Home | hacker invade | crack analyzes | hacker course | Exploit | encryption decipher | network management | System crack | the virus to be related | invades the examination | firewall
You are here: hacking technology > network management > Content
Hot Articles
SQL pours into the new t
Prevents the hacker to i
The Windows 2003 termina
The share network manage
The discovery discovers
Under the Windows safe m
The expert analyzes ten
Safeguard system clean n
Graphic solution IE8 man
Why can't hundreds of th
Explains in detail virtu
To hoodlum software and
Solves FALSH play and th
Establishes a hypothesiz
The new military recruit
Recommend Articles
The expert analyzes ten
Safeguard system clean n
Graphic solution IE8 man
SQL pours into the new t
Why can't hundreds of th
Prevents the hacker to i
Teaches you to close the
The share network manage
Chats in local area netw
About the network connec
Let the network transmis
Explains in detail virtu
To hoodlum software and
Careful system initiatio
The common wooden horse
New Articles
The hypothesized server
The use mirror image res
Sickness kills by poison
Teaches you to solve the
Hacker Web attack ten bi
Reduces the server the p
How teaches you to fix t
Reduces the server to ov
Teaches you to eliminate
Guaranteed that Linux gu
How teaches you to guara
Prevents the website to
Windows safe mode five i
Teaches you to withdraw
Helps you to protect the
The hypothesized server not always so is safe
  Add date: 10/10/2008   Publishing date: 10/10/2008   Hits: 1
Total 2 pages, Current page:1, Jump to page:
 
Now some IT manager has the multi-channel network connections system to place the demilitarized zone (DMZ) inside. How does the key is protect.
 Outside has many IT managers to think: So long as had deployed the hypothesized server, the virtual machine can be absolutely safe, may be far away from many security cracks and the malicious attack. But such virtualization security expert believed according to Edward L. the Haletky, the IT administrative personnels will discover surprisedly: In order to protect the hypothesized foundation construction, they pay actually must be much bigger diligently.
 
 Haletky organized the AstroArch Consultant firm, at present also in a composition related virtualization security book. He said: “at present and the virtualization related biggest security problem is, many people did not know that they are making anything. The virtualization manager is not the security manager. They impossible are the security managers, because has too many things to need to study. The virtualization manager saves manager, they must understand this point.”
 
 Although the virtualization technology is not inborn easy to come under the attack, but virtualization manager and security manager in accepts between the safe education aspect has the huge difference, this causes the deployment the hypothesized server to be unsafe frequently. The outside majority virtualization security expert (the present such expert are very few for number) suggested that the virtualization manager should better accept the safe education, tries for the virtual machine implementation appropriate strategy and the audit measure, and guaranteed that on virtual machine's function and the content divide each other isolation in the operating environment.
 
 Isolates the virtual machine
 
 According to Haletky declared that the virtualization manager needs to worry these four kind of networks: Management network, memory network, virtual machine network as well as VMotion network. He indicated that if the virtualization manager does not isolate these networks, has the possibility to present some biggest security crack.
 
 He said: “some managers possess these four kind of networks to place the demilitarized zone (DMZ) inside - DMZ are completely refer to the company network the exposed part, inside possibly includes Web and other network server, but in fact only then one kind of network needs to place inside DMZ.”Haletky indicated that had some explicit rules to indicate which the IT personnel could carry on inside DMZ to operate a - most important rule are, to had the multi-channel network connections system to carry on the control. He indicated that this rule is suitable similarly for the hypothesized server; He suggested that the IT manager lets the hypothesized server be far away from DMZ as far as possible.
 
 The IDC Canada Corporation's security and software investigation and study Director David Senf agrees with this viewpoint. He said: “for example, to avoid the different security policy confusing, prevents to appear the jurisdiction enhances and so on question, some IT department does not permit inside DMZ the virtual machine conversation presence on the DMZ following main engine.”

 
Other pages: : 1 * 2 * Next>>
Prev:The use mirror image restores the system to need the careful back door trap

Comment:

Category: Home > network management
Home