Hello respected Virtual Box community! Here are my 4 questions
1) How good is Virtual Box isolation from host? What I want to use VM for is a sort of honneypot application, the key issue being prevention of all and any leaks from whithin the VM. The adversary intruding the VM from internet and his malicious code must remain totaly whithin the virtual environment. VMWare is thought to be gold-standard in isolation, however, it is not open source, and I am a strong proponent of open-source ideology in general... so I am realy looking into Virtualbox Hope to get some insightfull feedback from you concerning isolation in Virtualbox (esp. hope to hear from the devs ;-) ) 2)No soft is perfect, so, no matter what VM we use, we must assume there are some vulnerabilities that could potentialy allow the attacker to leak into the host somehow (after all, the VM is going to be connected to the internet, that seems to be a decent-sized point of commutation between VM and host, and a well known source of malicious code) 3)What intrusion detection software do you consider best-fit for detecting a break in from whithin a VM? 4)Is there some specific advice on configuring intrusion detection applications to monitor VM for a leak? Thank you very much. -Alexey, Russian VM affectionado _______________________________________________ vbox-users mailing list [email protected] http://vbox.innotek.de/mailman/listinfo/vbox-users
