----- Original Message ----- From: "Tim Fournet" <[EMAIL PROTECTED]>
> Dustin Puryear wrote > >server. This would allow him to compromise all of the virtual servers. > >Basically, using VM could mean putting all of your eggs in one basket. > > > > > How? From what I've seen, the guest OS doesn't even know it's not on a > real computer. The closest danger I could see would be if the guest OS > gets compromised, the attacker could use the network transport to get to > other machines, but that's no different than a physical box. Tim, I'm surprised at you. No software is invincible. It's only a matter of time until someone finds some odd combination of machine instructions running in the guest OS (or something) that will exploit a vulnerability in the VMware virtual machine software itself. (Then again, the exploit may be done in a way that I can't even imagine. Who knows?) Sure, the VMware development team is smart, but they aren't that smart! The question is: Does running something like VMware expose you to more risk in the long-run or less? --- Puryear Information Technology, LLC Baton Rouge, LA 225-343-3056 http://www.puryear-it.com Author of "Best Practices for Managing Linux and UNIX Servers" Download your free copy: http://www.puryear-it.com/manage-linux.htm
