Hi Tom, Thank you for your time!
On 2014-03-10 15:52, Tom Grace wrote: > On 10/03/14 13:05, Thinker Rix wrote: >> Hi all, >> >> I am wondering if the following is possible with Linux and Virtualbox: >> >> 1. Block all network traffic whatsoever for the virtual host >> 2. Allow certain network traffic for some virtual machines (guests) >> > Maybe. I've not tested this, but you might have some luck with a bridged > connection and a firewall on the host machine set to block all traffic. Is there any information or scheme/map of the network concept of VirtualBox so that I could figure how things work in general? I have not understood yet how the traffic flows and which devices it trespasses. > Personally though, I would probably try to invert your plan and have a > VM with no network access, as that would be easier to configure. Yes, this is surely the easiest way, but it is not satisfactory concerning security. Yes, the VM would be isolated concerning networking. But the host would remain exposed to the network. Should the host get infected by malware, the security of the VM would be at stake, too! Say I would infect the host with spyware/trojan. This way my keyboard entries could be key-logged and my screens could be monitored. When I would work with the VM via the host (since it is a desktop machine I would directly use the VM via Virtualbox), all passwords, etc. that I would enter into the VM would be logged, too. And finally the intruder could enter my VM via the host, having all power over the host. As a final result, an intruder could enter my host AND my VMs. For this reason I am interested in turning things upside down, having the host secured and the isolated VM connected to the network. Should the VM be infected/infiltrated, the intruder could not get out of the box of the VM. Regards Thinker Rix ------------------------------------------------------------------------------ Learn Graph Databases - Download FREE O'Reilly Book "Graph Databases" is the definitive new guide to graph databases and their applications. Written by three acclaimed leaders in the field, this first edition is now available. Download your free book today! http://p.sf.net/sfu/13534_NeoTech _______________________________________________ VBox-users-community mailing list VBox-users-community@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/vbox-users-community _______________________________________________ Unsubscribe: mailto:vbox-users-community-requ...@lists.sourceforge.net?subject=unsubscribe
