|
Posted by on February 13, 2008, 6:38 am
If you were Registered and logged in, you could reply and use other advanced thread options
Hi all,
Don't know whether it's the good spot to post but this is a simple
question and I did not find any studies about this point:
I know that virtualization is seen as a great solution to managing the
data center of the future; server virtualization enables besides a
better way to address common issues like resources allocation and
optimization, hot plug application deployment, space and energy
consumption savings and so on...
But: My question is from the security and anti-hacking protection
point of view. Someone says that "virtualization allows securisation
and isolation of a network as breaking a virtual system doesn't allow
to take over the whole system (and especially the host system)".
Personnally I wonder how one can be so sure.
What if a server "virtually" hosting my app and another one which is a
great security hole? If a hacker manage to take over the virtual
system hosting the "loosely secured app" is it simple (or not?) for
him to take over the other virtual systems or ,what's even worse, the
whole system?
Any idea?
Any link where this issue is addressed?
Cheers
num
|
|
Posted by Sebastian G. on February 13, 2008, 8:08 am
If you were Registered and logged in, you could reply and use other advanced thread options
num_gg@laposte.net wrote:
> But: My question is from the security and anti-hacking protection
> point of view. Someone says that "virtualization allows securisation
> and isolation of a network as breaking a virtual system doesn't allow
> to take over the whole system (and especially the host system)".
> Personnally I wonder how one can be so sure.
Depends very much on the implementation. Virtuozzo and User Mode Linux, for
example, offer virtually no security boundaries.
|
|
Posted by Russell Wood on February 13, 2008, 6:25 pm
If you were Registered and logged in, you could reply and use other advanced thread options >
> ... securisation ..
WTF?
> ... If a hacker manage to take over the virtual system hosting the
> "loosely secured app" is it simple (or not?) for him to take over the
> other virtual systems or ,what's even worse, the whole system?
Possibly. Drop the guest, mount its file system and make modifications
then bring the guest back up.
--
Russell Wood
<http://www.dynode.net/~rjw/>
|
|
Posted by on February 18, 2008, 10:54 am
If you were Registered and logged in, you could reply and use other advanced thread options
Thanks to *all* for your answers and links for further information.
I close the thread (but the issue seems far from closed).
cheers
Num,
|
|
Posted by Andy on February 19, 2008, 1:49 am
If you were Registered and logged in, you could reply and use other advanced thread options
num_gg@laposte.net wrote:
> Hi all,
>
> Thanks to *all* for your answers and links for further information.
>
> I close the thread (but the issue seems far from closed).
Beg pardon?
|
| Similar Threads | Posted | | Temporary FTP Server - Security | April 20, 2006, 2:05 pm |
| Server Co - Lo and 2 factor security | May 25, 2006, 3:21 am |
| Terminal Server Security | December 6, 2006, 5:10 pm |
| SSL security with server certificate compromised | December 22, 2006, 7:06 am |
| setting up a server to test security apps | February 22, 2005, 9:50 pm |
| Q: Security management in Client/Server environments (especially CORBA) | May 16, 2005, 4:01 pm |
| Best RADIUS server | July 29, 2004, 9:25 am |
| RSA ACE server and Open BSD | July 10, 2005, 3:34 pm |
| Re: Know about a proxy server? | January 2, 2007, 1:15 pm |
| Re: Know about a proxy server? | January 2, 2007, 7:21 pm |
|
XML site map