Back in August of last year, BMC launched the ZipKits program, delivering ready-to-use content for use with BladeLogic Server Automation and BMC Cloud Lifecycle Management. We now have over a hundred packages, the latest of which is the Heartbleed Remediation ZipKit.
This is a bundle of content for BMC BladeLogic Server Automation, which contains all the parts necessary to detect Heartbleed vulnerabilities and patch them. It is even able to do auto-remediation, automatically deploying the patches required to close the hole once and for all.
The best thing is that once this is set up, you can make it part of your regularly scheduled audits. This means it will catch any new vulnerabilities that pop up when someone installs an older software version or clones a VM from an unpatched template. This is how compliance moves from being an event to being a process.
Sysadmins divide their activities into two categories, keeping the lights on and firefighting. Firefighting looks pretty much as you would expect: lots of running around and shouting, normal tasks dropped or quickly moved out of the way. Initial reactions to situations like Heartbleed are very much firefighting activities: drop everything and fix this!
However, you can’t operate in firefighting mode all the time (and if you try, you’ll burn out your team and still fail). Sooner or later, things have to go back to normal. If the only way you have of dealing with issues like Heartbleed is “ALL HANDS ON DECK! CANCEL YOUR WEEKENDS!”, you might be able to contain the initial outbreak, but it’s pretty much guaranteed to smoulder along in the background once people take their eyes off it.
A truly resilient compliance process needs to move detection and remediation into the day-to-day process of the department, taken care of as much as possible without human involvement. Trying to operate otherwise leads to constant reinfections as the team moves on to the next fire.
BladeLogic Server Automation is designed to help make these sorts of task routine, no longer an event but an almost invisible process. The ZipKits are a way of making it even easier to share around best practices that have already been tested and validated, not least by live production use in BMC’s own IT environment.
If you are a current BladeLogic Server Automation user, you should keep an eye on the list of Blade ZipKits Currently Available, as new content shows up there pretty regularly. If you are interested in learning more, please see the BladeLogic web page.