Barney's Blog

Blog archive

Virtually Insecure

Gartner is warning IT that virtual servers are simply not as secure as physical servers. Thank you, Captain Obvious! Of course a bunch of VMs on a single server are not as easily protected as a single instance. Once you crack one VM, or break into the hypervisor, it's easier to crack the rest. This is Computer Science 101.

That's why it so important to protect each VM to the hilt.

Gartner, being smarter than me (or so they tell me), takes a different tack. The whole problem is that IT doesn't take security seriously when deploying VMs. That view is condescending but probably true.

Gartner's advice? Protect the hypervisor at all costs, involve the security team (if you have one) in VM planning and don't give all VMs the same access controls.

So why am I so dismissive of Gartner? Like me, they are pretentious, but unlike me, they never ever make fun of themselves. A loveable jerk they're not! And unlike Gartner, I try to admit all my mistakes especially as you all keep me honest.

In all fairness, the Gartner author here, Neil MacDonald, seems like a pretty bright guy. He probably is smarter than me!

For more information, Gartner is more than happy to sell you a $95 report.

Which research company do you trust and which do you despise? Crunch the numbers and send your results to dbarney@redmondmag.com.

Posted by Doug Barney on 03/17/2010 at 1:23 PM


Featured

  • Azure Active Directory ID Protection 'Refresh' Now Available

    Microsoft's enhancements to the Azure Active Directory Identity Protection service are now said to be "generally available" (GA), or ready for commercial use, per a Wednesday announcement.

  • Microsoft Releases Windows 10 Version 1909

    Microsoft on Tuesday announced the release of Windows 10 version 1909, a new operating system product that's also known as the "Windows 10 November 2019 Update."

  • November Microsoft Security Bundle Addresses 75 Vulnerabilities

    Of that number, 13 vulnerabilities are rated "Critical" to patch, while 62 vulnerabilities are deemed "Important."

  • The Future of Office 365 Pricing

    With a raft of new Office 365 features in the pipeline, Microsoft also seems ready to change the way it bills its subscribers. Will it replicate Azure's pay-per-use model, or will it look like something else entirely?

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.