Appendix A. Security Script

Listing A.1 is a shell script that can be used to increase the security of an ESX Server such that the CISscan and Bastille assessment tools will score higher and the system will be more secure. The script will increase security such that normal users will not be able to adversely affect the system, and many unnecessary and insecure system protocols are completely disabled. Note that USERNAME must be replaced with an administrative user of your choice.

Listing A.1. A Script That Will Work for ESX Version 3

image

image

Get VMware ESX Server in the Enterprise: Planning and Securing Virtualization Servers now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.