Sitting at the 2009 Virtualization Congress, I noticed this in my inbox, here is some from the press release: Mountain View, CA (May 5, 2009) – HyTrust, Inc. today took the first major step toward building a vibrant new community, united by a common goal: Virtualization Under Control. Key to delivering on that vision, HyTrust
-> Continue reading HyTrust Releases Community Edition!
This post started out as a bit of nonsense. A bit of an exploration into what could be done via the API using PowerShell. What better place to start I thought than the MOTD. Who doesn’t love the way VMware greets you… sometimes repeatedly in the same session with it. Then, I got to thinking…
-> Continue reading Random VI Hardening Tip – Automating MOTD Updates
While glancing over at PoSH today (the tiny turtle) I was inspired to do a bit of thinking and talking about using PoSH. Specifically the VI Toolkit, it really wouldn’t be blog worth otherwise would it? What I got thinking on, and what someone on irc clued me into, was storing credentials. Why store credentials?
-> Continue reading PoSH Article of the Week! – Secure Credential Storage
HyTrust today came out of quazi-stealth mode and released it’s security virtual appliance. It now comes in 6 new flavors of bacon-like goodness. Ok, so not bacon, but just as awesome! From the press release: The new HyTrust Appliance features the following key benefits: Consistent Control – access and configuration controls are enforced consistently across
-> Continue reading Virtually Secure – HyTrust Launches Virtual Security Appliance
David Strom recently reviewed HyTrust Appliance on his blog: HyTrust offers managers and administrators of VMware’s ESX virtual infrastructure a centralized, single point of control for hypervisor configuration, compliance, and access management that is both secure and easy to use through ordinary Web browsers. We tested the RC version of the product in
-> Continue reading HyTrust Beta Video Tour
So while ESX 3.5 (not sure about i) may have tcpdump and tcpslice: [root@esx root]# tcp tcpd tcpdump tcpslice They’re of limited use, at least with the way ESX implements networking, vSwitches after all, are good and proper layer 2 devices. Now, that is not to say you couldn’t do something with arp poisoning, but…
-> Continue reading Tapping ESX – Network Sniffing Your VI
Edward Haletky, a regular on VMTN, and the VMTN round table podcasts, is starting his own spinoff, the “Virtualization Security Round Table Podcast” The first show, scheduled for Thursday at 2:30p EST, is going to feature the following topics: Use of Virtualization in a DMZ. Review of security lockdown standards/benchmarks and tools Virtualization Security in
-> Continue reading Virtualization Security Round Table Podcast
Sort of, it seems: Today, RSA integrates with VMware in an couple of what I would call "useful but not earth-shattering" points – you can integrate envision authentication with Virtual Center and it also integrates with VDM 2.1 and VMware View Manager for hardened authentication. But, with VMware as mission-critical as it is, security
-> Continue reading ESX Does RSA?