Update to VI3 Security Hardening Guide | VMware Security Blog

posted

Link: VMware: VMware Security Blog: Update to VI3 Security Hardening Guide. Update to VI3 Security Hardening Guide We have recently released an update to the VI3 Security Hardening guide.  The main changes are: new content for ESX 3.5 and VirtualCenter 2.5, including VirtualCenter plug-ins a section specific to hardening for ESXi. new sections for VM Read more...

VMware Infrastructure Earns Common Criteria EAL4+ Certification | VMware Security Blog

posted

From Eric Betts at the VMware Security Blog — something we’re very proud of. Link: VMware: VMware Security Blog: VMware Infrastructure Earns Common Criteria EAL4+ Certification. On May 20, 2008, VMware VI3 (ESX Server 3.0.2 & VirtualCenter 2.0.2) achieved Common Criteria certification at EAL4+ under the Canadian Common Criteria Evaluation and Certification Scheme (CCS).  EAL4+ Read more...

TripWire ConfigCheck sanity checks your ESX environment

posted

From the TripWire ConfigCheck site: Tripwire® ConfigCheckTM is a free utility that rapidly assesses the security of VMware ESX 3.5 hypervisor configurations compared to the VMware Infrastructure 3 Security Hardening guidelines. Developed by Tripwire in cooperation with VMware, Tripwire ConfigCheck ensures ESX environments are properly configured—offering immediate insight into unintentional vulnerabilities in virtual environments—and provides Read more...

Best practices for securing virtual networks

posted

Hezi Moore, co-founder and CTO of Reflex Security, has a nice 3-part primer on how to start thinking about your virtual networks as a guest post on VMblog. While Hezi does mention virtual appliances, he avoids turning this into an ad for Reflex. Best Practices for Securing Virtual Networks – Part One of Three  However, Read more...