HyperVM is a popular piece of software for managing nodes running virtual servers. Unfortunately, over the last few months it has become apparent that the software appears to be incredibly flawed. Security wise, there have been numerous critical vulnerability updates release. Any provider that was slow with their server updates will have found their systems extremely vulnerable to hacking.
Culminating in the recent hack of A2B2/Vaserv/FSCK VPS, where tens of thousands of websites were taken offline on multiple servers by exploiting a serious vulnerability in the HyperVM virtual machine management software.
http://www.theregister.co.uk/2009/06/08/webhost_attack/
Whilst automation is an important detail of an efficient system – it is even more important to ensure that the integrity of that system is not compromised by implementing the automation. In this instance, a single installation of HyperVM with root access to many dozens of servers was compromised. It is important to consider worst case scenarios with any kind of service. What is the absolute worst that could happen to my system? What would be my nightmare?
Think of your nightmare… and then multiply it a few times. Then make a contingency plan.
