Virtualization.com

News and insights from the vibrant world of virtualization and cloud computing

News

Qlusters Releases openQRM 3.5

by 3 Comments

Qlusters has released openQRM 3.5 to SourceForge.net. The 3.5 open source release succeeds release 3.1.4 and includes a set of new features based on input from various data centers and test/dev labs. Release 3.5 is available for download now.

openQRM is a Datacenter Management Tool that can manage different Physical and also VirtualMachine instances. It allows seamless deployment of physical and virtual machine instances and also supports P2V, V2P and even V2V migration across different technologies.

With this release they also announced that this will be the last openQRM release by Qlusters and they hope the community will continue to evolve and develop openQRM.

Matt Rechenburg will remain active project leader and Qlusters wishes him and the openQRM project a future of prosperity and continued success.

Qlusters also appointed a new CEO, Dror Nemirovsky, who joined the companty in 2007. Prior to joining Qlusters, Dror held various senior positions in both the US and Israel with companies such as Amdocs Marcam Corporation and Iscar in Israel. He replaced Qlusters founder Ofer Shoshan who had been CEO until October 2007.

With openQRM, Qlusters was working on one of the leading opensource data center management tools. Apart from their involvement in openQRM, they also offer enterprise level services and support for Nagios.

Matt Rechenburg left Qlusters and with him, the openQRM project got a new home and new direction. The initial code of a revamp of openQRM wihch will make it more flexible and more performant; adding more PHP to the code base will for sure attract a bigger development crowd.

Qlusters has yet to announce where it is heading next.

Google And Microsoft Set To Battle In The Clouds: App Engine vs. Red Dog

by Leave a Comment

Lots has been written already about Google’s new initiative called App Engine, a preview-release developer platform for Python applications, and now Microsoft seems to be throwing itself in the ring – where Amazon and Salesforce are also to be found – in order to get at least a piece of the cloud computing buzz momentum. LiveSide spotted a job posting with clear mentions of the Microsoft Utility Computing Platform, code-named Red Dog, and it sounds very much like a platform for building a Google App Engine type service.

LiveSide’s take:

“The posting itself is a little dense, written to appeal to seasoned developers looking for new challenges. But to paraphrase a bit, here’s what the (CIS) team is building with Red Dog:

  • an “efficient, virtualized” environment
  • a “fully automated service management system” (like the Google App Engine, you won’t have to worry about managing the system)
  • on “highly scalable” storage services (you only use the storage you need)
  • the service will “scale to millions of machines” across Microsoft’s data centers (geo-located, easy to maintain data centers, remember?)
  • “will lead the marketplace as the best platform for rapid development, deployment, and maintenance of internet services and applications”
  • SDK and tools will be included for external and internal customers
  • V1 for external customers in the coming year

Meanwhile, Gartner analysts Daryl Plummer and Thomas Bittman reportedly stated at the Gartner Emerging Technologies conference in Las Vegas that it will be another year – 2009 – before companies will start using cloud computing services extensively. “In the meantime, folks will have to define and sort out a lot of mumbo jumbo about the cloud.”

Interesting times!

Is Virtualization The Biggest Security Vulnerability In IT Today?

by 2 Comments

The question is asked by Senior Reporter from Forbes Andy Greenberg, who attended the security industry’s big annual confab, the RSA Conference, and wrote up an article aptly titled ‘Virtualization Dark’s Side’. He writes:

“In the past few months, security researchers have revealed bugs in practically every piece of virtualization software, including products from virtualization heavyweights VMware and Microsoft.

Exploiting those bugs, attackers can use what researchers call “virtual machine escape,” or “hyperjacking.” By taking control of the hypervisor, the piece of software that controls all the virtual computers within a machine, an attacker can “escape” from any single virtual computer hosted on the machine and quickly multiply his or her access to a company’s data.”

Virtualization security researchers and experts were quick to point out the weaknesses of virtualization and several techniques to breach the security.

Joanna Rutkowska, the founder of security research firm Invisible Things Lab, reportedly described a new type of virtualization-based malware that could be used to take control of a machine running virtualization software. Because virtualization allows companies to store many virtualized software “images” of computers on a single physical machine, an attack like the one Rutkowska envisions would allow a hacker “not only to control a single machine but to siphon data from any virtual machine it contains”.

Rutkowska also described how an intruder could install what she calls a “blue pill,” a second, malicious hypervisor that controls the original hypervisor and all of the virtual machines beneath it.

Fortunately, she also said that the attacks she discussed are likely too new to have ever been used by real-world cybercriminals, and are unlikely to become common.

What do you think?

XTS Releases Introspect, Management & Analytics Tool for Citrix XenApp

by 1 Comment

XTS today announced the availability of XTS Introspect tool, which enables advanced planning and management of Citrix XenApp virtualization and application delivery environments. XTS, headquartered in the Washington DC metropolitan area, is a Citrix Ready Partner and VMware Technology Alliance Partner and has long been a provider of enterprise reporting and analytics software for the planning and management of Citrix and other virtualization platforms.

XTS

From the press release:

Previously, XTS analytics solutions provided intelligence that eased capacity planning, security audits, implementation of charge-back systems and analyzing software license requirements. With Introspect, IT organizations can now enjoy these benefits along with newly available advanced configuration analytics that enable system administrators and architects to easily gather the following information:

  • Three-dimensional configuration analysis by application, server, and user across an entire server farm
  • Detailed view of application and server properties
  • Matrix reports that illustrate where applications are installed and detail user/group access
  • Historical reporting of server hotfix implementations

To see Introspect first-hand, you’re invited to visit the XTS events to register for an interactive, online seminar for Citrix professionals featuring a presentation from Doug Brown of DABCC.

Solera Networks Releases Beta Version Of Solera V2P Tap

by Leave a Comment

Solera Networks announced today the availability of its beta version of the free Solera V2P Tap, expanding the companys initiative toward enabling complete network visibility. Using the Solera V2P Tap, organizations deploying virtual machines can leverage their existing investments in network management and security tools by regenerating virtual network traffic, including intra-server virtual machine network traffic, to their existing physical security infrastructure to monitor and protect virtual network activity.

The company recently raised $ 5 Million in Series B funding by Canopy Ventures, which also led the company’s Series A round in 2006.

Solera Networks

From the press release:

For many organizations, monitoring and securing the virtual environment means an additional investment to deploy security tools and processes in the virtual network—the same tools they already have in the physical environment. The Solera V2P Tap sits passively in a virtual environment leveraging VMware Vswitch technology, capturing all network traffic from within the virtual environment and regenerating all or some of that traffic in real-time to the physical environment for monitoring and analysis by existing tools.

The free download of the Solera V2P Tap is now available in beta for evaluation. After completion of the beta, the download will continue to be available for free.

[Source: VMblog]

Hyper-V Release Candidate Now (Optional) Part Of Windows Update

by 1 Comment

In a post on the WSUS Product Team Blog, Program Manager Cecilia Cole lets us know that the Hyper-V RC is now an optional part of Windows Update.

Today, April 8, the Windows Update team is making the Hyper-V Release Candidate package available as an “Optional Update” via Windows Update for all Windows Server 2008 SKUs. It will also be published as an “Optional Update” to WSUS. For more detailed instructions, please refer to How to Install Windows Server 2008 Hyper-V Release Candidate.

For more information about the availability of new and changed updates available for WSUS, please visit our TechNet site under “WSUS Updates”.

[Source: Dugie’s Pensieve]