• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 541
  • Last Modified:

Virtual Machine Security

I'm running a VM which connects to a wireless network completely separate from my office LAN. (i.e., I've disabled the wired NIC on the VM and the connection is not bridged... I use a USB WiFi adapter which provides the VM with an internet connection. The question of security came up today - if my VM were to become infected, could it also infect my host? (From what I've read this is a rather debatable question, so I'm excited about what discussions may arise.)
0
MassanuttenComputer
Asked:
MassanuttenComputer
1 Solution
 
arzkaCommented:
As long as they share no drives or network interfaces, it shouldn't be possible for the host system to be infected. If you make backups you are able to access on the host system and actually do so, you obviously risk infecting the host system too, but that's not really within the scope of this question.

I assume you configured the VM itself not to have a network interface instead of just disabling it from the VM operating system. If not, and if we assume the possibilities are endless, you might be infected with a virus that'd re-enable the network interface, sniffed the traffic enough to configure it properly and proceed to infecting your system.

..and if that was an issue to you, you would've made sure there's no way for that to happen - or would probably have set the system up in a completely isolated machine in the first place.

One possible issue is of course another machine at your location connecting to the said WLAN by accident(?), being infected and then spreading the virus when reconnected to the proper network. Not very probable assuming you bothered to protect the WLAN and made sure nobody else has access to it at your location.  
0
 
TolomirAdministratorCommented:
Virtualization tools provide a sandbox and there are ways to break out of the sandbox.
At least use latest version of these tools and also use security tools on your virtual machine.

See also:

An Empirical Study into the Security Exposure to Hosts of Hostile Virtualized Environments
http://taviso.decsystem.org/virtsec.pdf

Tolomir

No virtual machine tested was robust enough to withstand
the  testing  procedure  used,  and  multiple  exploitable  flaws
were presented that could allow an attacker restricted to a vir-
tualised environment to reliably escape onto the host system.
The  results  obtained  demonstrate  the  need  for  further
research into virtualisation security and prove that virtualisa-
tion is no security panacea.

Open in new window

0
 
MassanuttenComputerAuthor Commented:
Thanks for the research info - excellent article and exactly what I was looking for.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Cloud Class® Course: CompTIA Cloud+

The CompTIA Cloud+ Basic training course will teach you about cloud concepts and models, data storage, networking, and network infrastructure.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now