VMware

Gabriel Maciel's Blog

VMware and Microsoft Virtualization - Open Source Technologies - IT Management and Security

5 Posts tagged with the workstation tag
0

It seems that the latest beta update of Workstation 6.5 is now available for download!

Also, this release no longer forces the debug-code and it will expire at the end of October (so the final bits are for sure almost ready).



Posted by Gabriel Maciel

0 Comments Permalink Tags: virtualization, vmware, workstation, virtual
1

I posted before how important I consider it is to use VMware Workstation as a learning platform for the VI environment and I am now very pleased to see that Xtravirt has updated its document explaining how to install VMware ESX 3.5 on Workstation 6.5 Beta. Here is the announcement:


"In 2007, like others in the global VMware community, Xtravirt developed a common methodology to install and run VMware ESX 3.x on VMware Workstation 6 together with a shared storage solution based upon an iSCSI software target. We called it ‘VI3 in a box’.


This allowed users and professionals in the IT community to create simple and cost effective VI3 infrastructures to test, learn about and demonstrate these environments.


Upon the release of VMware ESX 3.5 we found that this methodology did not continue to hold true. Although still possible to install ESX 3.5, when attempting to start a nested Virtual Machine on the ESX VM, the ESX VM panics, and a stop message appears.


However, with the release of VMware Workstation 6.5, build release 99530, a revised solution now exists.


This white paper documents the process to install and configure ‘VI3.5 in a box’."


You can access the updated document here.


Posted by Gabriel Maciel

1 Comments Permalink Tags: virtual, virtualization, vmware, workstation, vi, vi3, 3i, esx, esxi
0

This is kind of new (6.5 beta build 91182), so I wanted to write about how important it will be for any IT professional / enthusiast to have the ability to run ESX 3.5 / ESX 3i in VMware Workstation 6.5 when the final release is ready.

You see, this will not only be good because it could potentially give you the chance to test patches or scripts, but also because it allows you to "learn" about the environment without having to spend a lot of money.

We all know that VMware's licensing is not cheap, nor is the hardware to run the VI3 environment, and that is why I believe VMware should always try to "facilitate" the usage and testing of all its products without having to purchase expensive equipment.

Consequently, having now and in the future the chance to run ESX 3.5 / ESX 3i in VMware Workstation 6.5 is a very welcomed opportunity to experience one of the best virtualization products we have seen so far!

More information and print screens here and here.

Posted by Gabriel Maciel

0 Comments Permalink Tags: 3i, infrastructure, it, technologies, vi, vi3, virtual, virtualization, vmware, esxi, workstation
0

There is a new web interface for the Patch and Update Releases for VMware that simplifies the selection and download of the patches. So far, it applies to the following products: ESX Server 2.0.2 to 3.5, ESX Server 3i and Virtual Center.

This is the link to the new page!

Posted by Gabriel Maciel

0 Comments Permalink Tags: virtualization, vmware, infrastructure, security, workstation, esx, 3i, virtual, center
0

New VMware Releases

Posted by Gabriel Macie… Mar 18, 2008

VMware Server Version 1.0.5 (free) / http://www.vmware.com/download/server

  • A security vulnerability in OpenSSL 0.9.7j could make it possible to forge a RSA key signature. VMware Server 1.0.5 upgrades OpenSSL to version 0.9.7l to avoid this vulnerability.
  • An internal security audit determined that a malicious user could attain and exploit LocalSystem privileges by causing the authd process to connect to a named pipe that is opened and controlled by the
  • malicious user. In this situation, the malicious user could successfully impersonate authd and attain privileges under which authd is executing.
  • An internal security audit determined that a malicious user could exploit an insecurely created named pipe object to escalate priviliges or create a denial-of-service attack.
  • This release updates the libpng library to version 1.2.22 to remove various security vulnerabilities.
  • A vulnerability in VMware Workstation running on Windows allowed complete access to the host's file system from a guest machine. This access included the ability to create and modify executable files in
    sensitive locations.
  • The authd process read and honored the vmx.fullpath variable in the user-writable file config.ini, creating a security vulnerability.
  • The config.ini file could be modified by non-administrator to change the VMX launch path. This created a vulnerability that could be exploited to escalate a user's privileges.

VMware Workstation 6.0.3 / http://www.vmware.com/download/ws

  • On Windows hosts, if you have configured and enabled a shared folder, it is possible for an attacker to write arbitrary content from a guest system to arbitrary locations on the host system.
  • An internal security audit determined that a malicious user could attain and exploit LocalSystem privileges by causing the authd process to connect to a named pipe that is opened and controlled by the malicious user. In this situation, the malicious user could successfully impersonate authd and attain privileges under which Authd is executing.
  • This release updates the libpng library to version 1.2.22 to remove various security vulnerabilities.
  • This release updates the OpenSSL library to address various vulnerabilities to denial-of-service attacks and buffer overflows.
  • Workstation 6.0.2 allowed anonymous console access to the guest by means of the VIX API. This release, Workstation 6.0.3, disables this feature. This means that the Eclipse Integrated Virtual Debugger and the Visual Studio Integrated Virtual Debugger will now prompt for user account credentials to access a guest.

VMware Player 2.0.3 (free) / http://www.vmware.com/download/player/

  • On Windows hosts, if you have configured and enabled a shared folder, it is possible for an attacker to write arbitrary content from a guest system to arbitrary locations on the host system.
  • Ubuntu 7.04 virtual machines sometimes power off unexpectedly if paravirtual kernel support is enabled.

VMware ACE 2.0.3 / http://www.vmware.com/download/ace/


Also, you can find VMware Server 2.0 Beta (free) here:


Posted by Gabriel Maciel

0 Comments Permalink Tags: vmware, server, player, workstation, virtualization

Gabriel Maciel Ottawa
Click to view Gabriel Maciel Ottawa's profile Member since: Mar 11, 2008

VMware and Microsoft Virtualization - Open Source Technologies - IT Management and Security

View Gabriel Maciel Ottawa's profile

Communities