I ran into this article on InfoWorld (via BladeWatch), a product from Blue Lane Technologies that is described as a “patch proxy”. Basically it is a device (or software if installed in the VMWare Hypervisor), that intercepts and cleans/repairs or discards malicious traffic on the wire, protecting your precious computer without having to actually patch your servers.
I don’t think this is something I would exactly trust, but I can see in which environments it would have merit. For example, if we had very stringent uptime requirements, including planned downtimes, or if the change management process were so tightly regulated as to make it arduous or ponderous to deploy patches on the almost-continuous cycle they are currently being released.
The fact that it works within the VMWare Hypervisor to protect all the VMs hosted on that server, is of course, enticing. I will have to read more about this, and keep my ear to ground about any further developments.
Anyone out there heard of or used this product?
