Recent Posts

vSphere Hardening Guide 5.5 Update 1 Beta 2 released

posted

After a lot of great feedback from the community, here’s Beta 2.1 of the vSphere Hardening Guide for vSphere 5.5 Update 1. There were some editing mishaps (cut off cells in the Excel sheet) that have been fixed since the Beta 1 release. Also, all the *-no-self-signed-certs guidelines have been updated to be more in Read more...

vSphere Hardening Guide 5.5 Update 1 Beta released

posted

Hi everyone, It’s that time again! Actually, it’s the first time that I’m aware of that the vSphere hardening guide has been updated between major releases! Please head on over to the Security and Compliance VMware Community and download the beta of the vSphere 5.5 Update 1 Hardening Guide. This is a beta release of Read more...

What happened to that Hardening Guide setting?

posted

Hi! As usual, most of my blog posts come from customer or field questions. Here’s a new one crossed my path recently. A customer, running vSphere 5.1, was finding some anomalies within their VM’s. Their belief was that some of the vSphere Hardening Guide settings were causing it. When this was assigned to me, I Read more...

Can an admin peek inside my VM?

posted

A great question crossed my desk today from a customer. “Can a VI Admin who has root access to ESXi “abuse” their privileges and “peek” inside the guests of VM’s hosted on the server?” The short answer? If your ESXi admin has root or full administrator privileges, they can do anything. Nobody should be surprised Read more...

Security of the VMware Hypervisor – A Whitepaper

posted

Hi! I’m happy to announce the availability of a whitepaper that I had been working on much of the past year. Since I joined VMware back in January of 2013, an almost weekly request was for a whitepaper that help IT team explain the security of the VMware vSphere hypervisor, a.k.a. ESXi, to a security Read more...

VMware Communities Podcast – Hardening Guide and secure virtual appliances

posted

Tomorrow, November 6th, I’ll be hosting the VMware Communities Roundtable Podcast! We’ll be talking about the recently released vSphere 5.5 Hardening Guide and the massive amount of work that’s been done to secure VMware virtual appliances! Joining me will be Simon Mijolovic (we just call him “Simon”), the Staff Program Manager for virtual appliance security Read more...

vSphere 5.5 Hardening Guide Released!

posted

Hi, I’m happy to report that the vSphere 5.5 Hardening Guide has been released for General Availability. My thanks to all that contributed their feedback to make this happen. The guide has been given a full makeover with regard to documentation references. I’m in Renate’s debt for those stellar contributions. Additionally, some guidelines have been Read more...

vSphere 5.5 Hardening Guide Release Candidate has been published

posted

Hi, I’m happy to announce the availability of the vSphere 5.5 Hardening Guide Release Candidate. A SIGNIFICANT amount of documentation updates have been incorporated into the guide to really round it out. There have been some new additions and some deletions to the guide. All changes are documented in the changelog spreadsheet. You can download Read more...