vShield Endpoint with vSphere 6.0

I've heard some questions regarding vShield Endpoint being supported with vSphere 6.0.  Some of the confusion has come from various announcements of End of Availability and End of Support for vCloud Networking and Security.  Before I answer the question of using vShield Endpoint with vSphere 6.0, let's first look at the history of the vShield product line to see where the confusion may come from.  There has been many changes due to the rapid pace of innovation and developments in virtual networking and security: May 2009: vShield Zones 1.0 released, providing an application-aware … [Read more...]

How To Remove Superfish Adware from Lenovo Laptops

I started seeing reports of adware/malware being installed on Lenovo laptops yesterday.  The story is picking up steam today (Wired covered it here), and that's a good thing because this little bit of adware poses some significant risks.  The program causing the problem, Visual Discovery, was pre-installed by Lenovo on some laptop models since August 2014.  Visual Discovery causes pop-up ads and inserts ads in web pages that directs traffic to suspicious or even harmful 3rd party websites.  The ads it serves are craftily injected into Google search results and other pages that you expect to be … [Read more...]

VMware Workstation 8.0.3 Released – Security Update

VMware released an update to VMware Workstation 8.0.3 Build 703057 yesterday (May 3, 2012).  The update is a security update addresses two vulnerabilities that would allow out-of-bounds memory writes on floppy and SCSI devices under certain conditions.  The vulnerabilities may allow specially crafted attacks to crash the VMX process (i.e. crash the running VM) or theoretically execute commands on the host.  The VMware Workstation 8.0.3 release notes can be found here: https://www.vmware.com/support/ws80/doc/releasenotes_workstation_803.html. VMware's security advisories for these … [Read more...]

Virtualization Bookmarks for August 28th

Here are some bookmarks for resources that I have recently referenced: vCenter 4 and ESX 4 Now Use 10 Year Default SSL Certificate | VM /ETC - Rich Brambly has some guidance on installing a new SSL certificate on vCenter, with very useful links in his post to official VMware documentation and KB's on the subject. VMware vSphere Client on Microsoft Windows 7! | Virtual Lifestyle - Heiko Verlande has found a way to run the VMware vSphere Client on Windows 7. Virtu-Al » PowerCLI: Daily Report V2 - Version two of a handy PowerShell based VMware Environment Daily Report from VMware vExpert … [Read more...]

Securing Your Virtual Infrastructure

Between budget cuts and New Year's resolutions, improving your security posture is probably near the top of your to-do list.  Much has been made of security concerns in a virtual environment, but it is always good to re-visit your configurations and make sure they are still on par with recommended best practices.  I began re-reviewing VI security best practices after reading at post by Bob Plankers at The Lone SysAdmin (Bob has been on my reading list for years - he has a great style and always brings fresh insights) on why you would want a second super-user account on your ESX servers. We … [Read more...]