[О блоге] [наверх] [пред] [2017-08-15 08:30:02+03:00] [7dcdff84409eec98840f8f3057bc017ddd695593]

Theo de Raadt о виртуализации и безопасности

https://marc.info/?l=openbsd-misc&m=119318909016582

    > Virtualization seems to have a lot of security benefits.

    You've been smoking something really mind altering, and I think you
    should share it.

    x86 virtualization is about basically placing another nearly full
    kernel, full of new bugs, on top of a nasty x86 architecture which
    barely has correct page protection.  Then running your operating
    system on the other side of this brand new pile of shit.

    You are absolutely deluded, if not stupid, if you think that a
    worldwide collection of software engineers who can't write operating
    systems or applications without security holes, can then turn around
    and suddenly write virtualization layers without security holes.

    You've seen something on the shelf, and it has all sorts of pretty
    colours, and you've bought it.

    That's all x86 virtualization is.

Я с ним полностью солидарен и аргумент, так часто навязываемый, "запусти
это проприетарное ПО под виртуалкой" является плохим.

    [оставить комментарий]