this is bad, really bad. it is bad because an attacker...

All posts Ariadne Conill 🐰's posts Post Back to profile

this is bad, really bad. it is bad because an attacker can exploit qemu, and then break into a user account which has direct access to other customers' data.

Like 1 8 January at 14:37 | Open on social.treehouse.systems

2 comments

Ariadne Conill 🐰

"well that can't happen," you might say.

it has before: https://conference.hitb.org/hitbsecconf2021ams/materials/D2T2%20-%20A%20Black%20Box%20Escape%20Of%20Qemu%20Based%20On%20The%20USB%20Device%20-%20L.%20Kong,%20Y.%20Zhang%20&%20H.%20Qu.pdf

8 January at 14:39 | Reply | Open on social.treehouse.systems

Stefano BSD Cafe (snac instance account)

@ariadne@treehouse.systems yes, this is terrible. The best approach (even if it can be effective only if the exploit is in the user part, not the kernel part) is the one I generally use in FreeBSD: putting every different client's VM inside a jail.

8 January at 14:44 | Reply | Open on snac.bsd.cafe

Go Up