|
BugTraq
VMWare poor guest isolation design Aug 23 2007 03:22AM M. Burnett (mb xato net) (2 replies) Re: VMWare poor guest isolation design Aug 23 2007 04:49PM Arthur Corliss (corliss digitalmages com) (6 replies) Re: VMWare poor guest isolation design Aug 24 2007 01:06AM Jonathan Yu (jonathan i yu gmail com) (1 replies) Re: VMWare poor guest isolation design Aug 24 2007 08:13AM Arthur Corliss (corliss digitalmages com) (2 replies) More on VMWare poor guest isolation design Aug 25 2007 01:29AM M. Burnett (mb xato net) (2 replies) Re: More on VMWare poor guest isolation design Aug 25 2007 07:05PM Tim Newsham (newsham lava net) (1 replies) RE: More on VMWare poor guest isolation design Aug 27 2007 05:51PM M. Burnett (mb xato net) (2 replies) RE: More on VMWare poor guest isolation design Aug 28 2007 06:49AM Arthur Corliss (corliss digitalmages com) RE: VMWare poor guest isolation design Aug 23 2007 10:40PM James C. Slora Jr. (james slora phra com) RE: VMWare poor guest isolation design Aug 23 2007 08:46PM William Holmberg (wholmberg amdpi com) (1 replies) RE: VMWare poor guest isolation design Aug 24 2007 07:16AM Arthur Corliss (corliss digitalmages com) RE: VMWare poor guest isolation design Aug 23 2007 08:30PM M. Burnett (mb xato net) (1 replies) RE: VMWare poor guest isolation design Aug 24 2007 07:50AM Arthur Corliss (corliss digitalmages com) |
|
Privacy Statement |
> It doesn't matter how secure all my guests are or that I use extremely
> secure passwords or that I am current on all my patches or I am running a
> super-tight firewall on each guest. A single API call bypasses all of that.
It doesn't even take an API. If you're running a virtual machine
from your own account, your account has control over the virtual
machine. It can subvert the hardware, it can modify the contents
of virtual memory, the virtual disk image, and so on.
This is a basic but often overlooked principle with virtualization:
a virtual machine is no more secure than the platform (or in this
case user account) it runs on.
Wietse
[ reply ]