Bookmarks for September 28th 2009

These are my links for September 28th 2009:

  • Amazon Web Services: Overview of Security Processes – This document is intended to answer questions such as “How does AWS help me ensure my data are secure?” Specifically, AWS physical and operational security processes are described for network and infrastructure under AWS’ management, as well as service-specific security implementations.
  • The Datacenter as a Computer: An Introduction to the Design of Warehouse-Scale Machines – Written by Luiz André Barroso and Urs Hölzle, a distinguished engineer and a vice president respectively at Google, this book describes the architecture of 'warehouse-scale computers', the main factors influencing their design, operation, and cost structure, and the characteristics of their software base.

Leaving Here

They say that all good things come to an end; today, that’s true for both Superpatterns at and my nearly ten year tenure at Sun. It’s certainly been a wild ride, and I’ve enjoyed (amost!) every minute of it! My blog will move to (If you’ve been using the FeedBurner feed, there’s no need to make any changes) at some point in the next day or so, and I’ll be starting a new job on Monday.

I’m setting up the new blog right now (thanks to Arun Gupta for his suggestion of WordPress hosting at GoDaddy), and I’ll be blogging on my new gig next week. In the meantime, here’s ‘Leaving Here’ from the mighty Motörhead:

By the way, fellow pedants, it’s ‘Leaving Here’ (with a ‘g’) – the YouTube caption is wrong. Evidence.

Easier Microsoft Active Directory Connectivity in OpenSSO Express 8

It’s nice to see your RFE’s implemented, and that’s exactly what happened with OpenSSO issue # 4053: Active Directory configuration should use AD domain name rather than LDAP host/port. I saw Kohsuke‘s blog entry on More Active Directory integration in Java a little while ago and realized that we could take exactly the same approach in OpenSSO – prompt the admin for the Active Directory domain name rather than a host name and port number.

As Kohsuke mentions, this has a number of advantages – every AD admin knows the domain name, while many would likely have to go look up an individual host name, not to mention the LDAP port number. Since we use the domain name to look up an individual AD controller via DNS, it also means that the admin doesn’t need to update OpenSSO’s configuration as AD controllers come and go – OpenSSO will always get a valid host name from DNS.

So, when configuring OpenSSO Express 8, you can now just specify the AD domain name. As improvements go, this one is pretty small, but, as I think everyone agrees, the cumulative effect of all these little improvements in OpenSSO over the past two or three years has been HUGE…

OpenSSO Tab Sweep – Sep 11 2009

Wow – it’s been months since the last OpenSSO tab sweep. Anyway – here’s a collection of the latest news from the world of OpenSSO:

Now I can close a few Firefox tabs and relax. Have a good weekend, everyone!

OpenSSO Express Build 8 Released

A few weeks ago, I blogged about the impending release of OpenSSO Express Build 8; well, the OpenSSO engineers have been hard at work since then, and Express 8 was officially released yesterday.

Among the new features:

Much more detail in the OpenSSO Express 8 release notes. If you’re wondering just what an ‘Express Build’ of OpenSSO is, the FAQ reveals all.

Download OpenSSO Express 8 now!