Tripwire announced that Tripwire ConfigCheck has integrated VMware’s revised Virtual Infrastructure 3 Security Hardening Guide to assess VMware hypervisors for security and operational weaknesses created due to system misconfiguration. Tripwire ConfigCheck is a free utility that assesses configuration settings for VMware ESX 3.0 and 3.5 hypervisors, determines potential configuration risks, and provides prescriptive remediation advice so that administrators can ensure greater security.

Tripwire ConfigCheck provides an immediate assessment of the configurations of a VMware ESX hypervisor, comparing them against VMware security hardening guidelines, which are best practice recommendations for optimal security in virtual environments, and provides precise remediation instructions if any are needed. With Tripwire ConfigCheck, customers gain immediate visibility into risks that might exist in their virtual environment due to misconfiguration and are advised of recommended fixes to any configuration settings that could present future risk.

“Integrating VMware’s new hardening guidelines into ConfigCheck allows us to deliver to thousands of customers the latest best practices for securing VMware hypervisors. Tripwire ConfigCheck responds directly to the market need for solutions that address the knowledge and skills gap in managing virtual infrastructure. With this latest release, we leverage the best practices of VMware’s security hardening guidelines to increase the overall scope and value of the utility,” said Mark Gaydos, Tripwire VP of Marketing.

In addition to offering immediate insight into unintentional vulnerabilities in virtual environments, Tripwire also provides a remediation guide containing the necessary steps to return both VMware ESX 3.0 and 3.5 hosts to a known, secure state. Tripwire ConfigCheck and the Tripwire Remediation Guide are available for free and can be downloaded at www.tripwire.com/configcheck.