Microsoft Is Using Linux To Protect Its Own Web Site

Yahoo news ^ | 8/21/2003

[6ppc]

Technology - TechWeb

Microsoft Is Using Linux To Protect Its Own Web Site

Thu Aug 21, 3:35 AM ET

Add Technology - TechWeb to My Yahoo!

Microsoft has made a big deal out of asserting that Linux (news - web sites) is not fit for the enterprise (news - web sites). But Microsoft itself is using Linux to help protect its servers against denial-of-service (news - web sites) attacks.

•	More On Storage
•	More On Security & Privacy
•	More On Software
•	More On Small Biz
•	More On Mobile & Wireless
•	More On Product Reviews

According to a post on the Netcraft Web site, Microsoft changed its DNS settings on Friday so that requests for www.microsoft.com no longer resolve to machines on Microsoft's own network, but instead are handled by the Akamai caching system, which runs Linux.

Akamai runs a service to help boost Web site performance by caching copies of Web sites on many servers in many locations. Akamai can help defend against denial-of-service attacks by spreading the attack among many servers. Just as a distributed denial-of-service attack enlists large numbers of systems to attack a single server, Akamai presents a distributed defense against denial-of-service attacks.

As of this writing, Netcraft reports that www.microsoft.com is still running on Linux, although microsoft.com is reported as running on Windows Server 2003.

A Microsoft spokeswoman said the company "respects the fact that [its partners and vendors] may have diversified business models and operate in mixed IT environments. Microsoft's main concern is doing whatever it takes to help ensure customers can get to the Blaster worm patch to protect their computers.... Microsoft is using Akamai's extensive worldwide network to distrubte the massive traffic that is illegally being directed at Microsoft by hackers."

The Blaster worm, which struck the Internet last week, was set with a payload designed to trigger this past Saturday and flood the address windowsupdate.com with a massive denial-of-service attack. But windowsupdate.com never was a Microsoft site, it was an incorrect address for picking up Windows updates. Until Saturday, Microsoft had set windowsupdate.com to redirect to windowsupdate.microsoft.com; Microsoft protected itself last week by switching off that redirection.

An Akamai spokeswoman declined to comment, except to confirm that Microsoft is a customer.

Microsoft using a Linux service is ironic, given that Microsoft has identified Linux as its biggest competitor. In a conference call with analysts last month, company CFO John Connors ranked Linux as the #2 risk faced by the company. The #1 risk was the general economic environment, Connors said. Nearly one in five small and mid-sized businesses are using Linux on the desktop.

In tomorrow's news: McDonald's executive found eating at Burger King.

[6ppc]

Didn't see this posted anywhere...should make an interesting thread;^)

[dogbyte12]

Paging Bush2000 to the white courtesy phone.

[smith288]

This should get some conversation going....

[Who dat?]

They used to have some number of FreeBSD servers.

At one time cdrom.com was running a tweaked FreeBSD ftp server that racked up several transfer records... haven't followed that in a couple of years though.

[smith288]

[Salo]

Pinging Doctor Penguin.

[Salo]

Hissssss.

[Milwaukee_Guy]

Good posting.

We added some new Windows enterprise software to "improve" utility of our core Unix database.

The last two weeks have been sheer living hell. Everyone is pleading to just drop it and go back to the old Unix interface.

I am always amazed how at how poor MS Windows is at handeling memory. Glitches, slowdowns, lockups, incompatibilities that never before existed.

I really believe that MS Windows preys on any non MS software it encounters. If you don't have a 100% Microsoft environment, then you will have trouble.

[rdb3]

The Penguin Ping.

Wanna be Penguified? Just holla!

Click and find out!

Got root?

[norraad]

I was using a library computer today & even word perfect was acting strange(in font editing), first time I ever had that happen.

[rdb3]

If you don't have a 100% Microsoft environment, then you will have trouble.

That's why the enterprise needs Samba on the back end.

[Brian S]

bttt...

[Dimensio]

If you don't have a 100% Microsoft environment, then you will have trouble.

I think that you meant to say " If you don't have a 100% Microsoft-FREE environment, then you will have trouble."

[babygene]

I believe that most of the firewalls that protect the millions of windows machines are built into various routers.

The routers OS's certinly aren't windows. I would guess Linux, but does anyone know?

[Milwaukee_Guy]

I was stuck at work until 6:30 tonight trying to get shipments out the door.

Out of about 250 people at our plant I figure (4) four of us even have a clue how to use the hodgepodge of crap our Fortune 500 company forces us to use.

[cryptical]

Depends, I've seen lots of BSD as base OS for firewalls.

[cc2k]

Cisco router all run a proprietary OS that's basically a stripped down UNIX-like OS. I'm not 100% sure, but I think it has some BSD ancestry in it, though it's mostly Cisco propietary code.

Cisco had a security problem last month that affected basically all Cisco routers worldwide and left them open to a denial of service attack that could shut down ethernet interfaces on the routers.

Most of the other router vendors use some kind of proprietary router OS, though many of those are BSD based, and I think some are now based on embedded Linux.

Many firewall and firewall appliance vendors use FreeBSD as the basis for their firewalls, and Linux is very common in web hosting services.

[Salo]

SOB! You owe me a lemonade! And a new monitor. :-)

I think that you meant to say " If you don't have a 100% Microsoft-FREE environment, then you will have trouble."

[dennisw]

Tell the slashdoters

[xrp]

Dumbasses...big deal. A UNIX machine is just as vulnerable to a DoS/DDoS attack if enough data is thrown at it.