VMWare
Results 1 to 8 of 8

Thread: VMWare

  1. #1
    Member
    Join Date
    Dec 2001
    Posts
    84

    VMWare

    This may have been posted before but I just don't have time to search the forums......sorry,
    After installing VMware in win XP pro, fully patched, I install a new OS like linux or winME do I still need to patch the OS that is running under VMWare?
    What I'm doing is installing every OS I can, into VMWare, that is installed on my laptop running winXP Pro. And I was just wondering if the host os, being patched and secure, will protect the guest operating systems while they run.
    You can\'t squeeze cheese from a goat before it\'s hatched.............

  2. #2
    BANNED
    Join Date
    Nov 2003
    Location
    Baton Rouge
    Posts
    724
    You should probably patch any and all programs//OS running on your computer. But mine is an uneducated guess so maybe you should wait for a few more suggestions.
    When death sleeps it dreams of you...

  3. #3
    Senior Member
    Join Date
    Jul 2003
    Posts
    813
    Depends on what type of net connection you allowed to vmware. If I remember correctly if it's NAT you run the risk of getting a compromised virtual OS allowing access to your host OS. If it's bridged then you should be fine, though I don't know why you wouldn't want to patch your guest OS anyway... unless you're running it in host-only mode and try to break into it.

    I hope I remembered this right, I just made a point of having it bridged always, even though I run behind a router... you can never be too carefull
    /\\

  4. #4
    Just Another Geek
    Join Date
    Jul 2002
    Location
    Rotterdam, Netherlands
    Posts
    3,403
    Bridged uses a second ip adress on the ethernet card of the host OS! If you're running bridged, you can access the guest OS by it's own IP.

    The only way to be "protected" is by running the vmware guest OS in host-only networking mode with routing turned off on the host OS.

    I'd say upgrade it unless you deliberately want to run a vulnerable system for testing purposes.
    Oliver's Law:
    Experience is something you don't get until just after you need it.

  5. #5
    rebmeM roineS enilnOitnA steve.milner's Avatar
    Join Date
    Jul 2003
    Posts
    1,018
    Make sure you keep all your guest OSs up to date. Vunerabilities come from more places that just network ports etc. I'd also install AV on guest OSs as well.

    Steve
    IT, e-commerce, Retail, Programme & Project Management, EPoS, Supply Chain and Logistic Services. Yorkshire. http://www.bigi.uk.com

  6. #6
    Member
    Join Date
    Dec 2001
    Posts
    84

    Bridged

    I am installing guest os's under a bridged network. I will update all, and install the usual protective software on each operating system (avg, spybot, adaware, zonealarm.. etc.). Thanks for the replies.
    You can\'t squeeze cheese from a goat before it\'s hatched.............

  7. #7
    IT Specialist Ghost_25inf's Avatar
    Join Date
    Sep 2001
    Location
    Michigan
    Posts
    648
    Yes you need to patch every Virtual Machine. When you install an OS in VM it acts as a stand alone OS. It will have its own IP, you will see it as a separate machine in my network places, and so on and so forth. If you donít patch the VM OS you will be left open for every attack out there. Reason I know this is because I went to the Microsoft seminar where they talked about this incredible software. I asked the Microsoft rep this exact question, and he told me the exact same thing Iím telling you. Also run AV and FW software on the VM OS so you donít risk infecting your laptop.
    S25vd2xlZGdlIGlzIHBvd2VyIQ

  8. #8
    Banned
    Join Date
    Apr 2003
    Posts
    1,147
    Concur. We use VMWare and ESX to virtualize servers and other systems. Our standard procedure is to treat the VMs just like you would a hard system. Lock down admin accounts, disable guest accounts, patch, AV, firewall--the whole deal. When they are running, there is no difference--from the outside--between a VM system and a physical system.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides