Securing VM's Flashcards
Are the security measures for VM’s the same as a physical server?
Yes, they are very similar.
Update the OS
Ensure each VM has anti-virus
Use strong passwords
Can malware in one VM affect the other VM’s on the same server?
If configured properly, the malware can be isolated. If the security measures are poor, then the malware can escape.
How should you harden VM’s?
Remove any unnecessary virtual hardware to reduce your attack surface.
Should you use one server or many servers for multiple VM operations?
It is better to use multiple servers for VM’s in order to safeguard from denial of service attacks.
If compromised, an attacker can utilize all of the servers resources from a single VM that will crash the server for all of its VM’s.
What is Virtualization Sprawl?
When VM’s are created, used and deployed without proper management/oversight by the system admins.
Generally this is when you lose track of your VM’s and now you have a mess on your hands.
Notes about Type 2 VM’s
You can create a shared folder that both the Host OS and the VM can both read/write or read only from.
You can encrypt the VM’s “hard drive” so the file is protected in case someone get’s a hold of it.