Re: [PLUG] new virtualbox exploit

JP Vossen on 8 Nov 2018 15:53:11 -0800

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] new virtualbox exploit - virtualizers

From: JP Vossen <jp@jpsdomain.org>
To: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Subject: Re: [PLUG] new virtualbox exploit - virtualizers
Date: Thu, 8 Nov 2018 18:53:05 -0500
Reply-to: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Sender: "plug" <plug-bounces@lists.phillylinux.org>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.2.1

On Thu, Nov 8, 2018 at 3:35 PM jeff <jeffv@op.net> wrote:

On 11/8/18 3:19 PM, Rich Freeman wrote:

in VMs is VMware which you typically wouldn't run on a linux host.

aside from the above, why?

As Rich said, Lee is more current but...it depends which "VMware."

VMware Workstation is intended for dev & testing & stuff and runs likeVBox as a GUI on top of an OS. While you can run it on Winblows, it'slike building a castle on sand... OTOH, it used to be a REAL pan withnew kernel versions on Linux. The KMS stuff made that a lot less bad.

VMware ESXi is the bare metal hypervisor. It was based on RHEL butyears ago (RHEL 3-4?) and has probably diverged a lot. They go to somelengths to NOT let you do stuff at the OS level, like not including`rsync` and making it pretty painful to add...stuff like that. Theyreally want to to use their tools and pay them licenses for them, notsurprisingly.

I'm forced to run Winblows 8.1 at $WORK and the only thing that lets medo anything useful is my Linux Mint VM in VBox. I'd much rather runWinblows in a VM on top of Linux, but I can't. So I've been forced tobuild the castle on sand. Snapshots and "save state" are criticalthough, both to recover from host OS crashes and arbitrary mandatoryreboots after arbitrary mandatory updates. To be fair, if I had toadmin Winblows I'd quit, but if I really had to, I'd force updates &reboots too, that's the only way to even have a chance of keeping itmarginally secure.

Thanks to Michael for the OP.

Later,
JP
--  -------------------------------------------------------------------
JP Vossen, CISSP | http://www.jpsdomain.org/ | http://bashcookbook.com/
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

References:
- [PLUG] new virtualbox exploit
  - From: Michael Lazin <microlaser@gmail.com>
- Re: [PLUG] new virtualbox exploit
  - From: jeff <jeffv@op.net>
- Re: [PLUG] new virtualbox exploit
  - From: prushik@gmail.com
- Re: [PLUG] new virtualbox exploit
  - From: Rich Freeman <r-plug@thefreemanclan.net>
- Re: [PLUG] new virtualbox exploit - virtualizers
  - From: jeff <jeffv@op.net>
- Re: [PLUG] new virtualbox exploit - virtualizers
  - From: Rich Freeman <r-plug@thefreemanclan.net>

Prev by Date: Re: [PLUG] new virtualbox exploit - virtualizers
Next by Date: [PLUG] DevOps practices/framework
Previous by thread: Re: [PLUG] new virtualbox exploit - virtualizers
Next by thread: [PLUG] DevOps practices/framework
Index(es):
- Date
- Thread