a popular libvirt-based VPS panel does not bother to...

All posts Ariadne Conill 🐰's posts Post Back to profile

Ariadne Conill 🐰

a popular libvirt-based VPS panel does not bother to run customer workloads under separate UIDs. oh dear.

Like 8 January at 14:36 | Open on social.treehouse.systems

5 comments

Ariadne Conill 🐰

this is bad, really bad. it is bad because an attacker can exploit qemu, and then break into a user account which has direct access to other customers' data.

1 8 January at 14:37 | Reply | Open on social.treehouse.systems

Ariadne Conill 🐰

"well that can't happen," you might say.

it has before: https://conference.hitb.org/hitbsecconf2021ams/materials/D2T2%20-%20A%20Black%20Box%20Escape%20Of%20Qemu%20Based%20On%20The%20USB%20Device%20-%20L.%20Kong,%20Y.%20Zhang%20&%20H.%20Qu.pdf

8 January at 14:39 | Reply | Open on social.treehouse.systems

Stefano BSD Cafe (snac instance account)

@ariadne@treehouse.systems yes, this is terrible. The best approach (even if it can be effective only if the exploit is in the user part, not the kernel part) is the one I generally use in FreeBSD: putting every different client's VM inside a jail.

8 January at 14:44 | Reply | Open on snac.bsd.cafe

April @ c3soft

@ariadne oh yea I cant imagine anything goingwrong

8 January at 14:37 | Reply | Open on fediverse.gay

Stefano BSD Cafe (snac instance account)

@ariadne@treehouse.systems now I'm curious about the name

8 January at 14:38 | Reply | Open on snac.bsd.cafe

Go Up