As more people are coming on to the infrastructure I think it is worth reminding ourselves about basic security. This is important not just to protect your VMs from outside attack, but to help prevent denial of service and other malicious activity being mounted on or against our infrastructure.

Stating the bleeding obvious... please:

• patch the OS on all your VMs and keep them patched (even for VMs that aren't publicly accessible from the outside world),
• set passwords (sensible passwords) on all accounts,
• restrict access to root accounts as far as possible,
• use your external vShield Edge firewall to control access to/from the outside world,
• use internal vShield Edge firewalls and/or VM-based IP Tables to limit access between your VMs.