Sort of, it seems:

Today, RSA integrates with VMware in an couple of what I would call "useful but not earth-shattering" points – you can integrate envision authentication with Virtual Center and it also integrates with VDM 2.1 and VMware View Manager for hardened authentication.

 

But, with VMware as mission-critical as it is, security focus is getting strong.    At our recent Quarterly Technology Review, there were LOTS of really cool ideas where to go next, and ideas I would consider earth-shattering, but are so fuzzy at this point, there’s no point in going on about it.   Let us do some more work, and then I’ll talk about it again.

This is from VirtualGeek, full post here.

Found this in VMware’s KB 1005278

[root@esx root]# adduser -u 0 -o -g 0 -G 0,1,2,3,4,6,10 root2
[root@esx root]# passwd root2
Changing password for user root2.
New UNIX password:
Retype new UNIX password:
passwd: all authentication tokens updated successfully.

After spending some time in the adduser man page, I found that while long, that command makes sense. Here’s what it does:

“-u 0” – Sets uid (user ID) 0, or root’s user ID

“-o” – Tells the system to allow a non-unique user ID

“-g 0” – Sets the initial group to 0 (root)

finally “-G 0,1,2,3,4,6,10” sets the additional groups, you can “cat /etc/group-“ to see what all of those are.

The Hacker 2 Hacker Conference Brazil this year featured a paper called “Hypervisor Framework”. An interesting read for those more interested in the nitty gritty of how all this “Virtualization” stuff works

So Tarry Singh posted today on the VMware security advisiories. While that’s been covered here, and elsewhere, I did find a few of his points interesting:

Ask yourself the following:

* Do you know that such malicious attacks are not taking place in your environment?
* Do you know if there is some sort of control in your environments?
* How many of you have successfully deployed a CCP that makes your ESX compliant or at least anywhere close to being SOX/PCI DSS 1.x standards? You must be able to control, authorize and demonstrate on your sense of control on these environments, can you do it?
* Are you doing any sort of assessments in your environments, especially Virtual Infrastructures be it Oracle VM, VMware ESX, Citrix Xen, Xen or whatever?
* Are some or any of your virtual platforms registered within your centralized directory, any LDAP v3 variants such as ADS etc?

Can you answer these for your environment? Just because it’s virtual doesn’t mean you should forget about security.

One of these is archived, the other scheduled to go off on Dec. 16th.  Both require registration, and are worthwhile, despite the obligatory sales pitches.

http://research.pcpro.co.uk/detail/RES/1224768378_490.html
This one has already happened, and is available on demand.

http://www.netiq.com/events/display.asp?cid=20081114152024NVKN&src=smm
This is the Dec16th event.

I just thought you all should be aware of this KB Article at Symantec’s site:

Question/Issue:
Is VMware VMotion ESX server supported with Symantec AntiVirus and Symantec Endpoint Protection?

Solution:
Symantec considers running Symantec AntiVirus Clients and Symantec Endpoint Protection Clients in VMware environments running Vmotion a supported configuration.

At this time running the Symantec Endpoint Manager (SEPM) is considered an alternative configuration and will be handled with “Best Effort Support”

Seems one has to be careful when using Endpoint Manager, but you should otherwise be fine.

Technorati : ESX, Support, Symantec, VMware
Del.icio.us : ESX, Support, Symantec, VMware
Zooomr : ESX, Support, Symantec, VMware
Flickr : ESX, Support, Symantec, VMware

Today, at some ungodly hour of the morning, VMware updated two security announcements:

VMSA-2008-0017.1 – Was updated to change some CVE numbers

VMSA-2008-0016.2 – Was updated to include information about update 3

As last time you can get all security advisories from VMware’s site: http://www.vmware.com/security/advisories/

Technorati : ESX, ESXi, Security, VMware, VMware Security

Del.icio.us : ESX, ESXi, Security, VMware, VMware Security

Zooomr : ESX, ESXi, Security, VMware, VMware Security

Flickr : ESX, ESXi, Security, VMware, VMware Security