Quick question about VMs
When a VM accesses the internet through the host what information about the host is exposed\revealed ?
What if the VM accesses the internet through a network interface by itself ( a USB wifi adaptor) ?
What about a VPN connection on the VM itself ?
What would be the best way to have a VM connect to the internet while exposing the host little as possible.
I ask my questions because I am trying to decide whether to "explore and learn" from a VM hosted on a machine I use for personal matters or whether to have a completely separate machine dedicated to this purpose.
Thanks in advance for the help.
VMs & their host
-
- n00b
- Posts:3
- Joined:Thu Feb 05, 2015 10:02 pm [phpBB Debug] PHP Warning: in file [ROOT]/vendor/twig/twig/lib/Twig/Extension/Core.php on line 1275: count(): Parameter must be an array or an object that implements Countable
- Cool_Fire
- Not a sandwich
- Posts:1913
- Joined:Fri May 09, 2003 1:20 pm
- Location:41 6d 73 74 65 72 64 61 6d
- Contact:
Re: VMs & their host
There seems to be more than one question, but I'll allow it. =pPoochlookers wrote:Quick question about VMs
Normally it's either NAT'ed or given a virtual interface, which essentially makes the host machine the router/switch. This means something like tcpdump can view all packets. Encrypted traffic is still encrypted of course, but you can view destination addresses and ports at the very least. Also DNS requests are usually not encrypted.Poochlookers wrote:When a VM accesses the internet through the host what information about the host is exposed\revealed ?
The USB connection can also be sniffed, but it makes the process harder. Either way the physical network adapter assigned to the VM still needs to connect to a network so you'd really just be moving the problem from the VM host to the next network device.Poochlookers wrote:vWhat if the VM accesses the internet through a network interface by itself ( a USB wifi adaptor) ?
Usually a pretty good option for a full virtual machine. Not always an option on a container based VM.Poochlookers wrote:What about a VPN connection on the VM itself ?
Same things that work well anywhere. TOR, tunnels, VPN, whatever you have available. TOR and ssh tunnels usually have the advantage of not requiring special privileges to be used. So even on container based VMs they should work fine.Poochlookers wrote:What would be the best way to have a VM connect to the internet while exposing the host little as possible.
A VM should be fine. The precautions you should take don't really change much.Poochlookers wrote:I ask my questions because I am trying to decide whether to "explore and learn" from a VM hosted on a machine I use for personal matters or whether to have a completely separate machine dedicated to this purpose.
You're welcome.Poochlookers wrote:Thanks in advance for the help.
If we're breaking the rules, then how come you can't catch us? You can't find us? I know why. Cause, it's ... MAGIC!
Hackerthreads chat, where the party is going 24/7.
Hackerthreads chat, where the party is going 24/7.
-
- n00b
- Posts:3
- Joined:Thu Feb 05, 2015 10:02 pm [phpBB Debug] PHP Warning: in file [ROOT]/vendor/twig/twig/lib/Twig/Extension/Core.php on line 1275: count(): Parameter must be an array or an object that implements Countable
Re: VMs & their host
Thanks for the solid information, it is greatly apreciated,