Slashdot Mirror

← Back to Stories (view on slashdot.org)

Virtualization Decreases Security

Posted by kdawson on from the more-chances-to-blow-it dept.

ParaFan writes "In a fascinating story on KernelTrap, Theo de Raadt asserts that while virtualization can increase hardware utilization, it does not in any way improve security. In fact, he contends the exact opposite is true: 'You are absolutely deluded, if not stupid, if you think that a worldwide collection of software engineers who can't write operating systems or applications without security holes, can then turn around and suddenly write virtualization layers without security holes.' de Raadt argues that the lack of support for process isolation on x86 hardware combined with numerous bugs in the architecture are a formula for virtualization decreasing overall security, not increasing it."

10 of 340 comments (clear)

  1. Uh oh by $RANDOMLUSER · · Score: 5, Funny

    Theo de Raadt asserts...
    CAUTION: flame war ahead.
    --
    No folly is more costly than the folly of intolerant idealism. - Winston Churchill
    1. Re:Uh oh by Anonymous Coward · · Score: 4, Funny

      CAUTION: flame war ahead. No there isn't! How dare you say that?? F-you! YOU GO TO HELL AND YOU DIE!!!
  2. VMware selloff by Anonymous Coward · · Score: 1, Funny

    Thanks for the insider tip Theo, I just dumped all of my VMware stock.

  3. But it's so fun by Anonymous Coward · · Score: 1, Funny

    You mean my strategy of running Windows inside of Mac Parallels inside of Pear inside a VMWare instance in a Wine bottle isn't the most secure, stable environment ever conceived? Sheeze. Maybe I should just get a Mac. :)

    --
    http://www.metagovernment.org/
    GOVERNMENT BY *ALL* THE PEOPLE

  4. Theo rocks, as his usual! by VincenzoRomano · · Score: 3, Funny

    And as there is no engineer that can develop hardware without security bugs, the only solution is to stay with insecurity!

    --
    Maybe Computers will never be as intelligent as Humans.
    For sure they won't ever become so stupid. [VR-1988]
  5. Re:History teaches once again... by mdielmann · · Score: 3, Funny

    It is not sustainable. It takes more calories to produce a child then you get from eating them. This assumes that you eat (only) your own children.
    --
    Sure I'm paranoid, but am I paranoid enough?
  6. Re:What are the big threats now? by zappepcs · · Score: 2, Funny

    The number one threat to America today? BEARS !

    --
    Support NYCountryLawyer RIAA vs People
  7. Comment removed by account_deleted · · Score: 2, Funny

    Comment removed based on user account deletion

  8. Re:Welcome to the rest of the IT world, Theo! by Anonymous Coward · · Score: 1, Funny

    Virtualization is overrated. For people who are really in the field to manage, it creates as much overhead as the it solves. Nobody cares about that. Virtualization is buzzword compliant, it has hypervisors, it can synergistically leverage stuff ! That's all that really matters in meetings. Whether it actually can or cannot do stuff isn't really very relevant.
    Even though in real life it can be of use in a few situations (although using it for security purposes might be akin to relying on chroot(8)).

  9. Re:History teaches once again... by value_added · · Score: 4, Funny

    There's still a lesson in diversity and computer security to be learned here.

    Indeed. Implementing proper security is no small potatoes.