I’m looking to implement a security solution that has options as far as security configuration management, IDS/IPS, report vulnerabilities on hosts and virtual machines, auditing... I’ve looked at Reflex and Catbird, I’m seeing a lot on HyTrust , which I’m also going to check out. Just curious what others are using and what your thoughts are?
Have you seen a recent whitepaper by Texiwill on how the different security tools fit together?
http://www.virtualizationpractice.com/blog/?p=3868#more-3868
HyTrust would help with enforcing controls over VMware commands and objects (access to servers, operations with virtual machines).
You would use a different tool for network security (even virtual network security) tasks such as vulnerability scanning or IDS/ IPS.
Hello,
The Whitepaper is being updated to include TrendMicro's and other products. I will post here when the update is available. The short statement is that there are many tools and just one will not satisfy all aspects of security. At least not yet.
Best regards,
Edward L. Haletky VMware Communities User Moderator, VMware vExpert 2009
Now Available: 'VMware vSphere(TM) and Virtual Infrastructure Security'[/url]
Also available 'VMWare ESX Server in the Enterprise'[/url]
Blogging: The Virtualization Practice[/url]|Blue Gears[/url]|TechTarget[/url]|Network World[/url]
Podcast: Virtualization Security Round Table Podcast[/url]|Twitter: Texiwll[/url]