From mboxrd@z Thu Jan  1 00:00:00 1970
X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me
X-Spam-Level: 
X-Spam-Status: No, score=-0.3 required=5.0 tests=BAYES_00,
	REPLYTO_WITHOUT_TO_CC autolearn=no autolearn_force=no version=3.4.4
X-Google-Thread: 103376,af0c6ea85f3ed92d
X-Google-NewGroupId: yes
X-Google-Attributes: gida07f3367d7,domainid0,public,usenet
X-Google-Language: ENGLISH,ASCII-7-bit
Received: by 10.68.74.201 with SMTP id w9mr6495939pbv.0.1328996295270;
        Sat, 11 Feb 2012 13:38:15 -0800 (PST)
Path: 
 wr5ni13679pbc.0!nntp.google.com!news2.google.com!goblin2!goblin.stu.neva.ru!aioe.org!.POSTED!not-for-mail
From: "Dmitry A. Kazakov" <mailbox@dmitry-kazakov.de>
Newsgroups: comp.lang.ada
Subject: Re: Arbitrary Sandbox
Date: Sat, 11 Feb 2012 22:38:05 +0100
Organization: cbb software GmbH
Message-ID: <1sqnritpwwaip.43b7b5fci9nw.dlg@40tude.net>
References: 
 <8e83f2be-c6e9-4b0b-b53c-d50fe70d01e1@pq6g2000pbc.googlegroups.com>
 <jh25oo$lsl$1@speranza.aioe.org>
 <b413fd6c-dc65-4b85-8126-6d9704c2e3c5@qt7g2000pbc.googlegroups.com>
 <702c5d55-ff96-486c-bff9-93aa273f6217@i18g2000yqf.googlegroups.com>
 <av564ljocz2g$.wtif72ho5x4m.dlg@40tude.net>
 <ecdcee71-7e41-461a-a3e1-de9f0c0f51f3@m2g2000vbc.googlegroups.com>
Reply-To: mailbox@dmitry-kazakov.de
NNTP-Posting-Host: trR2WuoGABtEWk7YPfvgdQ.user.speranza.aioe.org
Mime-Version: 1.0
X-Complaints-To: abuse@aioe.org
User-Agent: 40tude_Dialog/2.0.15.1
X-Notice: Filtered by postfilter v. 0.8.2
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Date: 2012-02-11T22:38:05+01:00
List-Id: <comp.lang.ada>

On Sat, 11 Feb 2012 13:15:12 -0800 (PST), Maciej Sobczak wrote:

> On 11 Lut, 12:39, "Dmitry A. Kazakov" <mail...@dmitry-kazakov.de>
> wrote:
> 
>> I wonder when (maybe already) the malware will start to target specifically
>> virtualization software.
> 
> That would not be any different from a malware that targets separate
> physical machines. This of course exists already, but the advantage of
> a virtual machine is that it can be protected by means that are
> outside of it. For example, a virtual machine can be put behind a
> firewall that is outside of the virtual machine (and is therefore
> unreachable from inside of it) instead of relying on a firewall that
> is part of the sandboxed system. I count it as an added security.

A firewall running on the same hardware is not outside. There is no
difference sp long the insulation is software-based. The only difference
could be if the host OS is more secure than the guest one.

Evidently, a guest OS is as secure as the host OS is, or less.

> I think that VM-based sandbox is safer than no sandbox at all.

I think that VM is yet another distraction (like firewalls, anti-virus
software are) rather that a solution of safety problems of existing OSes
and protocols.

-- 
Regards,
Dmitry A. Kazakov
http://www.dmitry-kazakov.de