Recent Posts

Can an admin peek inside my VM?

posted

A great question crossed my desk today from a customer. “Can a VI Admin who has root access to ESXi “abuse” their privileges and “peek” inside the guests of VM’s hosted on the server?” The short answer? If your ESXi admin has root or full administrator privileges, they can do anything. Nobody should be surprised Read more...

Security of the VMware Hypervisor – A Whitepaper

posted

Hi! I’m happy to announce the availability of a whitepaper that I had been working on much of the past year. Since I joined VMware back in January of 2013, an almost weekly request was for a whitepaper that help IT team explain the security of the VMware vSphere hypervisor, a.k.a. ESXi, to a security Read more...

VMware Communities Podcast – Hardening Guide and secure virtual appliances

posted

Tomorrow, November 6th, I’ll be hosting the VMware Communities Roundtable Podcast! We’ll be talking about the recently released vSphere 5.5 Hardening Guide and the massive amount of work that’s been done to secure VMware virtual appliances! Joining me will be Simon Mijolovic (we just call him “Simon”), the Staff Program Manager for virtual appliance security Read more...

vSphere 5.5 Hardening Guide Released!

posted

Hi, I’m happy to report that the vSphere 5.5 Hardening Guide has been released for General Availability. My thanks to all that contributed their feedback to make this happen. The guide has been given a full makeover with regard to documentation references. I’m in Renate’s debt for those stellar contributions. Additionally, some guidelines have been Read more...

vSphere 5.5 Hardening Guide Release Candidate has been published

posted

Hi, I’m happy to announce the availability of the vSphere 5.5 Hardening Guide Release Candidate. A SIGNIFICANT amount of documentation updates have been incorporated into the guide to really round it out. There have been some new additions and some deletions to the guide. All changes are documented in the changelog spreadsheet. You can download Read more...

vSphere Web Client Roles and Permissions How-To Video

posted

Have you ever wondered how Roles and Permissions work using the vSphere Web Client? Here’s a great video brought to you by VMware Tech Pubs. Peter Shepherd does a great job in introducing you to Roles and Permissions and how to get the most out of them. He will lead you through the steps to Read more...

Virtual Appliances getting more secure with vSphere 5.5 – Part 3

posted

Making DISA compliance easy In Parts 1 and 2 we introduced the VMware Hardened Virtual Appliances and went over password management. In Part 3, we’ll focus on a new tool, dodscript.sh, to make configuring your VMware Hardened Virtual Appliances comply with enhanced security requirements like DISA and go over access control and time management. Dodscript.sh Read more...