VMware Is More Secure Than Hyper-V … And A Leprechaun Marries A Martian

In case you have been hiding under an IT rock, the world of the Internet has been rocked by a vulnerability found in the widely used OpenSSL. MVP Troy Hunt has a good description of the vulnerability here.

The list of known vulnerable sites is a who’s who of the Internet. Interestingly, servers that run on Windows Server and use the native SSL features of IIS are not affected. Note that Windows Server and System Center use native IIS functionality. Microsoft has also confirmed that Azure is also not susceptible to this attack.

Hmmm, who else is out there that might be vulnerable? Who do many claim is more secure, but really they’ve been found lacking? Who had a breakout attack (maybe more than one)? Who had a weakness in the design of their virtual storage that allows a guest OS admin to read files (passwords) from the host? Which other virtualization company is susceptible to Heartbleed?

Hmm, would it be …

VMware?

Yup, if you have a recent product from VMware then your virtualization or cloud is vulnerable to attack. Got a public cloud based on vSphere? You are probably vulnerable.

The lesson here is simple: Building alleged enterprise-class software where no-one is responsible for trustworthy computing reviews is negligent. Who reviewed that code?

Now tell me that Microsoft makes insecure software … penguin lovers! Stick your hands up so we can send the men with nets after you conspiracy theorists or your bosses can identify the weak links in their IT departments.

Technorati Tags: ,

My Sophos Evaluation – Or Not!

I know lots of people who rave about Sophos Anti-Virus.  I decided to give it a go in my lab.  Both of the servers are firewalled and hardened.  Nothing crazy, just some standard stuff which I won’t go into here.  Anyway, I filled in the evaluation form and downloaded the package.  I started the install and was greeted by about a dozen crash/debug requests.  Installing the package causes the package to crash!  Okey-dokey then.  I won’t be installing that on our server deployment.

Kaspersky for Business Anti-Virus

I just did a quick evaluation of Kaspersky’s Anti Virus for Business suite.  Based on "bang for the buck" I don’t think it’s up there with AVG.  It’s got a bit of the "Sinmantec" about it’s interface.  It doesn’t seem well thought out.  The agent deployment is a 2 phase process.  There’s a network agent that must be installed and then you install the anti-virus software.

The price is pretty good though, especially compared to Trend Micro!  And Kaspersky’s engine does tend to rate very highly on the charts.

I like that it has a dedicated Windows Event log.  That’ll make monitoring using something like SCOM a heck of a lot easier.  However, when I dropped Eicar onto my test agent I was disappointed by the results.  It prevented IE from saving the file which was good.  It sent details to the central administration server.  But there was no event recording this occurrence in either the Kaspersky or the Windows Event Logs.