Executive Summary: 2004 OS Deployment Survey
Laura DiDio, Senior Analyst, Application Infrastructure and Software
Platforms at the Yankee Group sent us the Exec Summary back for this
large survey that 700 of you participated in. Here goes:
"The long corporate migration drought appears to be over. After three
years of relative inertia due to economic constraints, corporate
enterprises appear poised for a wave of operating systems,
applications and hardware upgrades over the next 12 months.
"Those are the results of the latest independent, joint Yankee Group/
Sunbelt Software, Inc. poll of 700 network administrators. Eight out
of 10 respondents ? 80% -- said their business will undertake a major
network hardware and/or operating system upgrade project within the
next 12 months.
"The responses showed that organizations are embracing Windows XP,
Windows Server 2003 and Office 2003. Linux also made a strong showing
in planned customer deployment plans ? most surprisingly on the
desktop rather than on the server side. Nearly 33% of respondents
said their firms are presently running Linux workstations somewhere
in their networks, while 19% said they plan to add Linux desktops
into their environments. However, less than two percent said that
Linux was now or would be their enterprise wide desktop OS.
"Linux has made significant penetration on the server side ? mainly at
the expense of mid-range Unix and not Windows. Fully half ? 50% -- of
the survey respondents said they have Linux deployed in their shops.
That puts Linux ahead of both Unix is present in 30% of businesses
and Novell NetWare which is used in 15% of shops.
"Over 90% of companies have at least one version of Windows server in
their shop; 63% are running Windows 2000 Server while 49% have
migrated to Windows Server 2003. Linux appears to be less competition
for Windows Server 2003, than older versions of Microsoft operating
systems. Overall, 25% of the respondents said they have no current
plans to migrate to Windows Server 2003. Of that number, the largest
majority ? 25% said it was because they had ?no compelling business
case justification:. By contrast: only 9% of the 25% of said they
would not upgrade to Windows Server 2003 because they planned a
switch to Linux.
"Monetary woes appear to be diminishing, though the mood is still
cautious. Approximately 15% of businesses said they lack capital
expenditure funds for new equipment and migrations. Some 42% of
survey respondents said their IT spending will increase during the
2004-2005 timeframe. However, the bulk of the budgets ? about
one-third ? will only increase by 5% to 10% in the near and
"The mood remains cautious, though and users indicated they need a
compelling business reason to migrate and one that includes a
tangible Return on Investment and Total Cost of Ownership (TCO)
"Among the other survey highlights:
- Some 55% of respondents indicated they will migrate to Windows
Server 2003 within the next six to 12 months.
- On the Linux side, Dell is the top hardware vendor of choice in
the mid-rage server arena. Approximately one-third -- 32% -- of
those polled said Dell was their primary hardware vendor. HP was
second with 19%; followed by IBM with 15%. The remaining one-third
of customers said they used a combination of "other" server hardware.
- Despite the hype surrounding Novell?s acquisition of SuSE, earlier
this year, customers still prefer Red Hat as their Linux software
distribution vendor by a nearly two-to-one margin. Some 58% of firms
said they use or plan to use Red Hat?s Enterprise Linux solution
compared with 29% who said they presently use or plan to deploy
Novell?s SuSE Linux.
- The Linux distribution market appears to be a two-horse race
between Red Hat and Novell. Other competitors ? Mandrake and Debian
are, or will be used by 6% of customers each and only 1% said they
will use Linspire.
- Corporate customers are using Linux for a wide range of network
functions: 52% said they deploy Linux as a combination Web Server,
mail server and specialized application server.
- Windows XP migrations will crest in the near term: 39% of companies
said they are in the process of migrating to XP now or within the
next three months; another 18% will upgrade to XP within the next
six to 12 months.
- Of the 45% of businesses that have migrated to Microsoft?s
Licensing 6.0 program, 27% saw their licensing costs decrease by
an average five percent to 30%; about one-third of the respondents
said the cost of their licensing plans remain the same; 20% saw
licensing costs rise by five percent to 30%, while only 12% saw
licensing costs soar by 50% or more.
- Just over half ? 53% of respondents said they are using Active
- Nearly four percent of the IT managers said their firms will
switch their enterprise desktop environment from Windows to Linux.
- Only 25% of businesses presently have definitive Web Services
- The administrative areas of greatest concern are a network security;
the under-staffing of the IT department, disaster recovery, junk
Email management and tactical migration issues to next generation
Windows, Office and Active Directory."
The Average Phishing Site Lives 54 Hours
Phishing attacks use 'spoofed' emails and fraudulent websites
designed to fool recipients into divulging personal financial data
such as credit card numbers, account usernames and passwords,
social security numbers, etc. By hijacking the trusted brands of
well-known banks, online retailers and credit card companies,
phishers are able to convince up to 5% of recipients to respond
The average phishing web site stays alive for about 54 hours, the
AntiPhishing Working Group (APWG) said looking at June, but some
sites stayed up for more than two weeks before being shut down.
People do get aware of this type of scam, so the operating
window for phishing crims is likely to shrink. But it's early
days still. Warning people about phishing has not stopped the
growth of these scams, which combine technology and social
engineering to steal login information for web banking and online
retail sites. There were 1,422 separate phishing scams in June,
according to the APWG, a 52 percent increase from May. Nearly 500
attacks targeted Citibank alone. Warn your end users!
Sir! Step Away From That Service Pack!
Here is another anecdotal one regarding XP SP2: "I downloaded the
latest version of SP2 (WindowsXP-KB835935-SP2-ENU.exe) to try on
our network. I started with my own computer since its the most complicated, thinking that if it worked on there it would work with all the rest.
"I went to reboot after the installation and it froze on the XP screen.
I tried several times with the same result. I then tried safe mode and
going to the last known good configuration, but nothing worked. So I
put in the XP disc and after running the automated version of repair
twice, got back onto XP SP1. Of course, somewhere along the process
all of my previous system restore points were deleted. After verifying
that a few things were working again, I went to the task manager and
shut down all apps which weren't essential to XP, and tried again to
install SP2. Same result, totally froze up upon rebooting. Same thing
with the automated system repair, it worked after the 2nd try.
"Now I've heard that SP2 has problems with certain apps, but thought
that the boot problems were all worked out. Well they're not. I suspect
it has to do with the RAID configuration, but have no way to verify this.
I then realized that my copy/paste no longer works. I'm sure that there
are more problems, but won't spend the time sorting through them all
as I need this computer. I'll reformat again and stick with SP1.
So my advice to others, is that unless you have the most simple of
systems, don't install SP2. Even then, make sure that you won't lose
anything, in case your computer will no longer boot. Back up everything
Here is a list of 50 applications that break, from the MS-website:
Hunt For XP SP2 Flaws Seen In Full Swing
While users are testing Service Pack 2 for Windows XP to prevent
compatibility problems, hackers are picking apart the security-focused software update looking for vulnerabilities, security
experts said. Network World has an interesting article about it:
More On: Vendors Not Allowing Patches
A W2Knews subscriber sent this: "I've been complaining for over a
year that Iomega does not recommend installing any MS patches on
their Windows based NAS solutions. They actually claim that they
test and approve updates, but they haven't approved anything in
over a year. See this link:
"This is a major security concern not just for the medical industry,
but for the whole IT sector. All of the efforts we're making to
increase network security and patching technologies aren't going
to fix the problem if vendors won't take responsibility for their
Windows based appliances. If you don't want to patch it, don't
"Some of these companies complain that testing is too expensive.
I don't mind them charging to test the updates, most of us pay
yearly maintenance fees on our appliances already. But it's
unacceptable to take that money and say 'sorry, your security
needs are irrelevant' or 'buy a firewall, you'll be fine'
(because we all know that firewalls will protect us from
anything--even the boogie man, right?). That's like saying
'Wear a seatbelt, that way you won't get hurt in a car crash.'
"The situation is even worse in the medical sector, where patients
lives are at stake. When the systems controlling medical devices
go unpatched, the next "killer app" in the virus world could be
just that. I don't mean to imply that Microsoft is responsible
(they do, after all, issue the patches) but I'd like to see
Redmond ask for some patching commitment from vendors who are
licensed to build Windows based devices. These vendors have a
responsibility that they're not living up to. I guess we'll have
to wait for the lawsuits to roll in after the first few ICUs go
down in order to get their attention. In the mean time, you won't
see me shopping for any more Windows based devices."
My suggestion: before you buy windows-based devices, carefully
check the record of that vendor regarding their patch policy and
check in the market with existing users how/if they keep up.