|
Posted by =?Utf-8?B?ZGF2ZSBvLg==?= on August 3, 2007, 12:34 pm
If you were Registered and logged in, you could reply and use other advanced thread options
I have a number of legacy applications that run best on their original OS's
(Windows 98 and Windows NT 4). Since neither of these OS's are currently
supported with security patches, etc., and the applications require minimal
network access, I would like to know whether there is any kind of 'umbrella'
security provided by the host OS? Assuming, of course, that the host has
current patches, and up to date AV/malware software.
|
|
Posted by James Matthews on August 3, 2007, 2:20 pm
If you were Registered and logged in, you could reply and use other advanced thread options
Update them as best you can... Since you have a firewall and antivius on
your computer it should scan most of the incoming information. However for
the virtual machine i would say put a full security suit on it! There is
really nothing you can do..... They are they best ways out!
--
http://www.goldwatches.com/
>I have a number of legacy applications that run best on their original OS's
> (Windows 98 and Windows NT 4). Since neither of these OS's are currently
> supported with security patches, etc., and the applications require
> minimal
> network access, I would like to know whether there is any kind of
> 'umbrella'
> security provided by the host OS? Assuming, of course, that the host has
> current patches, and up to date AV/malware software.
|
|
Posted by Malke on August 3, 2007, 10:37 pm
If you were Registered and logged in, you could reply and use other advanced thread options
> I have a number of legacy applications that run best on their original OS's
> (Windows 98 and Windows NT 4). Since neither of these OS's are currently
> supported with security patches, etc., and the applications require minimal
> network access, I would like to know whether there is any kind of 'umbrella'
> security provided by the host OS? Assuming, of course, that the host has
> current patches, and up to date AV/malware software.
No, there is no "umbrella" protection. The operating systems running in
virtual machines are real operating systems and if they are connected to
the Internet, they are at risk. They are self-contained and separate
from the host OS. You need an antivirus and a firewall on any Windows
operating system. If you allow the Windows operating systems installed
in VMs to be on your Local Area Network with file/printer sharing
enabled, your other Windows machines are at risk also - exactly the same
as if you weren't running in a virtual machine but had an actual
physical computer.
You can get around this by not allowing your older operating systems to
access the Internet and/or your LAN. If you need these functions, you
need to provide adequate protection.
Malke
--
Elephant Boy Computers
www.elephantboycomputers.com
"Don't Panic!"
MS-MVP Windows - Shell/User
|
|
Posted by Roger Abell [MVP] on August 4, 2007, 1:19 am
If you were Registered and logged in, you could reply and use other advanced thread options
no network, not minimal but no network access. In that case the virtuals
are potentially less safe than if they were running on physical hardware
without network. As far as I have been made aware, there is no exploit
in the wild that attacks the host OS from a virtual, or other virtuals on
the same host for that matter, but there is code being seen in the wild that
does make the effort to detect whether it is in a virtual or not. Also, in
principal it is not impossible for code to work its way to the host from
a virtual, and that is even without a host provided virtual network or
share environment. So, today there is the appearance of a shielding
'umbrella' but in fact it seems that this is just a statement about today
rather than about the technology.
Roger
>I have a number of legacy applications that run best on their original OS's
> (Windows 98 and Windows NT 4). Since neither of these OS's are currently
> supported with security patches, etc., and the applications require
> minimal
> network access, I would like to know whether there is any kind of
> 'umbrella'
> security provided by the host OS? Assuming, of course, that the host has
> current patches, and up to date AV/malware software.
|
|
Posted by S. Pidgorny on August 4, 2007, 3:13 am
If you were Registered and logged in, you could reply and use other advanced thread options
reverse guests easily to "known good" state, eliminating accumulated...
issues. Perfect for honeypots, useful for business systems.
--
Svyatoslav Pidgorny, MS MVP - Security, MCSE
-= F1 is the key =-
* http://sl.mvps.org * http://msmvps.com/blogs/sp *
>I have a number of legacy applications that run best on their original OS's
> (Windows 98 and Windows NT 4). Since neither of these OS's are currently
> supported with security patches, etc., and the applications require
> minimal
> network access, I would like to know whether there is any kind of
> 'umbrella'
> security provided by the host OS? Assuming, of course, that the host has
> current patches, and up to date AV/malware software.
|
| Similar Threads | Posted | | Virtual PC 2007 (SP1) silently installs vulnerable MSXML6 | May 16, 2008, 1:52 pm |
| Security within Virtual Machine | December 5, 2005, 6:16 am |
| Microsoft Security Bulletin(s) for 1/9/2007 | January 9, 2007, 12:58 pm |
| Microsoft Security Bulletin(s) for 4/10/2007 | April 10, 2007, 1:19 pm |
| Microsoft Security Bulletin(s) for 7/10/2007 | July 10, 2007, 1:27 pm |
| Microsoft Security Bulletin(s) for 9/11/2007 | September 11, 2007, 1:12 pm |
| Microsoft Security Bulletin(s) for 10/09/2007 | October 9, 2007, 1:15 pm |
| HOTMAIL, ACCESS 2007 SECURITY ISSUE | December 16, 2007, 10:51 am |
| Norton Internet Security 2007 and Webroot Spy Sweeper Don't Mix | July 22, 2007, 1:14 am |
| Outlook 2007 Read Receipt Security Hole?! | September 30, 2008, 8:12 am |
|
XML site map