Hello, Ingo. I appreciated your reply, and I have a couple of questions.
"Ingo Strüwing" <[email protected]> wrote in
message news:[email protected]...
> Hi,
>
> Am 09.05.2012 09:29, schrieb John:
>
>> Hello. Is the environment of my guest OS secluded from the host OS in
>> such a
>> way that, if I get an intrusion or malware problem from the internet on
>> my
>> guest, my host OS would be totally secured from it? For example, if I put
>> a
>> website up on the guest and it gets compromised, can my host be affected?
>> In
>> a worse case scenario, could I just rebuild the guest, or restore from a
>> clean backup?
>
>
> IMHO there is no "normal" way to get control over the host from a guest.
> But in theory there might perhaps be bugs in the VirtualBox software
> that could be exploited.
>
> To minimize the risk, one could *not* install guest additions. That
> would avoid possible exploits through shared folders, shared clipboard,
> or mouse integration.
Aren't the guest additions added separately for each VM. I mean, using
VirtualBox to create one VM on which I may have installed one guest OS and
guest addition does not make that same guest addition available to another
guest OS, included among those which may be seen on the left panel as
separately configured VMs. That is, I think these guest additions, like the
VMs themselves, are mutually exclusive. Is that not so?
>
> But you will likely not want to disable guest networking. And such
> networking might be the main risk for possible exploits. This does not
> even need bugs in VirtualBox software, but might also be done through
> bugs in the host network stack. Let alone a possible insecure network
> setup on the host (open ports, imperfect netfilter rules, ...). After
> all the VM will be in a LAN. A compromised machine in a LAN is a danger
> to all machines in it. One could try to put the VM in a VLAN, which
> makes a "demilitarized zone". But it's still difficult to promise that
> this would lock out every attacker.
I like this idea for sure. Where can I get more information about setting up
the VLAN for one of my VMs?
>>
>> In such an event, where the guest was compromised and I wanted to restore
>> a
>> backup, would the whole VM have to be reinstalled, or would I only have
>> to
>> replace all of the contents of one folder, namely, as in Windows,
>> %userprofile%\VirtualBox VMs\guest-name\? Thanks.
>
>
> IMHO it would be sufficient to copy back a known good virtual disk image.
>
> Regards
> Ingo
>
>
>
> ------------------------------------------------------------------------------
> Live Security Virtual Conference
> Exclusive live event will cover all the ways today's security and
> threat landscape has changed and how IT managers can respond. Discussions
> will include endpoint security, mobile security and the latest in malware
> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
VBox-users-community mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/vbox-users-community
