The Daily Tip
by ITworld tips
RSS

Recent blog posts

5 often-overlooked security settings for iPhone and iPad

While the popularity of Apple's iOS devices increases, many don't understand the basic security features that Apple makes …
The Tao of Steve: 5 leadership lessons from Steve Jobs

In his own words: Steve Jobs on hiring, motivating employees, and the pursuit of excellence.
3 security acronyms to avoid (and 3 to embrace)

Today's security trends are the usual acronym soup. Here are 3 you'd do well to avoid and 3 worth your attention.
Why you should sweat the small stuff

Small wins at regular intervals will keep your team motiviated.
Software code audit: Know what's in your software

If you’re planning a specific transaction involving software assets, whether it’s an M&A, equity investment, product introduction, …
Project management: Learning from experience

As more and more organizations turn to project management best practices to increase efficiency and productivity in the workplace, …
Injecting shellcode into processes with Syringe

One feature that I believe would greatly complement ShellCodeExec is the ability to inject the shellcode into a process ID of the user’s …
4 tips for a happier project team

Lessons on work-life balance from the Millennial generation.
8 innovation lessons you won't learn from Steve Jobs
10 essential tips for using your new iPad 2

Securing your virtual environment

By ITworld tips Add a new comment

October 09, 2009, 8:30 AM — by Brent Huston - Safeguarding your virtual server environment is vital, even though it doesn't have the same issues as a physical environment. Here are a few tips to keep things running smoothly:

Install only what you need on the host machine. Keep your OS and applications current for both virtual and host machines.
Isolate each virtual machine you have by installing a firewall. Only allow approved protocols to be deployed.
Ensure that antivirus programs are installed on the virtual machines and kept current with updates. Virtual machines, like physical machines are at risk for viruses and worms.
Utilize strong encryption between the host and virtual machines.
Avoid internet surfing from the host computer. Spyware and malware could easily infiltrate through the the host computer and spread to the virtual machines.
Prevent unauthorized access by securing accounts on the host machine.
Only use what you need. If you're not utilizing a virtual machine, shut it down.
If a virtual machine does not need to connect with each other, isolate it. Use a separate network card on a different network range.
Monitor the event log and security events on both the host machine and on the virtual machine. These logs need to be stored in your log vault for security and for auditing purposes at a later date.
Ensure that any hardware you use is designed for VM usage.
Strictly manage remote access to virtual machines and especially to the host machine, this will make exposure less likely.
Remember, the host machine represents a single point of failure. Technologies like replication and continuity help with reducing this risk.
Avoid sharing IP addresses. Again this is typical of sharing a resource and will attract problems and vulnerabilities.

Using these tips will help you make the most of your physical and virtual environments so if anything interrupts your business, you are prepared.

-- Brent Huston is CEO and Security Evangelist for Microsolved, Inc.

_______________

Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.

Quick, practical advice for IT pros. Tips, shortcuts, how-tos, and advice to help IT pros of all stripes work smarter and more efficiently. The Tip may be as simple as a time-saver that helps streamline a common task, a quick start on a hot technology, or part of a longer series of advice that focuses on a specific problem such as how to install a wireless network, troubleshooting Windows, BlackBerry support, or even favorite social networking techniques.

View Profile

iPhone 5 growing up, but not out, this fall

10 comments
Java creator unhappy with Oracle trial outcome

5 comments
Easy fixes using perl

2 comments
Does this mean someday we'll be able to store digital porn in our DNA?

2 comments
MIT scientists solve the Ketchup Bottle Dilemma

2 comments

Older
|
Newer

ITworld LIVE

The White Paper PBX Buyer's Guide was viewed
The White Paper Get a Robust, Flexible Foundation for Enterprise Cloud Deployments was viewed
The White Paper Why AppSense for VDI: How User Virtualization performs and adds value was viewed
dlgmex@gmail.com has just joined ITworld
The White Paper Box Private Vendor Watchlist Profile: Cloud-Based Content Collaboration Services Enabling Enterprises to Move Toward Next-Generation Collaboration was viewed
The White Paper Start Small, Grow Tall: Why Cloud Now was viewed
The Webcast Oracle Database Appliance - Simplifying your High Availability Database was viewed
The White Paper Expert Guide to Secure Your Active Directory was viewed
The White Paper How much security do you really need? was viewed
The White Paper HP NonStop SQL Fundamentals whitepaper was viewed
The White Paper Converged Infrastructure for Dummies was viewed
The White Paper CIO Challenges: The Best Defense is a Good Offense was viewed
The Webcast Oracle Database Appliance-Engineered for Simplicity was viewed
The White Paper Turning Financial Mainframe Applications into SOA Building Blocks was viewed
The White Paper Measuring the Business Value of CI in the Data Center was viewed
The White Paper Accelerate Windows 7 migrations, maximize App-V deployment and de-risk virtual desktop adoption was viewed
The White Paper Why performance management? A guide for the midsize organization was viewed
The White Paper Accelerate Virtualized Results: HP VirtualSystem VS1 for VMware was viewed
The Webcast Virtualization 101: Launching into Cloud Computing for SMBs was viewed
The White Paper Protecting Against Database Attacks and Insider Threats: Top 5 Scenarios was viewed
The White Paper Real Fabrics for a Virtual World was viewed
The White Paper Defining Best Practices for IT Security In a Cloudy World was viewed
The White Paper SMB's and the Consumerization of IT was viewed
The White Paper Microsoft Enterprise Agreement Program Brief was viewed
The White Paper Taking a Bite Out of Network Performance Problems was viewed
The White Paper Expert Tips for Consolidating Servers & Avoiding Sprawl was viewed
The White Paper Sustainable Compliance for the Payment Card Industry Data Security Standard was viewed
The White Paper The Cloud: Reinventing Enterprise Collaboration was viewed
The White Paper Expert Guide to Secure Your Active Directory was viewed
The White Paper Finding the right cloud solutions for your organization was viewed

SecurityWhite Papers & Webcasts

Webcast On Demand

Seven Deadly Sins of Cloud Security (Video)

As cloud computing gains popularity, too few people are aware of the security threats that are emerging. In this short video, experts from HP discuss the latest cloud security threats and explain measures to help overcome them. Hear about the seven deadly sins of cloud security and learn how to avoid becoming a victim of poor security in your cloud environment.Intel and the Intel logo are trademarks of Intel Corporation in the U.S. and/or other countries.

White Paper

Establishing a Strategy for Database Security is No Longer Optional

The options for securing increasingly valuable databases are very broad and deep, and can be confusing. This research provides an overview of three categories of controls that should be implemented to ensure that enterprise data is protected in the most efficient and effective manner.

White Paper