Browsing Posts in vSecurity

Reading Time: 2 minutes After the release of VMware NSX-T v2.0 only three months ago, now VMware has released the new version: NSX-T v2.1, that will enable advanced networking and security across these emerging app architectures, just as it does for traditional 3-tier apps. More specifically, NSX-T 2.1 will serve as the networking and security platform for the recently announced VMware Pivotal Container Service (PKS), a Kubernetes solution jointly developed by VMware and Pivotal in collaboration with Google. NSX-T 2.1 will also introduce integration with the latest 2.0 release of Pivotal Cloud Foundry (PCF), serving as the networking and security engine behind PCF. In these environments, NSX-T will provide Layer […]

Reading Time: 3 minutes In response to issues identified by external researchers, Intel has performed an in-depth comprehensive security review of our Intel® Management Engine (ME), Intel® Server Platform Services (SPS), and Intel® Trusted Execution Engine (TXE) with the objective of enhancing firmware resilience. As a result on 20th Nov 2017, Intel has identified security vulnerabilities that could potentially place impacted platforms at risk. In response to issues identified by external researchers, Intel has performed an in-depth comprehensive security review of its Intel® Management Engine (ME), Intel® Trusted Execution Engine (TXE), and Intel® Server Platform Services (SPS) with the […]

Reading Time: 5 minutes Recent VMware security bug (VMSA-2017-0006) is related to one of the worst possible security issue in a virtualization environment: a possible “guest escape” vulnerability that allows arbitrary code execution on a host system from the guest system. It’s not the first time of a similar risk (see, for example, Microsoft Edge used to escape VMware Workstation at Pwn2Own 2017) but this kind of issue is a different risk level if it affect Worksation (so “just” a client environment) or a ESXi (potentially a datacenter environment).

Reading Time: 2 minutes As announced some months ago, the Dell Software division has been sold to Francisco Partners and Elliot Management. This division include Dell SonicWall (from the acquisition of more than 4 years ago), but also Quest (from another acquisition) and several other brands. Now it’s clear that SonicWall brand reborns as a stand-alone company: SonicWall announced the launch of independent operations that it’s good for a security company (better to be as independed as possible). Bill Conner is new President and CEO of this company. He hs spent bulk of his career in the cybersecurity industry, […]

Reading Time: 2 minutes As promised in the last VMworld, now VMware has introduced two new less-expensive versions of its NSX product targeted for the mid-enterprise. Also on NSX there are now different editions with different prices and, of course, features. The full version will be the Enterprise one (sigh… on vSphere Enterprise has gone, wasn’t better call it Enterprise Plus), the intermediate Advanced and the starter just Standard. No Essential or Essential Plus, but will be difficult and non sense (yet) apply this kind of technology to the small business.

Reading Time: 5 minutes One issue about VMware NSX it that it does not exist an evaluation or a trial code in order to study and test it. This because the code is still on a Nicira web site and is much more restricted compared to other VMware code. Also VMware partner may be not entitled to download it, unless they don’t have the NSX competency. Individual can got an access only through one of the NSX official course: I’ve take the ICM on NSX 6.0 and the access on Nicira web site was granted me at the end […]

Reading Time: 2 minutes As described in the  release notes, one of the new features of View5 is the certificate check from the View Client (similar as the certificate check of the vSphere Client): Updated client certificate checking for View clients – View clients now follow the well-known browser model for handling certificates, displaying errors detected in the certificate presented by View Connection Server, or in the certificate trust chain. Administrators can set the Certificate verification mode group policy to enforce strict certificate checking; if any certificate error occurs, the user cannot connect to View Connection Server. Alternatively, administrators […]

Reading Time: < 1 minute In vSphere 5, for the first time, ESXi has now an integrated firewall. In this way another feature gap between ESXi and ESX has been filled. But this firewall is quite new and different compared to the one from ESX, although the management (at the GUI mode) remain similar of the old one. For more info see: http://vinfrastructure.it/vdesign/esxi-5-firewall/

© 2022-2011 vInfrastructure Blog | Disclaimer & Copyright