Email or username:

Password:

Forgot your password?
Ariadne Conill 🐰

a popular libvirt-based VPS panel does not bother to run customer workloads under separate UIDs. oh dear.

A screenshot from a SolusVM box, it is running multiple customer workloads as the "qemu" user.  These workloads belong to different customers and share a common security boundary, meaning that if qemu is compromised, the attacker will have access to every customer's disk images.
5 comments
Ariadne Conill 🐰

this is bad, really bad. it is bad because an attacker can exploit qemu, and then break into a user account which has direct access to other customers' data.

Stefano BSD Cafe (snac instance account)
@ariadne@treehouse.systems yes, this is terrible. The best approach (even if it can be effective only if the exploit is in the user part, not the kernel part) is the one I generally use in FreeBSD: putting every different client's VM inside a jail.
April @ c3soft

@ariadne oh yea I cant imagine anything goingwrong

Go Up