Hans-Werner Hilse wrote:
Hi,
On Thu, 07 Feb 2008 13:05:00 -0500 7v5w7go9ub0o
<[EMAIL PROTECTED]> wrote:
- The SSL connection is established within the Linux VM, so all the
host sees is an encrypted connection to your bank.
Wrong: It will also see all the virtual memory the virtualized machine
is using, including those parts containing your precious unencrypted
data. All you win by using a VM is that you don't need to boot into the
OS (which might be impossible on some public terminals while running
qemu might work).
Huh!? Sure, virtual memory and real memory will together have bits and
pieces of all executing code and data - paged in and out at various
times - and if your local library or friend's windows machine is
actually logging, reconstructing, and effectively parsing all of that,
you could indeed be compromised. Never heard of such a
resource-intensive, sophisticated attack; but can see that it could
-theoretically- be done on a public library or friend's computer; though
not likely on any computer I'll ever come across.
--
gentoo-user@lists.gentoo.org mailing list
