« NetApp Open Systems SnapVault for VI3
IBM Storage Virtualisation Updates »

Tripwire ConfigCheck

I was looking for an app that would investigate an ESX host that wasn’t configured by me to see how much work would be needed to secure it.

I found Tripwire’s ConfigCheck java app an absolute cracker.  As Michael Parkinson would say its simplicity is its genius.

Provide hostname, username and password and wait for a minute or so for ConfigCheck to analyse the security of the host.  A list of all the areas checked is displayed with either a pass or a fail.

This is all great, but what is even better is the fact that upon completion of the tests you are offered the opportunity to download a remediation document.  This 52 page document outlines why a particular test failed and how to fix the problem.

You can download ConfigCheck here, and the remediation guide here.

Tags: ,

This entry was posted on Tuesday, June 17th, 2008 at 8:49 am and is filed under Security, VMware, Virtualisation. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

2 Responses to “Tripwire ConfigCheck”

  1. Gavin Millard Says:
    June 23rd, 2008 at 12:47 pm

    Thanks for the great feedback. We are pleased people are finding it a handy addition to their toolset.

  2. Kim Blomgren Says:
    July 21st, 2008 at 8:34 pm

    One of the most frequent requests we had concerning Tripwire ConfigCheck was the ability to monitor 3.0. Wanting to make sure that ESX 3.0 admins had the same capabilities to ensure secure configuration of the Hypervisor against the VMware Hardening Guidelines, today Tripwire has released ConfigCheck for ESX 3.0 to complement our coverage of ESX 3.5. In addition, we updated the supporting remediation advice for 3.0 detailing all the steps, if different from ESX 3.5, to get the configurations up to a known and trusted state.

    It is available now for download at: http://www.tripwire.com/configcheck

Leave a Reply