Hackers, Phishers, Malware and more…..a virtual cancer

Many of you may have noticed over the last few weeks that Dailyhypervisor has had some ongoing issues.  It all started around the same time my 2 year old son went into the hospital I had gotten an message from a friend letting me know that google had flagged dailyhypervisor.com as a malware site.  Sure enough it had been flagged and malware was indeed present.  With no time to properly resolve the issue I did the only I could do to prevent anyone from coming to my site from being impacted by the malware.  I took the site down.

For me it was a quick temporary fix until I could find the time and focus to get it back up and fixed.  Of course it wasn’t until 11 days later when my son was finally released from the hospital that I got to fixing the site.  My fix was to perform a complete restore from a known good backup.  Luckily I do subscribe to a cloud based backup solution that takes nightly backups and I was able to determine when was the best time to restore the site to.  However I knew this wasn’t going to need to be the only step I took.

After the restore was completed I then needed to try and figure out how they got in and try to lock it down to prevent further incidents.  After hours spend reviewing the security I already had in place, file permissions, firewall rules, and updating all components of the site I got to a point where I felt I had done all the things I needed to and everything should be ok.  Well I recently just found out that was not the case.  These lechers of the internet that exploit any sites they can with vulnerability’s in order to turn them into petri dishes for spreading malware and other malicious code once again gained access to dailyhypervisor.

After doing yet another restore and and exhaustive review of the site again I decided to dig deeper into the plugins that I was using on the site.  I believe the download manager plugin to be the culprit but also discovered other plugins I was running that haven’t seemed to be maintained in a long time.  I ended up removing all the plugins that I felt were insecure, outdated and posed a security risk to the site and my readers.  With the removal of my download manager I will have go to through the entire site and update all the links to all the downloads to point them to the external sources where our downloads are located.  In the meantime if you need to download any of the packages we have shared you can find them on github or VMware Sample Exchange.

I would however like to take this time to apologize to all of my readers for the ignorance of these hackers that hide behind their keyboards in the darkness  and prey on those of us trying to be productive and helpful.  The craziest part is in the last year my blog has probably been the most secure it has been since I started it in 2009 and I’ve never had these issues before in the past.  The good news is they have not hacked or gotten access to the database, just the file system of the site.

I would like to ask all of you that if you see something, please say something.  Please send me a tweet to @vmmeup if you notice anything off.  I have up’d my game a little I now have a solution that monitors all my files and notifies me of any changes, but this isn’t bullet proof and I can’t look out for it ever minute of every day, so please if you notice anything strange with the site moving forward please let me know.  Thank you all for your patience and I resolved this issue and for being loyal readers.

Sid Smith

DailyHypervisor Forums are online.

We have just launched our DailyHypervisor Forum located at http://www.dailyhypervisor.com/forum. Stop by, contribute and be a part of our community. The DH Forum is intended to be for all things cloud. Currently we have forums created for vCAC, vCD, vCO, Cloud General, and Openstack. More forum categories will be coming based on demand. If you have a category you would like to see shoot us a note and let us know.

Our goal is to create a common place where anyone can come to learn, get help, share ideas, or just about anything that will help foster knowledge regarding cloud computing. Considering this very blog is the announcement of our forum you could image there isn’t a whole lot happening yet so what are you waiting for, be the first. Go ask a question, post an issue, share a thought and let’s get things rolling.

HP MoonShot – Hardware is catching up with the cloud

HP is taking cloud computing to the next level with their MoonShot servers. Cloud isn’t just software anymore.

Now I don’t know if HP MoonShot can solve all of today’s datacenter issues, but it surely is a start. Moonshot is an interesting concept HP is taking Intel Atom S1260 processors, on a bunch of micro PC sized cards and put them all in one chassis. One MoonShot chassis is capable of housing 45 servers, that’s just incredible. HP is claiming that the MoonShot servers consume 89% less energy than a traditional servers. Considering each of the 45 servers in the chassis are pulling straight DC from the chassis and each individual server is not running an 800W power supply that is only 60% efficient I would think it’s possible. In fact the Moonshot chassis takes 2-4 1200W power supplies that are 94% efficient. Not only are you powering 45 servers with these power supplies, but the chassis also houses two Ethernet switch modules and two uplinks with SFPs.
moonshotProdImg_471x292
[Read more…]

ESX is Going Away – How to Migrate to ESXi

If you didn’t know it yet, VMware announced a while back that future releases of VMware will not include the “traditional” ESX Server. From their site:“VMware vSphere 4.1 and its subsequent update and patch releases are the last releases to include both ESX and ESXi hypervisor architectures. Future major releases of VMware vSphere will include only the ESXi architecture.”

If you are in a “24/7/365” shop then the applications running in your private cloud should currently be in virtual data centers (vDC) that are contained in DRS/HA clusters and the migration can be completed with no downtime to the applications. However, there are still other systems, such as development and test systems or possibly some minor infrastructure services applications that may not benefit from vSphere’s availability features. I know many people have scheduled outages, shutdowns, etc. during the upcoming holidays. It may the best time to migrate to ESXi.

[Read more…]

A Few Gotchas With vSphere 4.1! Updated

Since everyone else in the world is heralding the release of vSphere 4.1, I figured I would post some bad news. The stuff you may want to know BEFORE you jump into upgrading to vSphere 4.1. Before I start, I want to make it clear that vSphere 4.1 is a great product overall. And I have already been leaning to ESXi, so the announcement that this will be the last release with the “traditional” ESX has been expected. I will talk about ESXi and its improvements in a later post. I just want you to be aware of these rather significant Gotchas.

[Read more…]