User Rating: 0 / 5

Star InactiveStar InactiveStar InactiveStar InactiveStar Inactive
 

For admins, the cloud may trick as much as it treats. Here are three IT nightmares that spooked SearchCloudComputing Advisory Board members in 2016.

The post Three IT nightmares that haunted cloud admins in 2016 appeared first on The Troposphere.


Cloud doesn’t treat enterprise IT teams all the time; in fact, it occasionally throws out a few tricks. While there are many benefits to cloud, sometimes a cloud deployment can go terribly awry, prompting real-life IT nightmares — ranging from spooky security breaches to pesky platform as a service implementations.

We asked the SearchCloudComputing Advisory Board to share the biggest cloud-related IT nightmares they faced, or saw others face, so far in 2016. Here’s a look at their tales of terror:

Bill Wilder

Halloween nightmares came ten days early this year for DNS provider Dyn, as it was hit with a massive DDoS attack. The Internet simply can’t function without reliable DNS, and most cloud applications and services outsource that to companies like Dyn. Among the parties impacted by the attack on Dyn is a “who’s who” of consumer sites, such as Twitter, Spotify and Netflix, and developer-focused cloud services, such as Amazon Web Services, Heroku and Github. This news comes about a month after security researcher and journalist Brian Krebs had his own web site attacked by one of the largest ever DDoS attacks, reportedly reaching staggering levels exceeding a half terabit of data per second.

Both attacks appear to have been powered by bot armies with significant firepower from unwitting internet-connected internet of things (IoT) devices. This is truly frightening, considering that there are billions of IoT devices in the wild already, from video cameras, DVRs and door locks to refrigerators and Barbie dolls. Since internet-exposed IoT devices are easily found through specialized search engines, and IoT device exploit code is readily available for download, we can be sure of one thing: we are only seeing the early wave of this new brand of DDoS attack.

Gaurav “GP” Pal

My biggest cloud computing nightmare was the first-hand experience of implementing a custom platform as a service (PaaS) on an infrastructure as a service (IaaS) platform. Many large organizations are pushing the innovation envelope in search of cloud nirvana, including hyper-automation, cloud-platform independence and container everything. Sounds great! But with the lines between IaaS, managed IaaS and PaaS constantly blurring, the path to nirvana is not a straight one. It took way longer to create the plumbing than anticipated, the platform was unable to pass security audits and getting the operational hygiene in place was challenging.

Adding to the cup of woes is the lack of qualified talent that truly has experience with custom PaaS, given that it has been around only for a short period of time. On top of that you have a constantly changing technology foundation on the container orchestration side. All of this made for a ghoulish mix. Only time will tell whether a custom PaaS on an IaaS platform is a trick or a treat.

 Alex Witherspoon

The trend I keep seeing repeat is off-base cost expectations and the risk of operating non-cloud-architected applications in a private or public cloud environment that is not ideal for them.

Cloud environments should essentially be the automated abstraction and utilization of physical resources. Additionally, public cloud charges you for that value, in addition to the physical servers that cloud lives on — without your input in the buying decisions. For some, businesses align well with the public cloud of choice and its cost model, and so perhaps the tradeoffs to the business tabulate well. For many, such as Dropbox, to name a public example, they find that public cloud was quickly going to transform at an inflection point from a savings to an operational cost that would only continue to grow with the business and never provide stable controlled operational expenditure (OPEX) or capital expenditure (CAPEX) like a private cloud could provide. Given modern financial mechanisms to take CAPEX investments in private clouds and convert them into flexible OPEX arrangements, the financial models for private cloud are often more economically feasible at the expense of some additional complexity in managing the private cloud. Often, though, that tradeoff for complexity is justified in the control one gains by shaping the architecture of the private cloud to perfectly align to the business needs technologically and economically.

These optimizations in cloud can be numerous, one of them being support for non-cloud architected applications. This is important to consider because not all clouds are built alike, and many public cloud providers like AWS, Azure and Google suggest the minimum viable architecture is a widely distributed application that can survive random outages at any single node. Many modern applications do provide for that, but ultimately, the majority of software in play today is operating with the expectation that the infrastructure underneath it is going to be 100% reliable, and these applications can be dangerous in a public or private cloud environment that isn’t designed for high availability.

To this end, it’s endlessly important to consider the risks, and the return on investment (ROI) picture throughout the lifecycle of the service. Clouds of all types carry diverse ROI profiles, and being able to specifically quantify the strategic fitment of the business needs against these offerings can avert technological and economic disaster for your business.

The post Three IT nightmares that haunted cloud admins in 2016 appeared first on The Troposphere.


Read full article on Cloud Computing from IT knowledge exchange


Powered by Preisvergleich


My Tweets

Last Articles

EUC Weekly Digest – August 18, 2018

Interesting EUC items from last week: XenApp/XenDesktop Download Citrix XenDesktop 7.6 LTSR...

5 mobile apps to help you stay healthy and fit at the office

It can be tough to stay active when you have a desk job. Here are five apps for Android and iOS...

How to use VBA to select an Excel range

VBA makes it easy to select an Excel range. Here are two macros that offer maximum efficiency and...

How to create a repository with Git Annex GUI

For those that don't want to work with the command line, Git Annex includes a web-based GUI tool...

How to use Notes by Firefox

TechRepublic's Jack Wallen tests the new Notes app inside Firefox Test Pilot.

How to install Ubuntu Minimal

TechRepublic's Jack Wallen walks you through the installation of Ubuntu Mini by way of a...

Google's ARCore, an SDK for augmented reality developers: Cheat sheet

ARCore is Google's platform for building augmented realities. This cheat sheet covers everything...

How to install MCRYPT on Ubuntu Server

TechRepublic's Jack Wallen walks you through how to install MCRYPT

How to install and use Cubic

Cubic is a custom Ubuntu ISO creator, and with it you can take a standard Ubuntu ISO image,...

Windows 10 updates are about to get smaller and less painful

Starting with the "next major version of Windows 10 and Windows Server", Microsoft will change how...

  • EUC Weekly Digest – August 18, 2018

    Saturday, 18 August 2018 13:30
  • 5 mobile apps to help you stay healthy and fit at the office

    Friday, 17 August 2018 21:30
  • How to use VBA to select an Excel range

    Friday, 17 August 2018 19:30
  • How to create a repository with Git Annex GUI

    Friday, 17 August 2018 18:30
  • How to use Notes by Firefox

    Friday, 17 August 2018 17:30
  • How to install Ubuntu Minimal

    Friday, 17 August 2018 16:30
  • Google's ARCore, an SDK for augmented reality developers: Cheat sheet

    Friday, 17 August 2018 16:30
  • How to install MCRYPT on Ubuntu Server

    Friday, 17 August 2018 16:30
  • How to install and use Cubic

    Friday, 17 August 2018 16:30
  • Windows 10 updates are about to get smaller and less painful

    Friday, 17 August 2018 15:30