Windows IT Pro is the leading independent community for IT professionals deploying Microsoft Windows server and client applications and technologies.
  
  
  Advanced Search 


June 2000

Open Source in the NT World


From the June 2000 Edition
of Windows IT Pro
Mark Minasi
En Garde
InstantDoc #8852
Windows IT Pro
Email this Article
Printer Friendly
Reader Comments
Digg This
Del.icio.us
RSS
Subscribe to Windows IT Pro | See More Windows 2000 Professional Articles Here | Reprints | Or get the Monthly Online Pass—only $5.95 a month!

Open source could strengthen Windows 2000 and NT

All the publicity that Linux has enjoyed recently has brought the term open source into the technical public's eye. Open source really isn't a new idea—in fact, it's one of the oldest ideas in computing. But now that the industry is reexamining the notion, let's look at whether open source, or at least a modified version of it, could make sense in the Windows NT world.

The open-source folks argue that simply shipping a software program's binaries (the .exe files) and keeping the source code secret is a bad idea from the consumer's and even the vendor's point of view. If you purchase a program and find a bug in it, all that you can do is report the bug to the software vendor and hope that the vendor will fix the bug in a future release. But if you have the source, you can fix the bug yourself (or, more likely, hire a programmer to fix it) so that you don't need to wait for the vendor's fix. Really ambitious customers who need a new feature in the software could add that feature rather than simply hope that the vendor would recognize the need and implement the feature sometime in the future. Even software vendors win, because they get the benefit of all of those customer-developed fixes. When vendors find customer-provided fixes that are good, vendors can release the improved product to other customers.

Of course, open source has some obvious disadvantages. Microsoft spent millions and possibly billions of dollars developing Windows 2000 (Win2K). So, the company would naturally be leery about revealing the Win2K source code for fear that others might simply reuse—steal—pieces of it from the product without offering Microsoft compensation for its efforts. That's certainly a risk, and I don't want to minimize it. But keeping the source closed might limit Win2K and NT's eventual potential market.

Keeping the source closed does make some sense when the source protects some original high-tech ideas that the competition hasn't previously offered or even thought of. But, although Win2K certainly has a lot of increased functionality compared with its predecessor NT, very few ideas in Win2K are really new. Active Directory (AD) is Microsoft's response to Banyan's, Novell's, and UNIX's use of big user directories. Many of Win2K's support tools are nice but, again, not new: Offline Files looks a lot like Sun Microsystems' Cache FS cache file system, Remote Installation Services (RIS) is a tool similar to Norton Ghost, and disk space quotas have existed on just about every network OS except NT for years. I'm not criticizing what Microsoft is doing with Win2K; I'm simply saying that Microsoft's main task in building Win2K seems to have been to incorporate other firms' ideas and technology into NT—in other words, to provide better service to customers by giving them what they want.

Now imagine a time in the not-too-distant future—if we're not there already—when every major network OS vendor has implemented most of the good networking ideas. How will customers decide between products then? On the basis of quality of service, I'd guess. A version of NT accompanied by the source code would let customers either buy support from Microsoft or simply fix the code themselves.

In that possible future in which service options and service quality drive OS choice, OSs with openly available source code would naturally end up with more (and probably better) support options than a competing closed-source product would. And that better support would likely lead to a larger market share for the open-source OS.

Sound like a crazy idea? Here's another one. Revealing the Win2K source code at this point in the product's life cycle would clearly be a risky venture for Microsoft. But now that Win2K is replacing NT 4.0, why not continue to sell NT 4.0 as an open-source product? Microsoft could simply stop working on NT 4.0 but continue to distribute the OS with customer-created fixes and enhancements. This approach would be a low-risk way to experiment with open source in the NT world.

End of Article

Reader Comments
<i>Releasing source code clearly gives the bad guys another avenue for finding weaknesses. However, many security gurus dismiss that argument because, as we've seen, if code has holes, people will figure out those holes even in a closed-source world. Opening source exposes the code to everyone, so the white hats--­as well as the black hats--­can see the problems.<br><br>
Security experts tell me that the key to effective security on the silicon side is good security mechanisms and sufficiently long keys. (They also tell me that most security problems originate in the carbon units--­people being sloppy with passwords, for example.) Relying on the hope that no one will discover a system's bugs is a bad idea. In an open-source world, the good guys can find weaknesses and release fixes as quickly as the bad guys can find weaknesses and exploit them. In an open-source world, I don't get black-box .exe files; I get source code that I can examine to be sure that it doesn't contain any Trojan horses. I believe open source is the way the world will go eventually (and the way it's already been for UNIX, MVS, and VMS).<br><br><i>
<i>-­Mark Minasi</i>

Mark Minasi August 10, 2000

As I read Mark Minasi's En Garde: "Open Source in the NT World" (Summer 2000), the following thoughts came to mind. Windows NT is already vulnerable to and the subject of many security threats and hacks. Releasing the NT 4.0 source code would present an open invitation to intruders to find and exploit holes that are not already known. I believe that Microsoft is scared to release the code as much for security concerns as for the loss of revenue. What are your thoughts about potential security issues for the installed base of NT 4.0 if Microsoft were to release the source code for NT 4.0?

Eric Cutler August 10, 2000

I found the article interesting, and a further indicatio of the shrinking world in IT. Concepts from one established market being (proposed) for other markets. However if I were Bill Gates, would I not think that opening up the source code had the potential to 'kill' or at least severely injure my future potential market. Unix, VMs etc can all be taken to be 'professional' products in the sense that they are not normally found in other than controlled environments. Microsoft Windows products (3.1 - 98 & NT) are ostensibly to be found more in the less professional market. The implication surely is that with open source code the potential exists for the 'amateur' with plenty of spare time to develop and extend the original product to the point where he dosen't need to buy Win 2001/09/10 etc because he can keep upgradeing the features in Win 98 (or wahatever). It therefore requires a quantum leap in code to encourage this, probably large slice of the market, to ever buy a new product. I realise that this is an extremely simplistic view, and that the actual percentage of market that might take this road, evem if it were comletely viable, is a complete unknown. But again if I were Bill Gates, whose marketing expertise has led to a lucrative up grade market, why would I take the chance at lost revenue?

Paul Bird October 26, 2000

Sure. Take PHP vs. ASP, for example: security fixes in PHP are available within an hour after the moment a bug was found in PHP in most cases. You cannot say the same about ASP. If they're quick hacks, they're marked as that. (Last major problem found in PHP was plugged with such a hack in 4 [four] minutes.) In the closed source world, you get an upgrade some time, and then maybe another one because of 'bug found in the original fix'.

Roman Neuhauser@mail.cz October 27, 2000

You must be a registered user or online subscriber to comment on this article. Please log on before posting a comment. Are you a new visitor? Register now




Top Viewed ArticlesView all articles
Command Prompt Tricks

One reader shares his tip for setting up the command prompt to reflect a remote path. ...

WinInfo Short Takes: Week of November 23, 2009

An often irreverent look at some of the week's other news, including some post-PDC some soul searching, a Google Chrome OS announcement and a Microsoft response, Windows 7 off to a supposedly strong start, the Jonas Brothers and Xbox 360, and so much more ...

2009 Windows IT Pro Editors' Best and Community Choice Awards

Picking a favorite product from an impressive crowd of competitive offerings is never an easy task, and such was the case with our Editors' Best and Community Choice awards this year. ...
Related Events Deep Dive into Windows Server 2008 R2 presented by John Savill

Check out our list of Free Email Newsletters!
Windows OSs eBooks Understanding and Leveraging Code Signing Technologies

A Guide to Windows Certification and Public Keys

SQL Server Administration for Oracle DBAs
Related Windows OSs Resources Introducing Left-Brain.com, the online IT bookstore
Looking for books, CDs, toolkits, eBooks? Prime your mind at Left-Brain.com

Discover Windows IT Pro eLearning Series!
Clear & detailed technical information and helpful how-to's, all in our trademark no-nonsense format


ADS BY GOOGLE

Job Openings in IT SPONSORED LINKS FEATURED LINKS
Calculate your savings now
See how SAN is 57% cheaper than DAS over three years

Free CDs Offer Fundamental Content for IT Pros
Are you up to speed on the latest technologies and solutions? Don't miss out on your chance to get up to speed quickly on fundamental, in-depth information on some of the hottest topics in our library of content.

Let Your Users Reset Their Own Passwords: Free Download
Try a 30 day free trial of Desktop Authority Password Self-Service – it provides an easy-to-use, robust system for allowing users to reset their own forgotten passwords or locked accounts.


Exchange Server 2010: Deploying Unified Communications - Virtual conference
December 1, 2009 - Free Registration. Build your Unified Communications future on a strong Exchange Server 2010 foundation.

Get Windows IT Pro & Mark Minasi’s Favorite Power Tools Guide
Order Windows IT Pro now and get "More of Mark Minasi's Favorite Power Tools"--a in-depth guide to the most useful Windows commands --FREE with your paid order! Subscribe today, and save 58% off the cover price!

Migration, Virtualization, Availability, and Desktop Management
Realize the importance of a workload optimization strategy...it can affect your bottom line!

Deep Dive into VMware vSphere, eLearning Series
Join John Savill to explore the major functionality capabilities of the vSphere virtualization platform, including identification of the changes from ESX 3.5.
Windows IT Pro Home Register FAQ for Windows WinInfo News
Europe Edition About Us Contact Us/Customer Service Media Kit Affiliates / Licensing  
SQL Server Magazine Office & SharePoint Pro DevProConnections IT Job Hound
Left-Brain.com Technology Resource Directory asp.netPRO ITTV Windows SuperSite 
 
 Windows IT Pro is a Division of Penton Media Inc.
 © 2009 Penton Media, Inc. Terms of Use | Privacy Statement