Insights

Back
Top