1 Reply Latest reply on Oct 2, 2015 7:49 PM by npadmani

    Need Hardening Guide Interpretation

    TheVMinator Master

      In the hardening guide there is the following setting for VMs:

       

      disable-disk-shrinking-wiper

       

      The hardening guide says the following about this setting in its coluns:

       

      "Is desired value the default value": NO

      "Desired Value" : True

      "Change Type" : Add

       

      So in other words, out the box, there is no entry at all for this in the vmx file.

      The hardening guide recommends that I create a new entry in the vmx file called


      isolation.tools.diskWiper.disable=true


      By default when new VMs are created, there is no entry at all in the vmx file for isolation.tools.diskWiper.disable - either true or false.  When there is no entry at all, does the system behave as though the setting is true, or although the setting were false?


      (I'm using the 5.5 version of the hardening guide on ESXi 5.5)



        • 1. Re: Need Hardening Guide Interpretation
          npadmani Master
          vExpertVMware Employees

          disable-disk-shrinking-wiper

           

          The hardening guide says the following about this setting in its coluns:

           

          "Is desired value the default value": NO

          "Desired Value" : True

          "Change Type" : Add

          hardening guide is asking us to set this value 'True' because that is desired value but it's not default. so without these entries (isolation.tools.diskWiper.disable=true & isolation.tools.diskShrink.disable=true) being made, they will be acting as if they were set to 'False'

           

          Please refer following documentation for further clerifications

          Ref: vSphere Documentation Center

          1 person found this helpful