VMware is thinking about emitting security patches on a fixed schedule, instead of its current just-in-time regime. The virtualisation giant revealed its thinking in a post for VMware user group members, 1,700 of whom it surveyed for their thoughts on the company's security practices. The results found “an almost even split …
Wood, meet the trees.
A representative of anti-virus vendor AVG recently opined to Vulture South that this incident is likely a precursor to a wave of attacks directed at hypervisors. The spokesperson had no evidence for that assumption, but ....
Well, it would be idiotic to present evidence against yourself, AVG, wouldn't it .... and self-defeating too.
And quite plausibly deniable too, would all evidence in that opinion be, but .... well, you can fool some of the people all of the time, and all of the people some of the time, but you can not fool all of the people all of the time, AVG, or if you prefer, you can fool all the people some of the time, and some of the people all the time, but you cannot fool all the people all the time.
Wave of Attacks
The spokesperson had no evidence for that assumption...
It seems likely that there will be an increase, is for no other reason than that there have been so few up to now. More to the point, as VM usage increases, so does the drive to attack VMs. As soon as there are enough fish in that pool, someone will start fishing.
Well. Ive told IT guys for years that Virtual is not the way to go.
-More updating that running just the OS on a PC.
-More security holes to worry about than just the OS on a PC.
-It doesnt really save power. When you are running 3 VM's on one pc. That power supply is running at full capacity 24/7 to keep those 3 systems running optimally in a VM. (todays power supplies are variable and only use whats needed)
-massive compatibility issues around every turn. (network latency, installation, multiple firewalls and configs, processor latency, ram latency, need I go on?)
-less hardware in the building. Thats it.
Re: VMware lol