|
|
|
|
|
|
by jewel
4221 days ago
|
|
|
Virtualization does offer additional security if it's used to isolate things that otherwise would have been running on the same host. For example, at my old job we used OpenVZ to isolate wordpress, twiki, and roundcube, whereas historically we would have had them all installed on the same webserver. I think this is the original source of the confusion, which has since disseminated to those who don't understand the nuances and think that virtualization adds security in every case. The PCI DSS requires that each server just has one purpose. I was surprised when in a later version they explicitly allowed virtualization as a way to comply with that requirement. |
|
|