1. Open registry with regedit.exe
3. change these entries to the following values
JvmMs = 0x0
JvmMx = 0x0
JvmSs = 0x0
4. restart this service „VMware VirtualCenter Management Webservices“
5. enjoy and relax 🙂
1. Open registry with regedit.exe
3. change these entries to the following values
JvmMs = 0x0
JvmMx = 0x0
JvmSs = 0x0
4. restart this service „VMware VirtualCenter Management Webservices“
5. enjoy and relax 🙂
When trying to launch the vSphere Client you receive errors similar to:
Error parsing the server „<servername>“ „clients.xml“ file.
The type initializer for VirtualInfrastructure.Utils.HttpWebRequestProxy‘ threw an exception.
You cannot use vSphere Clients prior to the Update 1 release, to access the vCenter Server or ESX hosts because of a Microsoft update that targets the .NET Framework (980773), released on June 9th 2010.
Perform one of these two options to correct the issue:
Download and install vSphere Client 4.0 Update 1 (build 208111) or Update 2 (build 258672) using method a or b below, depending on your environment.
To download and install the vSphere Client for ESX, ESXi (paid version), and vCenter Server:
Go the downloads site.
Note: The vSphere Client .exe is part of the ESX, ESXi, or vCenter Server download binaries.
Click Download next to your ESX, ESXi, or vCenter Server edition.
Log in with your VMware Account credentials.
Click the .exe link next to vSphere Client and Host Update Utility
Note: You do not need to download the entire vSphere suite, only the vSphere Client.
Follow the on-screen instructions to install the updated vSphere Client.
Read full article here >> http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1022611
VMware would like to announce the availability of the final release of the vSphere 4.0 Security Hardening Guide. This version incorporates the extensive feedback from the VMware community on the previous draft release, which was published in January. We would like to thank all the people who took the time to go through the draft release and provide their comments.
This guide represents a new approach to providing security guidance from VMware. As compared with the previous VI3 Hardening Guides, the current guide has the following highlights.
Overall, there are more than 100 guidelines, with the following major sections:
The Introduction section describes the scope, structure, recommendation levels, and other aspects of the guide in more detail. Please read this section first before diving into the rest of the guide, as it provides important context.
Although this version of the guide can be considered as „final“ and appropriate for use in production environments, we recognize that there is always room for improvement. We will continue to welcome comments and corrections on this guide, and we will publish updated versions of the guide from time to time as feedback is accumulated. This feedback of course will also be incorporated into the hardening guide for future releases of vSphere.
Here is our monthly update of the Top 20 KB articles for the month of November, based on use by customers.
|Upgrading to ESX 4.0 and vCenter 4.0 best practices (1009039)|
|Enhanced VMotion Compatibility (EVC) processor support (1003212)|
|Upgrading a VMware Fusion virtual machine from Windows XP to Windows 7 (1015396)|
|Restarting the Management agents on an ESX or ESXi Server (1003490)|
|Uninstalling, reinstalling, and upgrading VMware Fusion (1014529)|
|Downloading and Installing VMware Fusion (1005466)|
|Troubleshooting VMware High Availability (HA) (1001596)|
|Best practices for using and troubleshooting VMware Converter (1004588)|
|Recreating a missing virtual disk (VMDK) header/descriptor file (1002511)|
|A CPU of the host is incompatible error appears and VMotion stops working after upgrading to vSphere 4.0 (1011294)|
|FAQ: Supported/Unsupported Devices and Configurations (1184)|
|Upgrading an ESX 3.x virtual machine to ESX 4.0 (1010675)|
|Powering off an unresponsive virtual machine on an ESX host (1004340)|
|FAQ: VMware Product Features and Functionality (1168)|
|Installing ESX 4.0 and vCenter 4.0 best practices (1009080)|
|Virtual machine does not power on because of missing or locked files (10051)|
|Collecting diagnostic information for VMware Fusion (1003894)|
|Analyzing SCSI Reservation conflicts on VMware Infrastructure 3.x and vSphere 4.x (1005009)|
|Pegasus (cimserver) memory leaks reported in ESX 3.5 Update 2 and later (1009607)|
|Configuring networking from the ESX service console command line (1000258)|
via >> http://www.tecchannel.de/
Laut einem Bericht der Sicherheitsexperten von Secunia betrifft die Schwachstelle alle aktuellen Releases des VMware ESXi Server in den Versionen 3.x und 4.x. Die Sicherheitslücke entsteht durch den Einsatz einer anfälligen Version des Network Time Protocol Daemon (NTPD) in ESXi. Diese weist einen Begrenzungsfehler in der Funktion „crypto_recv()“ auf über den sich ein Stack-basierter Pufferüberlauf auslösen lässt. VMware bietet seinen Kunden ab sofort einen Patch an, der die hochkritische Sicherheitslücke schließt.
VMware releases Update 5 for VirtualCenter 2.5
More information @ VMware Support website >> http://www.vmware.com/support/vi3/doc/vi3_vc25u5_rel_notes.html
New: Support for High Consolidation in VMware HA Clusters – VirtualCenter 2.5 Update 5 includes significant performance and scalability improvements to VMware HA. Use VirtualCenter 2.5 Update 5 for environments with more than 35 virtual machines per host in an HA cluster.
For information on the ESX Server host settings required for this scalability improvement, see ESX Server host settings required for environments with up to 80 virtual machines per host in an HA Cluster (KB 1012002).
VMware announced VMware Data Recovery.
Find out more @ www.vmware.com and watch the video now
PALO ALTO, CA, April 21, 2009 — VMware, Inc. (NYSE: VMW), the global leader in virtualization solutions from the desktop to the datacenter, today announced VMware vSphere™ 4, the industry’s first operating system for building the internal cloud, enabling the delivery of efficient, flexible and reliable IT as a service. With a wide range of groundbreaking new capabilities, VMware vSphere 4 brings cloud computing to enterprises in an evolutionary, non-disruptive way – delivering uncompromising control with greater efficiency while preserving customer choice.
As the complexity of IT environments has continued to increase over time, customers’ share of IT budgets are increasingly spent on simply trying to “keep the lights on.” With the promise of cloud computing, customers are eager to achieve the benefits, but struggle to see the path to getting there. Leveraging VMware vSphere 4, customers can take pragmatic steps to achieve cloud computing within their own IT environments. With these “internal” clouds, IT departments can dramatically simplify how computing is delivered in order to help decrease its cost and increase its flexibility, enabling IT to respond more rapidly to changing business requirements.
VMware vSphere 4 will aggregate and holistically manage large pools of infrastructure – processors, storage and networking – as a seamless, flexible and dynamic operating environment. Any application – an existing enterprise application or a next-generation application – runs more efficiently and with guaranteed service levels on VMware vSphere 4. For enterprises, VMware vSphere 4 will bring the power of cloud computing to the datacenter, slashing IT costs while dramatically increasing IT responsiveness. For hosting service providers, VMware vSphere 4 will enable a more economic and efficient path to delivering cloud services that are compatible with customers’ internal cloud infrastructures. Over time, VMware will support dynamic federation between internal and external clouds, enabling “private” cloud environments that span multiple datacenters and/or cloud providers.
“Since pioneering virtualization for x86 systems 10 years ago, VMware has delivered an impressive list of ‘industry-firsts’ – the first hypervisor, the first VMotion™ capability now synonymous with VMware, and the first platform for pooling servers, storage and network, allowing customers to decrease the capital and operating cost of computing by up to 60-70 percent,” said Paul Maritz, president and chief executive officer, VMware. “VMware vSphere 4 is the next evolution along this path of innovation. By giving IT organizations a non-disruptive path to cloud computing, we will be leading our customers on a journey that delivers value every step of the way, delivering up to an additional 30 percent cost reduction today while enabling IT to provide reliable and adaptable IT services.”
FICO, the leading provider of analytics and decision management technology to the world’s top banks and credit card issuers, commented on how VMware vSphere 4 will improve the efficiency of its business.
“As a critical player in the global financial services ecosystem, we require flexibility and standards to stretch the limits of our IT resources and adjust to the unknown,” said Christopher Rence, CIO, FICO. “With VMware vSphere as the foundation of our cloud computing initiative, we’re now in a better position to deliver a unified platform that enables the world’s top financial services institutions to make effective and confident decisions at all stages of the customer lifecycle.”
VMware vSphere 4 Delivers Unprecedented Efficiency, Control and Choice
VMware vSphere 4 extends the previous generation VMware platform – VMware Infrastructure 3 – along three dimensions: it delivers the efficiency and performance required to run business critical applications in large scale environments, it provides uncompromised control over application service levels, and it preserves customer choice of hardware, OS, application architecture and on-premise vs. off-premise application hosting.
Efficiency. One of the primary benefits customers are seeking with cloud computing is decreasing the cost of IT services, freeing up budget to focus on delivering new capabilities that strategically differentiate the enterprise. VMware vSphere 4 enables transformative capital and operational expenditure cost savings over and above what was possible with the previous generation VMware Infrastructure 3:
TradeBeam, a leading provider of global on-demand supply-chain management solutions, has used the beta version of VMware vSphere and expects it to increase the company’s competitive advantage.
“Cloud computing is the future for us, and VMware vSphere 4 is the ideal platform to build our internal cloud,” said Nasser Mirzai, IT director at TradeBeam. “In our business, every sale requires a proof of concept which can become lengthy and expensive by using dedicated infrastructure. With an internal cloud built on VMware vSphere 4, we will be able to provide that infrastructure as a user friendly service to our sales teams and prospects. They will be able to request the infrastructure they need through a simple web portal and get it on-demand with guaranteed service levels and lower costs. That means getting the prospect up and running in one day instead of two weeks; the lead stays hot and we can increase our conversion rate while decreasing the cost of sales.”
Performance and Scalability for the 100 Percent Virtualized Internal Cloud
VMware vSphere 4 delivers significant performance and scalability improvements over the previous generation VMware Infrastructure 3 to enable even the most resource intensive applications, such as large databases and Microsoft Exchange, to be deployed on internal clouds. With these performance and scalability improvements, VMware vSphere 4 will enable the 100 percent virtualized internal cloud.
BayScribe, a leading provider of dictation services, supporting more than 50,000 physicians nationwide and facilitating more than 500,000 transcribed reports each month, commented on enhanced application performance with VMware vSphere 4.
“We have been using the VMware vSphere 4 beta, and even with the beta code, we have observed greatly accelerated application performance compared to VMware Infrastructure 3,“ said Steve Bonney, vice president of business development at BayScribe. “As a result, we are now planning to run the production database for our primary revenue generating application in a virtual machine on vSphere so that we can also take advantage of the availability, security and scalability features built in VMware vSphere 4.”
Control. VMware vSphere 4 enables efficient operational control of these very powerful “compute plants” with new large scale management features such as VMware Host Profiles and VMware vNetwork Distributed Switch that allow easy standardization of server security, storage and network settings; automating configuration management and reducing errors due to misconfiguration. For an environment of 100 virtualized hosts, these new management features can save an estimated 25 weeks or half year of system administrator time, thus significantly reducing operating cost.
VMware vSphere 4 brings uncompromised control over application service levels – enabling the right levels of availability, security and scalability to all applications independent of the OS or application architecture. All these new application service level capabilities can be delivered with one-mouse-click configuration simplicity, for set-it-and-forget it management simplicity, further reducing datacenter operating costs.
Southwestern Energy Company, an integrated energy company primarily focused on the exploration for and production of natural gas, is using VMware Fault Tolerance.
“VMware Fault Tolerance is extremely useful,” said Larry C. Miller Jr., senior systems administrator at Southwestern Energy. “This is a welcome addition to our arsenal of high availability technologies because it makes previously very high-end, expensive and complex functionality truly accessible. VMware Fault Tolerance can be turned on and off with a mouse click and while protecting applications against hardware failure.”
Choice. With VMware vSphere 4, customers retain flexibility of choice, remaining independent of hardware, OS, application stack, and service providers. For example, VMware vSphere 4 offers the broadest choice of guest operating systems over any other virtualization solution on the market today. This means customers can support their existing applications and feel confident about future applications, while retaining the flexibility to deploy within internal or external clouds.
“The days of the traditional monolithic operating system are numbered,” said Chris Wolf, senior analyst with Burton Group. “Server platforms are now being purposed-built for virtualized workloads, and many of the roles associated with the traditional OS are transitioning to virtualized internal and external cloud-based infrastructures. Organizations looking to gain the operational and financial benefits of cloud-based IT can do so today by deploying purpose-built cloud infrastructure software that streamlines internal data center operations, while providing a gateway to future external cloud expansion.”
Qualcomm, a leader in developing and delivering innovative digital wireless communications products and services, commented on the flexibility that VMware vSphere 4 can provide for its business.
“VMware has provided us with cost savings and efficiencies for a number of years,” says Paul Poppleton, IT architect, Qualcomm. “With VMware vSphere 4, we can leverage our virtualization implementations to get greater economies through an internal cloud strategy. As a leader in virtualization, VMware is positioned to help us continue to automate and streamline our infrastructure to best serve our business needs, on or off premise.”
VMware vSphere 4 Pricing Starts at $166 per Processor5
VMware vSphere 4 is expected to be generally available later in Q2 2009 and will be available in six editions meeting the requirements, use cases and budgets of customers of all sizes. In the current tough economic climate, VMware vSphere 4 offers unbeatable value to customers with up to 30 percent higher consolidation ratios, up to 50 percent storage savings, and up to 20 percent power savings over the previous generation of VMware Infrastructure 3.
VMware hat Sicherheits-Updates veröffentlicht, die eine kritische Lücke in seinen Produkten schließen soll, durch die ein Anwender eines Gastsystems das Wirtssystem unter seine Kontrolle bringen kann. Insbesondere in Bereichen, in denen unbedingt die Einflussnahme des Gasts auf den Host verhindert werden soll, etwa in Malware-Laboren und Serversystemen, stellt die Lücke eine nicht zu unterschätzende Bedrohung dar. Genaue Angaben macht der Hersteller zwar nicht, die Ursache des Problems liegt aber wohl in einem Fehler eines virtuellen Gerätetreibers im Zusammenhang mit der Display-Funktion und dem Framebuffer.
- VMware Workstation <= 6.5.1
- VMware Player <= 2.5.1
- VMware ACE <= 2.5.1
- VMware Server 2.0
- VMware Server <= 1.0.8
- VMware Fusion <= 2.0.3
- VMware ESXi 3.5 ohne Patch ESXe350-200904201-O-SG
- VMware ESX 3.5 ohne Patch ESX350-200904201-SG
- VMware ESX 3.0.3 ohne Patch ESX303-200904403-SG
- VMware ESX 3.0.2 ohne Patch ESX-1008421
Ein Exploit zum Ausnutzen der Lücke ist offenbar bereits für Kunden der Sicherheitsfirma Immunity verfügbar – zumindest zeigt ein Video, wie der Cloudburst-Exploit unter Vista funktioniert.
Jeremy Waldrop blogs a very nice article about installting Windows Server 2008 as an ESX Template.
Find out more on >> http://jeremywaldrop.wordpress.com
NOTE – VMware Virtual Center 2.5 Update 4 is required to use Guest Customizations with Windows 2008.
1. Use an ISO for faster OS setup.
2. Build a new VM that has at least 1 GB RAM and a 20 GB drive.
3. Attach the Windows 2008 ISO to the CD/DVD drive and set it to connect at power on.
9. Save, exit and install Windows 2008, during the install choose either Standard or Enterprise.
10. On first boot up after install set the Administrator password.
Der Hersteller VMware hat mehrere Sicherheitsprobleme in seinen Produkten behoben und aktualisierte Fassungen für die Workstation, den Player, ACE, Server, ESXi und ESX veröffentlicht. Unter anderem lässt sich ein Fehler in einem virtuellen Gerätetreiber ausnutzen, um aus dem Gastsystem heraus den Wirt zum Absturz zu bringen. Ein ähnliches Problem weist laut Bericht der Treiber hcmon.sys unter Windows auf. Allerdings kann nur ein privilegierter Windows-Anwender den Absturz provozieren. Bei der Verarbeitung zu langer Parameter kann der Dienst vmware-authd ebenfalls abstürzen.
Auf Windows-Systemen können Angreifer einen Fehler im Treiber für das Virtual Machine Communication Interface (VMCI) sowohl auf dem Gast als auch im Wirt ausnutzen, um an höhere Rechte zu gelangen. VMware ESX ist davon aber nicht betroffen. Von einem Heap Overflow im VNnc Codec ist VMware ESX ebenfalls nicht betroffen. Auf anderen Systemen genügt es, einen präparierten VNnc-Film zu öffnen oder eine manipulierte Webseite zu besuchen, um Opfer eines Angriffs zu werden.
Zudem liegt nach dem Login das Passwort für den VirtualCenter Server im Speicher des VI-Clients und lässt sich dort auslesen. VMware ACE weist darüber hinaus ein Problem mit Shared Folders auf. Die Links zu den Updates für die jeweilige Version sind im Original-Fehlerbericht des Herstellers zu finden.
Siehe dazu auch:
The VMware Cost-Per-Application Calculator compares the cost of virtualizing applications on VMware Infrastructure 3 versus other commodity virtualization offerings, like Microsoft Windows Server 2008 (Hyper-V). The calculator provides an accurate and simple methodology to determine and compare the deployment costs of virtualization solutions by 1) including both software and hardware infrastructure costs and 2) accounting for number of applications that a virtualization platform can run on each sever.
By leveraging the VMware Cost-Per-Application Calculator, you will see how VMware’s superior virtualization technology enables greater cost savings while at the same time greatly improves reliability and availability across your IT infrastructure.
Based on your inputs, the cost-per-application to virtualize 200 applications using VMware Infrastructure 3 Enterprise Edition is
$2,999 — 9% lower than with Microsoft Windows Server 2008 (Hyper-V) and System Center.
Learn to configure and deploy the Exchange 2007 Mailbox, Hub Transport, and Client Access server roles onto individual VMware virtual machines using VMware ESX 3.5 and HP ProLiant c-Class blade servers.
Mit drei Updates schliesst VMware Sicherheitslücken im ESX-Server und dem vCenter-Server. Zudem kündigt der Virtualisierungs-Spezialist das Support-Ende für ESX 2.5.5 an.
VMware veröffentlicht drei Patches, die Schwachstellen im ESX-Server und dem vCenter-Server flicken, wie „Tecchannel.de“ berichtet. Das Update VMSA-2009-0001.1 ist für fast alle Installationen des ESX-Server seit Version 2.5.5 und behebt ein Problem, dass beim Laden von defekten virtuellen Disks aufgetreten ist. Das Bulletin VMSA-2009-0003 ist für Anwender von ESX 2.5.5 gedacht und bringt das Programmpaket auf den neusten Stand. Zuvor war hier durch ein Heap Overflow ein Systemzugriff möglich.
Das letzte Update VMSA-2009-0002 richtet sich an das Virtual Center, die Verwaltung für ESX-Installationen, und aktualisiert die Tomcat-Komponenten von vCenter. Die Lücke hier ermöglicht es Angreifern, die Management-Konsole zu übernehmen, wenn diese im gleichen virtuellen Netzwerkt wie die virtuelle Maschine läuft.