schliz writes "NCSU researchers are attempting to address today's 'blind trust' of virtualization with new security techniques that 'guarantee' malware does not infect hypervisors. Their HyperSafe software uses the write-protect bit on hypervisor hardware, as well as a technique called restricted pointer indexing, which characterizes the normal behavior of the system and prevents any deviation. A proof-of-concept prototype has been tested on BitVisor and Xen, in research that will be presented (PDF) at an IEEE conference today."

Prof. Nix writes "I have been given the opportunity to redesign the Linux course for the community college I work for. This course will be taking students from the 'What's Lee-nux?' stage to (hopefully) Linux+ Certifiable in about three to four months. However, one issue I haven't solved is finding a semi-stable, highly portable, and readily accessible platform the students may pound on, and have root access, independently of their peers. The powers-that-be have already vetoed any sort of server environment accessible from off campus. We've already tried live USB drives, but we ran into many issues with non-supported hardware on students' home computers. So I'm left with the idea of virtual machines run from flash drives. My ultimate goal is to have some sort of portable system that students can use with equal ease on lab systems and personal laptops — regardless of hardware. Preferably this system would be installable on a 4GB flash drive and run an Ubuntu- or Fedora-derived OS. So I ask the people who have been in the trenches a lot longer than I — what distros should I look at?"

An anonymous reader writes "We have approximately 20 workstations which all have different hardware specs. Every workstation has two monitors and generally runs either Ubuntu or Windows. I had started using Clonezilla to copy the installs so we could deploy new workstations quickly and easily, when we have hardware failures or the like, but am struggling with Windows requiring new drivers to be installed for all new hardware. Obviously we could be booting into Ubuntu and then load a Windows virtual machine after that, but I'd prefer not to have the added load of a full GUI underneath Windows — we want maximum performance possible. And I don't think the multi-monitor support would work. Is it possible to have a very basic virtual machine beneath to provide hardware consistency whilst still allowing multi-monitor support? Does anyone have any experience with a technique like this?"

miller60 writes "As cloud computing gains traction, some Wall Street firms running armadas of servers to power high-frequency trading operations are contemplating leasing out their excess computing capacity after the trading day ends at 4 p.m. 'Once 4:30 rolls around, we don't need those machines,' said one CTO of a market data firm. 'There may be an opportunity there.' A similar revelation led to the creation of the cloud computing operation at Amazon.com, which built its infrastructure to handle peak Christmas-season loads that lasted just a few weeks each year."

Trailrunner7 writes "Joanna Rutkowska, a security researcher known for her work on virtualization security and low-level rootkits, has released a new open-source operating system meant to provide isolation of the OS's components for better security. The OS, called Qubes, is based on Xen, X and Linux, and is in a basic, alpha stage right now. Qubes relies on virtualization to separate applications running on the OS and also places many of the system-level components in sandboxes to prevent them from affecting each other. 'Qubes lets the user define many security domains implemented as lightweight virtual machines (VMs), or 'AppVMs.' E.g. users can have 'personal,' 'work,' 'shopping,' 'bank,' and 'random' AppVMs and can use the applications from within those VMs just like if they were executing on the local machine, but at the same time they are well isolated from each other. Qubes supports secure copy-and-paste and file sharing between the AppVMs, of course.'" Xen's also just reached 4.0; some details below.

An anonymous reader writes "This week, Microsoft published a patch that allows Windows XP Mode to run on PCs without hardware-assisted virtualization. Which begs the question: Why the bizarro requirement in the first place? Was it an honest attempt to deliver an 'optimal' user experience? Or simply a concession to the company's jilted lover, Intel Corporation — 'a kind of apology for royally screwing up with the whole Windows Vista “too fat to fit” debacle,' as the blog post puts it."

CWmike writes "Microsoft has announced service packs for Windows 7 and Windows Server 2008 R2, but declined to set a release date or a schedule for getting a beta in users' hands. A company spokesman said Windows 7 Service Pack 1 (SP1) will primarily contain 'minor updates,' including patches and hotfixes that will have been delivered earlier via the Windows Update service, rather than new features. One of the latter: an updated Remote Desktop client designed to work with RemoteFX, the new remote-access platform set to debut in SP1 for Windows Server 2008 R2. Windows Server 2008 R2 will also be upgraded to SP1, Microsoft said, presumably at the same time as Windows 7 since the two operating systems share a single code base. Besides RemoteFX — which Microsoft explained Wednesday in an entry on the Windows virtualization team's blog — Server 2008 R2 will also include a feature dubbed 'Dynamic Memory,' which lets IT staff adjust guest virtual machines' memory on the fly. Microsoft did not spell out a timetable for the service packs, saying only that it would provide more information as release milestones approach."

Coop's Troops writes "An exploit writer at Core Security Technologies has discovered a serious vulnerability that exposes users of Microsoft's Virtual PC virtualization software to malicious hacker attacks. The vulnerability, which is unpatched, essentially allows an attacker to bypass several major security mitigations — DEP, SafeSEH and ASLR — to exploit the Windows operating system. As a result, some applications with bugs that are not exploitable when running in a not-virtualized operating system are rendered exploitable if running within a guest OS in Virtual PC."

FrankPoole writes "CRN takes a look at the past five years of Microsoft's acquisition history, which totals $13 billion and more than 7,000 new employees, and highlights 10 deals and how they've affected the software giant. While some larger acquisitions stand out for better or worse, such as Danger and aQuantive, there are some smaller, blink-and-you'll-miss-it deals that have proved pivotal for Microsoft's push into new areas such as virtualization. And Microsoft's recent acquisition track record may lend credence to the heavy criticism levied against the company by former employees like Dick Brass."

bridges writes "The V3VEE project has announced the release of version 1.2 of the Palacios virtual machine monitor following the successful testing of Palacios on 4096 nodes of the Sandia Red Storm supercomputer, the 17th-fastest in the world. The added overhead of virtualization is often a show-stopper, but the researchers observed less than 5% overhead for two real, communication-intensive applications running in a virtual machine on Red Storm. Palacios 1.2 supports virtualization of both desktop x86 hardware and Cray XT supercomputers using either AMD SVM or Intel VT hardware virtualization extensions, and is an active open source OS research platform supporting projects at multiple institutions. Palacios is being jointly developed by researchers at Northwestern University, the University of New Mexico, and Sandia National Labs." The ACM's writeup has more details of the work at Sandia.

GJdeBoer writes "The book is aimed at people who are managing a network and would like to get insight into the performance of that network. It covers the installation and configuration of the Cacti application. In the preface the book states that it's not necessary to be a Linux Guru to use the book and that exactly is the case. The book builds up your knowledge about Cacti and the necessary steps to configure it for your network, and it teaches you about Net-SNMP and RRDTool, the building blocks of Cacti." Read on for the rest of GJdeBoer's review.

Dave Knott writes "After some delay Apple has updated Boot Camp to support Windows 7 on Macintosh computers. They have also provided an upgrade utility that facilitates transition to Windows 7 for Mac owners who have existing Vista installations. The new version of Boot Camp requires OS X 10.6 (Snow Leopard)."

An article at Gamasutra provides some details on the hardware Mythic uses to power Warhammer Online, courtesy of Chief Technical Officer Matt Shaw and Online Technical Director Andrew Mann. Quoting: "At any given time, approximately 2,000 servers are in operation, supporting the gameplay in WAR. Matt Shaw commented, 'What we call a server to the user, that main server is actually a cluster of a number of machines. Our Server Farm in Virginia, for example,' Mann said, 'has about 60 Dell Blade chassis running Warhammer Online — each hosting up to 16 servers. All in all, we have about 700 servers in operation at this location.' ... 'We use blade architecture heavily for Warhammer Online,' Mann noted. 'Almost every server that we deploy is a blade system. We don't use virtualization; our software is somewhat virtualized itself. We've always had the technology to run our game world across several pieces of hardware. It's application-layer clustering at a process level. Virtualization wouldn't gain us much because we already run very close to peak CPU usage on these systems.' ... The normalized server configuration — in use across all of the Mythic-managed facilities — features dual Quad-Core Intel Xeon processors running at 3 GHz with 8 GB of RAM."

Darren Ginter writes "I find many aspects of desktop virtualization compelling, with one exception: the cost of the thin clients, which typically exceeds that of a traditional box. I understand all of the benefits of desktop virtualization (and the downsides, thanks) but I'm very hung up on spending more for less. While there are some sub-$200 products out there, they all seem to cut corners (give me non-vaporware that will drive a 22" LCD at full resolution). I can PXE boot a homebrew Atom-based thin client for $130, but I'd prefer to be able to buy something assembled. Am I missing something here?"

snydeq writes "InfoWorld's Randall Kennedy takes an in-depth look at VMware Workstation 7, VirtualBox 3.1, and Parallels Desktop 4, three technologies at the heart of 'the biggest shake-up for desktop virtualization in years.' The shake-up, which sees Microsoft's once promising Virtual PC off in the Windows 7 XP Mode weeds, has put VirtualBox — among the best free open source software available for Windows — out front as a general-purpose VM, filling the void left by VMware's move to make Workstation more appealing to developers and admins. Meanwhile, Parallels finally offers a Desktop for Windows on par with its Mac product, as well as Workstation 4 Extreme, which delivers near native performance for graphics, disk, and network I/O. 'There's some genuine innovation going on, especially in the areas of hardware support and application compatibility,' Kennedy writes. 'All support 32- and 64-bit Windows and Linux hosts and guests, and all have added compelling new VM management capabilities, ranging from automated snapshots to live VM migration.'"

swsuehr writes "The Book of Xen: A Practical Guide for the System Administrator provides an excellent resource for learning about Xen virtualization. I frequently need to create test environments for examples that appear in various books and magazine articles (in the interest of full disclosure, I've never written for the publisher of this book). In the days before virtualization that meant finding and piecing together hardware. Like many readers, I've been using virtualization in one form or another for several years, including Xen. This book would've saved hours searching around the web looking for tidbits of information and sifting through what works and doesn't work in setting up Xen environments. The authors have done the sifting for me within the ~250 pages of the book. But far beyond, the authors also convey their experience with Xen using walkthroughs, tips, and recommendations for Xen in the real world." Read on for the rest of Steve's review.

laxl writes "Linux vendor Red Hat has open sourced the Simple Protocol for Independent Computing Environment (SPICE) virtual desktop protocol it acquired last year with Qumranet, which used SPICE for its own commercial desktop-virtualization product, called SolidIce. SPICE can be used to deploy virtual desktops from a server out to remote computers, such as desktop PCs and thin-client devices. It is similar to other rendering protocols used for remote desktop management such as Microsoft's Remote Desktop Protocol or Citrix's Independent Computing Architecture. SPICE supports rendering virtual instances of Windows XP and Windows 7, as well as Red Hat Enterprise Linux. According to Red Hat, SPICE has advantages over other protocols in that it can dynamically customize desktop instances to fit specific operating environments. According to the article, most of the SPICE code is available under the GNU GPLv2, though parts are also licensed under LGPL- and BSD-styled licenses."

dcblogs writes "IBM has released a new mainframe server that doesn't include its z/OS operating system. This Enterprise Linux Server line supports Red Hat or Suse. The system is packaged with mainframe management and virtualization tools. The minimum processor configuration uses two specialty mainframe processors designed for Linux. IBM wants to go after large multicore x86 Linux servers and believes the $212,000 entry price can do it."

Sharky2009 writes "VMware is developing virtualisation for smartphones which can run any two OSes — Windows Mobile, Android or Linux — at once. The idea is to have your work applications and home applications all running insider their own VMs and running at the same time so you can access any app any time. VMware says: 'We don't think dual booting will be good enough — we'll allow you to run both profiles at the same time and be able to switch between them by clicking a button,' he said. 'You'll be able to get and make calls in either profile – work or home – as they will both be live at any given point in time.'" Also mentioned in February of this year, but now the company's announced a target of 2012 for mass production.

diegocg writes "Linus Torvalds has officially released the version 2.6.32 of the Linux kernel. New features include virtualization memory de-duplication, a rewrite of the writeback code faster and more scalable, many important Btrfs improvements and speedups, ATI R600/R700 3D and KMS support and other graphic improvements, a CFQ low latency mode, tracing improvements including a 'perf timechart' tool that tries to be a better bootchart, soft limits in the memory controller, support for the S+Core architecture, support for Intel Moorestown and its new firmware interface, run-time power management support, and many other improvements and new drivers. See the full changelog for more details."