Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Virtualization and Security ?

From: Joel Rosenblatt <joel () COLUMBIA EDU>
Date: Tue, 11 Nov 2008 12:48:04 -0500
Because they didn't have access to the EMX console - they were admins for the underlying OS only, not the 
virtualization.

This is what happens when you have too many specialists :-)

Joel

--On Tuesday, November 11, 2008 10:34 AM -0700 Eric Case <ecase () email arizona edu> wrote:


At 09:40 AM 11/11/2008 -0500, Joel Rosenblatt wrote:

One thing that we ran into was that the administrator of the hosting
system should be able to shut down each virtual machine separately -
we had one virtual machine compromised over a weekend and the only
person available was the admin of the host - so, the whole system
was shut down until we could dig up the admin of the bad virtual host.


      Why didn't you suspend the compromised machine?
-Eric


Eric Case, CISSP  <ecase () Arizona edu>
Information Technology Services Coordinator
Information Security Officer
College of Engineering   <http://www.Engr.Arizona.edu>
1127 E James E. Rogers Way Room 200
Tucson, AZ 85721-0020
Mobile Phone 520-275-6436






Joel Rosenblatt, Manager Network & Computer Security
Columbia Information Security Office (CISO)
Columbia University, 612 W 115th Street, NY, NY 10025 / 212 854 3033
http://www.columbia.edu/~joel
Previous By Date Next
Previous By Thread Next

Current thread: