New Java Security Settings: More Proof That Oracle Hates You

I began the day yesterday updating to Java 7u51, after which absolutely none of my enterprise Java applications worked anymore. I could not reach the consoles of my Rackspace cloud servers. I could not open the iDRAC console on my Dell PowerEdge. They all exited with some error about the Permissions attribute not being set.┬áBeing the guy that I am I decided to search for the error. Turns out that 7u51 sneaks a major change in a point release: on the default Java security slider setting of “high” no applet may run if it’s self-signed, unsigned, or is missing the Permissions attribute. Unfortunately, that describes all enterprise software, at least all the current versions of things I’m using. This isn’t …

Read More

OpenStack, Lock-In, Support Costs, and Open Source Free Lunches

Since I posted my missive about OpenStack not being our savior from lock-in or support costs I’ve had a number of comments and discussions about it. The discussions generally start from the point of view that I’m wrong. Let’s take a look at a few of these. Also, it might seem like I’m picking on Randy Bias and Greg Ferro a little here but Randy seems like a good guy, and Greg is a friend, so there’s no animosity. Just point/counterpoint. TL;DR version: OpenStack is cool but isn’t some magic tech┬áthat prints money, open source doesn’t mean you don’t have to pay someone to support a service built on it, customized open source and custom solutions using open source don’t …

Read More