A New Kind of Home Computer: Windows Home Server Preview
by Ryan Smith on September 4, 2007 1:00 PM EST- Posted in
- Systems
WHS as a Webserver/Gateway/Everything Else
The final major task of WHS is to act as a webserver and gateway computer to the internet. Many people want to be able to access their files outside of their private network and WHS offers the ability to get this done and more.
As we mentioned previously, WHS comes with a very locked down version of IIS 6.0 as the webserver software. Enthusiasts looking to use a WHS server as a full-fledged webserver will be disappointed to find that out of the box the webserver abilities are limited to a web interface of some of the previously mentioned features of WHS. While we'd imagine this is quite possible to work around, it's not something that can be done inside of the WHS console.
In this respect, most of the webserver abilities of WHS are mentionable for being unmentionable. When the remote access option is enabled (it's disabled by default) accounts that have been flagged as having the rights to use remote access and are using a strong password may log into the web server. The entire transaction is encrypted, which as of this point is actually problematic because the security certificate doesn't (and can't) match the server, throwing up certificate warnings when attempting to log in. Since we're using the release candidate, we're not sure how this affects the release version at this point.
Once logged in, a user is presented with a few options. The first and most useful of these is accessing all the shared folders that user has access to. This entails both uploading and downloading of files via an HTML interface, basically replicating the feature set available as if it were done via a Windows share. While this is a useful feature we also feel Microsoft has missed a massive chance to do more with webserver access of the shared folders. For example, why not make the Photos folder a special photo gallery folder where photos can be viewed and manipulated as they can with other internet photo gallery services? It would certainly make sharing photos with the relatives easier.
The other ability users gain when logged in is using the WHS server as a fully HTTPS-encapsulated gateway for RDP. With the right passwords, users can log into the RDP console interface for the server itself, or the server can relay RDP controls to any clients on the network that are connected to the server and capable of acting as an RDP server (some versions of XP and Vista). We're a bit at odds with this second feature because it's so strange. It makes sense to offer RDP access to the server itself for management of the server and the network, but we don't immediately see the utility of being able to RDP into everything else. Certainly it's a nifty feature and we'll keep it, but we don't see it being very useful to all but a handful of users. How many people actually run a version of Windows that's RDP-server capable, after all?
This also brings up the security aspect of the remote access feature, which is something that can't be easily dismissed. The fact that Microsoft is encouraging users to purposely expose a computer to the internet with an active service, while necessary to enable the features offered by remote access, troubles us all the same. As the only thing exposed (if everything is configured correctly) are the ports required for IIS and not the more vulnerable Windows sharing services, this is potentially very secure as IIS 6.0 has had very few problems over the years. But at the same time we're worried about how many servers and routers won't be configured correctly, and what may happen when the next IIS exploit is found.
Is the version of IIS 6.0 locked down enough to keep it from being a participant in the next Code Red worm? If Microsoft is successful with WHS, there's going to be a massive increase in the number of IIS webservers on the internet, and that opens the possibility for major trouble if any exploits are found right after a patch Tuesday. Then again, we don't have any idea of how many users would be able to even access their server from the internet; blocking ports 80 and 443 are popular activities with ISPs.
On a lighter note, Microsoft is offering their own dynamic domain names for WHS owners who do use remote access and want something easier to remember than an IP address. Microsoft recently picked up the homeserver.com domain, and WHS owners will be able to reserve a subdomain for themselves that the WHS software will keep updated. It's a small feature among the whole, but we'd call it important in making WHS more usable with the average home user. We're still not ready to call these remote access features more than an interesting side show, but it does tilt things slightly more in favor of WHS.
Finally, Microsoft has taken an interesting approach with WHS when it comes to dealing with the shortcomings of the product. Microsoft has included an SDK for WHS for developing a new class of applications Microsoft is calling add-ins. Add-ins allow the server to do new things such as new services for clients, for the remote access component, or a new GUI. Among those developed for the release candidate, we have seen add-ins for a BitTorrent client, connecting TiVos, and using wake-on-LAN for clients that are turned off.
This will be something that we'll definitely need to keep an eye on, as add-ins could potentially resolve a lot of our complaints with WHS. We should have a better idea of what these add-ins can do (and do well) once Microsoft's Code2Fame contest for creating add-ins comes to a close and the add-ins are released. It's unusual for Microsoft to be interacting with the development community on this level, so we're interested to see how things turn out.
128 Comments
View All Comments
mindless1 - Wednesday, September 5, 2007 - link
Surely the backup client can be disabled (On one of the two)? I would be very surprised if 2 WHS systems can't coexist given a configuration change if you just wanted to avoid the wasted redundancy of having both make backups. That is, unless MS had deliberately chosen to prevent the two from getting along.ATWindsor - Tuesday, September 4, 2007 - link
Does it souppert proper raid, like raid 5 for instance? That fits my use a bit better than this duplication of files. WHS looks interesting, but seemingly a bit to primitive to be honest, seems to be missing quite a few more or less nescessary features.Rolphus - Tuesday, September 4, 2007 - link
The choice of OS should be entirely separate to RAID considerations. Software RAID5 is a bit of a waste of time, seeing as any performance advantage over just mirroring the data would be more than offset by software parity calculations. I don't see any reason why a BIOS-level RAID system (as supplied by many high-end and server motherboards and add-in cards) wouldn't be supported by WHS; Windows 2003 Server supports any RAID level you care to throw at it.mindless1 - Wednesday, September 5, 2007 - link
Most people won't care about parity calculation overhead, it's not as though the system is being used like a PC or workstation, that's practically ALL the system would be doing besides sitting idle, particularly given the rough spec of a 1GHz or more processor which is not at all needed just to serve files. Maybe with GbE, you might want a 300-400MHz processor to keep networking performance good but on a system that old you'd probably be bottlenecked by the PCI bus before anything else.yyrkoon - Wednesday, September 5, 2007 - link
What is wrong with software RAID, if that is all the system does(server storage) ? In my book, implementing *any* so called server OS *needs* to have at least RAID1, and should have RAID5 in software. If not, there is not realy reason to stop using WinXP Pro, with a few registry hacks tp bypass the RAID5 limitation.Anyhow, why pay for something that is lacking when you can get an OS that does it for free, or another earlier version of windows that will do it with a few hacks, and yu're already familiar with.
As I said in an earlier post, I used WHS for a few days several months ago(early beta program), and did not like what I saw. So . . .
ATWindsor - Wednesday, September 5, 2007 - link
Software raid5 can have very good performance, modern computers are fast, besides the main consideration is not wasting so much space, if you want to have som security for your files, you get by on loosing 1/4 insted of 1/2 of the space.The main advantage off WHS is the whole storage-pool-setup, I hope they implment somethin similar in w2k3.
Gholam - Sunday, September 9, 2007 - link
I tested software RAID5 on an nForce4 SLI motherboard (DFI LanParty nF4 SLI-DR) with Silicon Image 3114 chip and 4x WD 500GB drives. Reads were in 11-14MB/s range, writes sub-10MB/s, and CPU load was near full, on an Athlon 64 4000+.ATWindsor - Sunday, September 9, 2007 - link
Try to test a proper software-raid, instead of the inbuilt nforce-crap, just because you tested a poor solution doesn't make all solutions bad.Gholam - Sunday, September 9, 2007 - link
It's not nForce, it's SiI3114, nearly ubiquitous on higher-end motherboards of that era, as well as present on many lower-end PCI cards. Building RAID5 on an "affordable" solution from Silicon Image, Promise and such will give you exactly that kind of performance, as well as guarantee a high probability of data loss due to driver/firmware bug. In order to run RAID5 you need a proper controller from Adaptec/LSI Logic/3Ware, and that costs big bucks.Ryan Smith - Tuesday, September 4, 2007 - link
It only supports proper RAID if you can configure it all in the BIOS. Any kind of softRAID that needs Windows' help isn't supported. Basically it needs to appear as 1 disk to Windows.