Comments on: Viridian - Better Late than… Early? http://itknowledgeexchange.techtarget.com/server-virtualization/viridian-better-late-than-early/ A SearchServerVirtualization.com blog Fri, 27 Nov 2009 18:24:45 +0000 http://wordpress.org/?v=2.6.2 By: Enno Rey http://itknowledgeexchange.techtarget.com/server-virtualization/viridian-better-late-than-early/#comment-1100 Enno Rey Sat, 21 Apr 2007 10:32:59 +0000 http://servervirtualization.blogs.techtarget.com/2007/04/12/viridian-better-late-than-early/#comment-1100 Greg, > VMware has been thinking about security for some time. hmm... ah, really? that's why they ship ESX-Server 2.54 with users "games" and "gopher" in /etc/passwd, with SSLCiphers like "ALL:!ADH:!EXP56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL", lots of unnecessary packages and, last but not least, reproducible segfaults in the console sw (which I will not comment on further here, due to our disclosure policy)? c'mon... you must be kidding. Their products were focused on functionality (and they really succeed here from a technical and market share standpoint), but they haven't cared about security for quite a long time. Maybe now as the market demands for it... [and, yes, I know your product ;-)] thanks, Enno Greg,

> VMware has been thinking about security for some time.

hmm… ah, really? that’s why they ship ESX-Server 2.54 with users “games” and “gopher” in /etc/passwd, with SSLCiphers like “ALL:!ADH:!EXP56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL”, lots of unnecessary packages and, last but not least, reproducible segfaults in the console sw (which I will not comment on further here, due to our disclosure policy)?
c’mon… you must be kidding. Their products were focused on functionality (and they really succeed here from a technical and market share standpoint), but they haven’t cared about security for quite a long time. Maybe now as the market demands for it…
[and, yes, I know your product ;-)]

thanks,

Enno

]]> By: Greg http://itknowledgeexchange.techtarget.com/server-virtualization/viridian-better-late-than-early/#comment-1099 Greg Mon, 16 Apr 2007 15:46:06 +0000 http://servervirtualization.blogs.techtarget.com/2007/04/12/viridian-better-late-than-early/#comment-1099 VMware leads in market share but also appears to have taken the lead in thinking about the security impacts of virtualization in production environments. It's one thing to ship... another to deliver production-ready security. VMware has been thinking about security for some time (when it comes to virtualization). Has anyone seen MSFT comment of virtualization and its unique security requirements or address the new challenges via partner ecosystem? Sincerely, Greg Greg Ness Blue Lane Technologies VMware leads in market share but also appears to have taken the lead in thinking about the security impacts of virtualization in production environments. It’s one thing to ship… another to deliver production-ready security. VMware has been thinking about security for some time (when it comes to virtualization). Has anyone seen MSFT comment of virtualization and its unique security requirements or address the new challenges via partner ecosystem?

Sincerely,
Greg

Greg Ness
Blue Lane Technologies

]]>