Monday | 8 September, 2008
CIO
Linux, Open Source Software Pay Off for PayPal
PayPal's upgrade path is 'unbelievably cost effective', ex-Visa CTO says.
Phil Hochmuth (Network World) 26 March, 2007 09:20:43
Page:

Related Topics
(Management)
Related Features
  • +

    Strategies for Dealing With IT Complexity 24 December, 2007 10:30:47

    Every innovation, every business process improvement, comes with an IT complexity tax that must be paid by CIOs in time, money and sweat. Here are strategies to mitigate the increasing complexity of IT as it enables new business.
    Every innovation, every business process improvement, comes with an IT complexity tax that must be paid by CIOs in time, money and sweat. Here are strategies to mitigate the increasing complexity of IT as it enables new business.
  • +

    Your World. . . Hacked 02 October, 2007 10:51:23

    As your business becomes more collaborative and global, the risks to your company’s trade secrets rise proportionally. Fortunately, there are new strategies to protect the data that allows you to compete
    The call to Bob Bailey, an IT executive with a major US government contractor, came on an otherwise ordinary day in October 2003. "Why are you attacking us?" demanded the caller, an IT leader with a Silicon Valley manufacturer. He wanted to know why Bailey's company had launched a denial-of-service attack against his network
Related Stories
  • +

    Can Macs conquer the enterprise? 11 January, 2008 10:55:53

    The field is wide open for a Macintosh insurrection on the business desktop. It could happen, but probably won't. Here's why.
    If Apple were a football team, the New England Patriots would have had some serious competition this year.
  • +

    Microsoft's marriage of easy communications 19 October, 2007 11:08:43

    The combination of Microsoft Office Communications Server 2007 and Exchange Server 2007 brings voicemail to the in-box, and speed and flexibility to how Windows workers communicate
    We've been watching the romance develop between OCS (Office Communications Server 2007) and Exchange Server 2007 since OCS became available in beta earlier this year. When OCS finally came of age last month, we brought the mature couple together for a Hawaiian wedding.
Additional Resources
Executive Guides
Whitepapers
white paper Read up on the latest ideas and technologies from companies that sell hardware, software and services.

Newsletter Subscription

Sign up for our CIO newsletters!
Weekly coverage of the issues that impact corporate and government information
RSS Feeds

Open source pays off in app development lab

Using open source Red Hat Linux also provides several advantages on the development side. Because of the low-cost hardware and software PayPal uses on its production system, it can almost replicate the state of its entire live site in the application development lab. This lets PayPal coders write new versions of the PayPal production applications, which can then be switched on live with minimal disruptions.

"When you have developers testing a system on the exact same environment that you have in production, the probability for weird things happening is a lot lower. That's really key," Mengerink says. "Open source clearly makes this a lot more cost effective as well, since you don't have the same licensing costs that would be associated" with duplicating a live site in the lab.

This model also helps PayPal developers frequently churn out new versions of the Web site's main applications, which can be both a positive and negative thing.

"The one struggle we have is a classic struggle, is our decision to align development and the live site," Mengerink says. "Developers are radical. They would be on the beta version of the newest latest and greatest all the time, with some kernel patch they found from some college Web site," he says. "The people in operations are a little more conservative than that. Their take is, no feelings would be hurt if we just used the most stable, known versions of things."

This approach PayPal developers take in molding the Linux kernel and other open source code they use helps to make the overall system more secure, Mengerink says.

Linux servers in PayPal's data center run Red Hat kernels with custom tweaks that add extra layers of security to the systems. As a basic step, superfluous services, packages and other software are stripped out.

"The combination of Linux and open source allows us to do the modifications we need to scale and have that extreme rigidity of security," Mengerink says.

Security policies and code also are added to the machines -- Mengerink would not give specifics -- which creates a built-in layer of mistrust among machines on the data-center network. Each box is configured as if it were operating in an untrusted network. "So there is no such thing as a sitewide compromise," he say. "You'd have to go box by box and fight your way."

So far, the mix of distributed Linux and open source software and rapid application development of open source code have been a success, Mengerink says. And it certainly keeps work interesting.

"Sometimes we feel a little schizophrenic," he says. "We're a Web company; we're a real-time payment system -- oh, dear. So doing both is very hard."

Page:
More about Red Hat, HIS Limited, Speed, Visa, Oracle, IBM, PayPal, Intel
Market Place
Discover the latest web security SaaS solutions | Download new IDC white paper to lessen your IT burden.
Discover trends in the B2B infrastructure market in 2008 | Download new Gartner white paper now.
Computerworld Webinar | Business Mashups - Building the Intelligent Organisation by Empowering Users | 11am Tues 16th Sep 08
Cut Printer costs! Printing costs can be up to 3% of turnover, cut them by up to 50%.
 

2008 CIO Summit

19th August, 2008 Four Seasons Hotel, Sydney Developed in partnership with CIO Magazine, IDC, INTEP and the CIO Executive Council.

The world of the CIO is extremely complex and diverse. Multiple priorities demand attention and decisions are needed instantly. Individual teams need to be driven towards common goals, and businesses strive to become more mobile, agile and responsive. For CIOs, the challenge never ends.

Every year the CIO Summit identifies what is top of mind for CIOs across Australia and New Zealand, and offers insight for CIO benchmarking and vendor strategic planning alike.

Recent IDC research shows that over 59% of CIO's believe that 'to achieve their business strategies, technology should be used more aggressively than today.'

Join us on August 19th to discover how this is possible with the latest technologies including Virtualisation, Web 2.0, IP Surveillance and Software as a Service (Saas).

Click here for registration.

Click here for more information.

Please email Denyse_Robertson@idg.com.au for further information.

  • +

    CIO Live Podcast #79: Brent D Taylor, author of The Outsider's Edge: The Making of Self-Made Billionaires Part II 05 October, 2007 06:00:00

    For his new book, The Outsider's Edge: The Making of Self-Made Billionaires, social researcher Brent D Taylor spent four years of intensive research investigating the psychological make-up and backgrounds of some of the world's richest men and women, including IT luminaries Bill Gates, Larry Ellison and Steve Jobs. Taylor discovered that, despite working in different industries and coming from different upbringings, they all have one thing in common -- they are all outsiders.
    [ MP3 (7.32 MB) | Windows Media (5.67 MB) ]
  • +

    CIO Live Podcast #78: Brent D Taylor, author of The Outsider's Edge: The Making of Self-Made Billionaires 28 September, 2007 17:34:25

    For his new book, The Outsider's Edge: The Making of Self-Made Billionaires, social researcher Brent D Taylor spent four years of intensive research investigating the psychological make-up and backgrounds of some of the world's richest men and women, including IT luminaries Bill Gates, Larry Ellison and Steve Jobs. Taylor discovered that, despite working in different industries and coming from different upbringings, they all have one thing in common -- they are all outsiders.
    [ MP3 (7.56 MB) | Windows Media (5.14 MB) ]
  • +

    CIO Live Podcast #77: Panasonic Speeds Up Trans-Pacific File Transfers, Part III 21 September, 2007 07:00:00

    Part three in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance.
    [ MP3 (4.90 MB) | Windows Media (4.40 MB) ]
  • +

    CIO Live Podcast #76: Panasonic Speeds Up Trans-Pacific File Transfers, Part II 14 September, 2007 07:00:00

    Part two in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance.
    [ MP3 (5.89 MB) | Windows Media (4.84 MB) ]
  • +

    CIO Live Podcast #75: Panasonic Speeds Up Trans-Pacific File Transfers, Part I 07 September, 2007 07:00:05

    Part one in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance.
    [ MP3 (6.41 MB) | Windows Media (5.13 MB) ]
  • +

    New Ways to Approach Security in a Web 2.0 World 08 September, 2008 09:32:00

    Web 2.0 technologies have ushered in a new age of security threats. Brian Foster, vice president of product management with Symantec, shares his insight on what you need to do to safeguard your company in today's business environment
    Business isn't what it used to be.
  • +

    Skills for leading a converged security operation 08 September, 2008 12:30:00

    The cultural challenges are significant, and the CSO has to lead the way in learning and changing. We spoke with several converged CSOs for their take on building the necessary skills to hold the job.
    John had a massive challenge to tackle. A former IT security officer at a large bank in New York, he and his wife packed up and moved across the country so he could take on the role of chief security officer with a well-known provider of loans, retail financing, and other credit related products.
  • +

    Information security governance: Centralized vs. distributed 05 September, 2008 10:15:00

    Should security policies, procedures and processes be managed within a central body, or distributed at an individual level? You need to find the middle ground.
    The management of information risk has become a significant topic for all organizations, small and large alike. But for the large, multi-divisional organization, it poses the additional challenge of determining how to deploy an information security governance program among what are often disparate business units. Should the policies, procedures, and processes that define the program be developed and managed within a central, corporate body? Or perhaps responsibility would be better placed at the individual unit level? Is there a workable middle-ground?
  • +

    DNS error brings Sophos antivirus updates to a halt 05 September, 2008 13:40:00

    Optus, Internode and Equinix affected among others.
    A sporadic Domain Name Server (DNS) error has blocked Sophos anti-virus updates around the world.
  • +

    Ouch! Security pros' worst mistakes 04 September, 2008 08:05:00

    We've all done regrettable things on the job, but does any valuable wisdom come of it? Four security pros candidly explain their biggest blunders and what they learned in the process
    It was a mistake so bad the person who made it asked that his name and company not be mentioned here. Let's call him Frank.
CIO Webcast Innovation #8 - What are the biggest roadblocks to IT's involvement in innovation at your company?
Watch the latest latest edition of CIO Innovation which is now available for download.
Watch the webcast
Sign up to the CIO Innovation update email


CIO Live Podcast #79: Brent D Taylor, author of The Outsider's Edge: The Making of Self-Made Billionaires Part II
Listen to the latest edition of CIO Live which is now available for download.
Listen to the podcast
Sign up to the CIO Live email
Get a job Careerone
Whitepaper
The CIO Executive Council Guide to Success

Read Whitepaper

The CIO Executive Council Guide to Success

The CIO Executive Council discusses how to be the best CIO you can be. Download this 16-page strategy guide to discover how to sharpen your commercial instincts, engage business executives and much more.

Sponsored Links