DaemonForums  

Go Back   DaemonForums > Miscellaneous > General software and network

General software and network General OS-independent software and network questions, X11, MTA, routing, etc.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 5th February 2010
J65nko J65nko is online now
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,116
Thanked 182 Times in 149 Posts
Default Virtualization security

From a course overview for for "Certified Virtualization Security Expert" of the http://www.lancelotinstitute.com

Quote:
" How hackers enter our virtual environment"

> Potential threats of virtualization in- depth;
> How hackers use these vulnerabilities;
> Secure virtual data centers from the ground up.

Did you know.....?

> "An attacker can redirect, then copy or even change information before it arrives at the destination!"

> “Any regular user inside your network can take full control of your ESX hosts if they know the right exploits”.

> “By taking control of your virtual environment a hacker could disable ALL your VMs at one time"
They, of course have to sell their course, but at least it mentions the potential dangers.
Something that the majority of the "virtualization junkies" not even seem to know or are just ignoring
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #2   (View Single Post)  
Old 7th February 2010
ohauer ohauer is offline
Port Guard
 
Join Date: May 2008
Location: germany
Posts: 32
Thanked 2 Times in 2 Posts
Default

Quote:
Something that the majority of the "virtualization junkies" not even seem to know or are just ignoring
Yes, if you have a VirtualCenter under control (which runs on M$ and mostly with M$SQL) it needs only a view commands.
In a datacenter there is even more what is from interest, think about ILO's and other tools to control Servers. Once installed and get them working they are mostly no longer on the patch list.
Reply With Quote
  #3   (View Single Post)  
Old 16th February 2010
ai-danno's Avatar
ai-danno ai-danno is offline
Spam Deminer
 
Join Date: May 2008
Location: Boca Raton, Florida
Posts: 284
Thanked 35 Times in 31 Posts
Default

I think one of the biggest risks (that seems to be hinted at in the sales pitch) is that if one gained control of the network that runs the virtualization servers, "a hacker could disable ALL your VMs at one time" and a whole lot more (like mirror traffic to another location and parse it for goodies) without ever being discovered. Then again, this is true of any network host device, virtual or real.
__________________
Network Firefighter
Reply With Quote
Reply

Tags
virtualization security, vmware

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Virtualization Software ninjatux FreeBSD Ports and Packages 4 8th January 2009 08:49 PM
Virtualization Software ninjatux General software and network 52 22nd August 2008 04:18 PM
Server virtualization satimis Off-Topic 27 22nd June 2008 06:57 PM


All times are GMT. The time now is 08:50 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick