But they are both learning on virtualbox, they are getting virtualbox tutorials on class and they are getting. I have used qemu in the past and I really love it, I know its usually much faster. Be sure to configure network sharing on other computers in a way to limit access to file and directory shares.Īfter some days thinking on this and your responses I finally made my decision.įirst, about the "virtualbox" vs "qemu", there is something important here: this setup is not for me, is for 2 people that are still learning. Isolating such systems might be impractical or inconvenient. VirtualBox supports emulating hardware and BIOS components but that still might not fully trick the malware design. VirtualBox supports creating virtual networks, but again, if dealing with a malicious environment then the host system should be isolated from other computers.Īs already mentioned, a caveat with training is much malware is designed to detect running in a virtual environment and will fail or refuse to execute in that environment. That way any damage caused by malicious tinkering and malware is limited to that single system. Generally, an optimal approach with malicious tinkering with virtual systems is to do so on isolated systems. That approach prevents the guest system from seeing anything above that level in the directory. Further isolation is possible by creating shared folders at the lowest level of a directory. Generally, tinkering with malware or peforming malicious activities will preclude using most of those network options.ģ) Shared folders are safe most of the time as long as the underlying traditional Linux permissions and ownership approach is used to limit access only to the shared folders. VMs can be configured to connect to the host using other VirtualBox network options. Theoretically, as long as nobody discovers a zero-exploit that network configuration will keep the virtual system isolated from the host. For additional security, most VMs function just fine using the default NAT network arrangement. The extension pack has license limits against commercial usage but not personal usage.ġ) Safe enough for many use cases but not all.Ģ) Any VM can be configured not to use a network card. ![]() I have used Proxmox too in a small business environment.Įxcept for the extension pack, which is needed for shared folders, the software is GPL. For larger scale virtual deployments look into Proxmox. For desktop VMs I think the software is just fine. I have been using VirtualBox since the Innotek days. I will respond myself with the final thoughts ![]() Sorry for not answer one by one, there are a lot of responses today and my English is not very good, would end writing almost the same response to all of you! I really thank you all for all the help, is totally welcome. Should I totally disable this?ĮDITED: Solved! Absolutely thanks for all your responses, I upvoted all of you. VMs could reach other network devices? Any way to sandbox this?3.- I think there is a feature to share folder between VM and Host. I am not a fan of just telling them "dont do it, its dangerous", I think its always better just to see for themselves.but always on a safe environment.ġ.- Do you think it will be safe enough to do such things on an VM?2.- Network adapter worries me. I think you catch the idea with those examples. Want to install every OS and try it? Do it on VirtualBoxWant to know what how malware encrypts or what a bitcoin miner does? Launch a Windows VM on VB and just try itWant to do your first rm -r? Just create a Linux VM and try itWant to visit a dangerous website with firewall ON and OFF to see differences? try it on the VM But a lot of time have passed until I used it and dont know if this is still a safe method for this kind of things. I live with 2 young people that are learning IT at school now and I am very happy with that but want to setup a safe enviroment for them.I got something planned, just teach them to use VirtualBox for everything they try. Hi! I am an "old IT technician" with a very humble homelab at home.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |