Home » VMware » 2V0-621 v.2 » Which advanced parameter should be applied to the virtual machines?
An administrator has recently audited the environment and found numerous virtual machines with sensitive data written to the configuration files.
To prevent this in the future, which advanced parameter should be applied to the virtual machines?
A. isolation.tools.setinfo.disable = true
B. isolation.tools.setinfo.enable = true
C. isolation.tools.setinfo.disable = false
D. isolation.tools.setinfo.enable = false
Correct Answer: A
Explanation/Reference:
Explanation:
Litmit SETINFO Messages
Now if you read through the hardening guide, you’ll come cross a section that covers informational messages, otherwise known as SETINFO messages.
Now my understanding is that currently there is no limitation on the amount of data that can be sent from VMware tools to the host, so you can imagine it wouldn’t be hard to write some code to continuously send huge amounts of data. So lets looks at how to limit this to something more acceptable as per the hardening guide. tools.setInfo.sizeLimit = "1048576"
Now you can actually totally disable this using the following isolation.tools.setInfo.disable = "true"
But this stops the Virtual Center client from displaying any information about the Virtual Machine, e.g. IP Address, DNS information. So for a production environment I would recommend setting a limit rather then totally disabling.
Reference:
https://goingvirtual.wordpress.com/2009/07/11/locking-down-vmware-tools/