Emory University: The Windows7 Incident

  • Thread starter nsaspook
  • Start date
  • Tags
    University
In summary, this Windows 7 deployment accident resulted in a repartition and reformat of the SCCM server. The risks of automated deployments are apparent, as is the need for proper backup procedures.
  • #1
nsaspook
Science Advisor
1,368
3,974
The risks of automated deployment of software.

Facts as we know them:

A Windows 7 deployment image was accidently sent to all Windows machines, including laptops, desktops, and even servers. This image started with a repartition / reformat set of tasks.
As soon as the accident was discovered, the SCCM server was powered off – however, by that time, the SCCM server itself had been repartitioned and reformatted.

http://it.emory.edu/windows7-incident/
 
Computer science news on Phys.org
  • #2
We are developing a more automated approach and technicians are testing it now.

Sounds funny in the context, doesn't it?
 
  • #3
I guess that some people will get a lesson in backing up their data. :devil:

I'm not a big fan of automated deployments. My company sent out an XP update last year that caused all of the USB ports to not be recognized on docking stations for some laptop models. They never did figure that out - the solution was to wait until the Windows 7 upgrade a few months later.
 
  • #4
Isn't that how SkyNet got started?
 
  • #5
Borg said:
I'm not a big fan of automated deployments.

Ah, the good old days back in the 1970's when sending out a software update to our customers involved

- several visits to different computer service companies around the UK to get time to build and test the software on lots of different types of computer and operating system
- several more visits to make copies on reels of magnetic tape in lots of different formats.
- For a few customers, transferring the binary data for the executable programs onto punched cards (maybe 20,000 cards per customer), and packaging them and labeling them up so even an untrained gorilla couldn't get them in the wrong order, and shipping them by courier.

Sending an update to 200 customers was about 3 weeks work for somebody - plus the time to fix the mistakes caused by wrong labeling of 200 identical looking but incompatible reels of tape, etc!
 
  • #6
Some advice never changes:
If you are experiencing any issues with your PC after it is re-imaged, please be sure to reboot first, which may solve your problems.

:biggrin::biggrin::biggrin::biggrin::biggrin:
 
  • #7
AlephZero said:
Ah, the good old days back in the 1970's when sending out a software update to our customers involved

- several visits to different computer service companies around the UK to get time to build and test the software on lots of different types of computer and operating system
- several more visits to make copies on reels of magnetic tape in lots of different formats.
- For a few customers, transferring the binary data for the executable programs onto punched cards (maybe 20,000 cards per customer), and packaging them and labeling them up so even an untrained gorilla couldn't get them in the wrong order, and shipping them by courier.

Sending an update to 200 customers was about 3 weeks work for somebody - plus the time to fix the mistakes caused by wrong labeling of 200 identical looking but incompatible reels of tape, etc!

IIRC, didn't a box of punch cards hold 2000 cards? So, ten boxes of cards per customer to hold 20K cards?
 
  • #8
SteamKing said:
IIRC, didn't a box of punch cards hold 2000 cards? So, ten boxes of cards per customer to hold 20K cards?

Yup. And that was only about 2 mbytes of data!

And sometimes the company mailing department didn't bother to read the shipping instructions, and sent the package half way round the world by sea to save money... :cry:
 
  • #9
I've been following what seems a major change in the Linux world and while it is highly controversial (in fact I have often opposed it, at the very least on the Desktop) it apparently is also very compelling to many as one by one each major distro but 2 have fallen to it. I am referring to systemd which started as a replacement for the old, tried and true SysVInit, but has been revealed to be a thrust to a Core OS. There is now one called CoreOS which, partly because of extreme parallelization, can be deployed on thousands of systems in minutes. Furthermore it employs a read-only root system (partly for it's resistance to both hacking and inadvertent screw ups) and has whole system updates on a scheduled basis.

Whatever else it is, it is also a very big deal, and is worth watching it's development if you have any interest is Enterprise systems. I am mentioning this in this thread not to hijack it but because exactly these sorts of problems propel such development, either internally or in competition, or both.
 
  • #10
SteamKing said:
Isn't that how SkyNet got started?

Exactly! After being burned by the IT dept more than once by pushed updates that messed up some odd ball device driver to a special interface we hired our own engineering IT group person to manage our computers. (with orders to leave things alone unless it's been approved by the user or is a emergency virus or security update)
 
  • #11
AlephZero said:
Ah, the good old days back in the 1970's when sending out a software update to our customers involved

- several visits to different computer service companies around the UK to get time to build and test the software on lots of different types of computer and operating system
- several more visits to make copies on reels of magnetic tape in lots of different formats.
- For a few customers, transferring the binary data for the executable programs onto punched cards (maybe 20,000 cards per customer), and packaging them and labeling them up so even an untrained gorilla couldn't get them in the wrong order, and shipping them by courier.

Sending an update to 200 customers was about 3 weeks work for somebody - plus the time to fix the mistakes caused by wrong labeling of 200 identical looking but incompatible reels of tape, etc!
I was referring to the inability to stop them. The computers that I work with are set up to match customer requirements with regard to software versions of Java, browsers, etc. The IT department at my company thinks nothing of pushing updated, corporate-specific versions of software that are nothing like the versions being used by the customer. The updates also frequently reset customized settings causing hours-long bug hunts. It's gotten so bad that the company has split off its network in two - one development network that doesn't get automated updates and the main corporate network for everyone else.
 
  • #12
My experience of SCCM isn't good so far, but it's early days yet, maybe it's just a learning process. No disasters, just a lot of problems getting deployments to actually work.
 

FAQ: Emory University: The Windows7 Incident

What happened during the Windows7 Incident at Emory University?

On April 5, 2021, Emory University experienced an unexpected shutdown of its Windows7 operating system, causing widespread disruption and delays in daily operations. The incident was caused by a software malfunction and was resolved within a few hours.

How did the Windows7 Incident affect students and faculty at Emory University?

The Windows7 Incident caused significant disruption to daily operations at Emory University, including delays in online classes, research activities, and administrative tasks. Students and faculty were advised to save their work frequently and utilize alternate resources until the issue was resolved.

What measures were taken to prevent future incidents like this at Emory University?

After the Windows7 Incident, Emory University implemented several measures to prevent similar incidents from occurring in the future. These include upgrading to the latest operating system, implementing regular software updates and maintenance, and enhancing cybersecurity protocols.

Were any sensitive data or personal information compromised during the Windows7 Incident?

No sensitive data or personal information was compromised during the Windows7 Incident. The issue was caused by a software malfunction and did not involve any malicious activity. Emory University takes the protection of sensitive data and personal information seriously and has strict security measures in place.

How can students and faculty stay informed about any future incidents or updates regarding the Windows7 Incident at Emory University?

Emory University regularly updates its website and social media channels to keep students and faculty informed about any incidents or updates, including the Windows7 Incident. It is recommended to follow these channels and regularly check for updates to stay informed.

Similar threads

Is Science Vulnerable to Software Bugs?
Replies
2
Views
2K
I could really use some help picking my optional module [GameDev]
Replies
2
Views
2K
Current and Future AI Threats to Humanity and the Human Response
Replies
10
Views
3K
Could a Mac be useful for a physics student?
Replies
2
Views
2K
STOP: 0x0000008E (0xC000005, 0XBF04DF7B, 0xED924B18 0X000000000)
Replies
23
Views
5K
BRS: PKI Cryptosystems for SA/Ms: A Tutorial
Replies
13
Views
3K
Requesting suggestions for languages, libraries, and architectures for parallel (and sometimes non parallel) numerical and scientific computations
Replies
8
Views
3K
Admissions Can someone critique my statement of purpose? (Master's Degree in Quantum Engineering)
Replies
8
Views
3K
Meet jtbell: Meet a Mentor Series Interview
Replies
12
Views
6K
Exploring Nikola Tesla's Miraculous Lab: 1899
Replies
8
Views
8K

Hot Threads

Recent Insights

Back
Top