ELI5: What is Snapshot management?
A snapshot is like saving your video game so you can go back to that exact moment later. But if you keep too many old saves, some of them might have old bugs. Snapshot management means keeping track of these saves and cleaning up the ones you no longer need.
Definition
VM snapshot management involves the creation, maintenance, and lifecycle governance of point-in-time captures of virtual machine state. While snapshots are valuable for rapid rollback after changes or incidents, poorly managed snapshots — particularly old, forgotten ones — can create security risks because they preserve outdated configurations and unpatched software that would otherwise have been updated.
Key Details
- Snapshots capture the complete VM state: disk, memory, and configuration at a point in time
- Old snapshots may contain vulnerable software versions, weak configurations, or outdated OS patches
- Snapshots should not be used as long-term backups — use dedicated backup solutions instead
- Snapshot chains grow over time and can significantly impact performance and storage consumption
- Organizations should have snapshot retention policies: automatically delete snapshots older than defined thresholds
Connections
- Parent: virtualization-security — snapshot management is an important virtualization security hygiene practice
- See also: vm-sprawl