Need Hardening Guide Interpretation

TheVMinator · ‎10-02-2015

In the hardening guide there is the following setting for VMs:

disable-disk-shrinking-wiper

The hardening guide says the following about this setting in its coluns:

"Is desired value the default value": NO

"Desired Value" : True

"Change Type" : Add

So in other words, out the box, there is no entry at all for this in the vmx file.

The hardening guide recommends that I create a new entry in the vmx file called

isolation.tools.diskWiper.disable=true

By default when new VMs are created, there is no entry at all in the vmx file for isolation.tools.diskWiper.disable - either true or false. When there is no entry at all, does the system behave as though the setting is true, or although the setting were false?

(I'm using the 5.5 version of the hardening guide on ESXi 5.5)

npadmani · ‎10-02-2015

disable-disk-shrinking-wiper

The hardening guide says the following about this setting in its coluns:

"Is desired value the default value": NO

"Desired Value" : True

"Change Type" : Add

hardening guide is asking us to set this value 'True' because that is desired value but it's not default. so without these entries (isolation.tools.diskWiper.disable=true & isolation.tools.diskShrink.disable=true) being made, they will be acting as if they were set to 'False'

Please refer following documentation for further clerifications

Ref: vSphere Documentation Center

Narendra Padmani VCIX6-DCV | VCIX7-CMA | VCI | TOGAF 9 Certified

All

Need Hardening Guide Interpretation