[Info-vax] Don't want that? Well, don't use that. You've got options. (Was: Re: WHY IS VSI REQUIRING A HYPERVISOR FOR X86 OPENVMS?)

[Scott Dorsey]

D W  <ultradwc at gmail.com> wrote:
>I have a potential customer that may want me to set up an OpenVMS web site
>with heavy traffic.
>
>I am trying to get questions answered but your answer is I am trolling?
>
>Again how are you going to sell solutions with answers like that?

In general, the IT people are familiar and comfortable with virtualization.
So I don't think you'll have to sell the idea of virtualization at all.

In an application like that, you should be much less worried about the
OS vulnerabilities, per se, than the application vulnerabilities.  Anything
below the OS level is even less likely to be a worry.

But man, you need to worry a -lot- about application vulnerabilities,
especially if your web server is apache which is kind of messy inside and
has a lot of people banging on it.

To some extent you can use divide-and-conquer strategies, putting your
web server on a completely different machine than your backend database
and having an account on the server with only limited database access.

Virtualization makes this even easier because you can put the two systems
on different LPARs.
--scott

-- 
"C'est un Nagra. C'est suisse, et tres, tres precis."