Most viewed posts

Browsing Posts published by Andrea Mauro

Meltdown and Spectre: far from the solution?

12 February 2018
Comments off
Reading Time: 8 minutes

In June 2017, a team constituted of independent researchers, university research labs, and some of Google’s Project Zero members and cyberus technology discovered two security vulnerabilities enabled by the widespread use of speculative execution in most of the CPU. The problem was also independently discovered by other researchers, at about the same time. These vulnerabilities, called Meltdown and Spectre, were made public in January 2018.

Meltdown and Spectre are critical vulnerabilities existing in several modern CPU: these hardware bugs allow programs to steal data which is currently processed on the computer. Meltdown and Spectre can affect personal computers, mobile devices, server and several cloud services.

continue reading…

Share
vSecurity

Using Linux Kernel 4.15 to minimize Meltdown and Spectre

9 February 2018
Comments off
Reading Time: 5 minutes

Linux Kernel 4.15 has been released on 28 Jan 2018 and, thanks to the entire Linux Kernel development team, this release contains the latest code to deal with Meltdown and Spectre issues and minize the related risks.

The Kernel is the core code in the operating system managing low level tasks. In the update both vulnerabilities are explicitly addressed.And the interesting aspect is that the performance are not so bad!

There are infact three instinct vulnerabilities identified, one Meltdown and two variations of Spectre (known as v1 and v2). Kernel 4.15 actually address only Meltdown and Spectre v2 issues.

continue reading…

Share
vSecurity ,

Rubrik acquires Datos IO

8 February 2018
Comments off
Reading Time: 3 minutes

Rubrik has announced that it has agreed to acquire Datos IO, a market leader in backup and recovery for NoSQL databases and big data file systems. Datos IO is the application-centric data management company for the multi-cloud world. Datos IO delivers a radically novel approach to data management, helping organizations embrace the cloud with confidence by delivering solutions that protect, mobilize, and monetize their data — at scale.

The acquisition of Datos IO will extend Rubrik’s reach into mission-critical cloud applications and databases increasingly adopted by application and DevOps teams at Fortune 500 companies.

continue reading…

Share
vProducts

Podcast about the vSphere Client HTML5

7 February 2018
Comments off
Reading Time: < 1 minute

The VMware Communities Roundtable is an informal talk with different (in each episode) VMware experts talking about virtualization. The podcast it’s live every Wednesday at noon CA time.

In the episode #421  I was invited to talk about the vSphere Client HTML5 and its limit, but also its pros.

The talk idea came from a post that I’ve wrote one month ago (Is the HTML5-based vSphere Client ready to replace the vSphere Web Client?) on the limitation of the new vSphere Client, but this was before the vSphere 6.7 and vSphere 6.5U2 releases.

continue reading…

Share
Uncategorized none

New Dell-EMC PowerEdge servers with AMD EPYC

7 February 2018
Comments off
Reading Time: 4 minutes

On May 2017, Dell EMC announced the next generation of PowerEdge servers: the new 14th generation, the first with the new Dell-EMC logo.

After less than 3 years from the introduction of Generation 13 of PowerEdge series, the newly designed 14th generation of the Dell EMC PowerEdge server portfolio forms a secure, scalable compute platform that is the ideal foundation for cloud, analytics or software-defined data center initiatives.

Of course, the new series was not complete with all models at the launch and has been shapen in the following months.

continue reading…

Share
DellTechnology none

Per VM license in Veeam products

6 February 2018
Comments off
Reading Time: 4 minutes

Veeam licenses software in a variety of ways depending on the specific product and/or use case you are interested in. This includes licensing by the number of CPU sockets on a managed server (or host), as well as by the number of VMs, physical servers, workstations, cloud instances and/or users being managed.

We can summarize the different options (not all are available, it also depends on the product):

continue reading…

Share
Veeam none

Using Runecast to check Meltdown and Spectre bug

5 February 2018
2 comments
Reading Time: 5 minutes

Meltdown and Spectre are critical vulnerabilities existing in several modern CPU: these hardware bugs allow programs to steal data which is currently processed on the computer. Meltdown and Spectre can affect personal computers, mobile devices, server and several cloud services.

There isn’t a single simple way to minimize those security risks, because you need to patch different levels of your stack. For a VMware environment, there are some tools to check your status (and also to help you to apply the right patches).

continue reading…

Share
vProducts, vSecurity
© 2024-2011 vInfrastructure Blog | Disclaimer & Copyright