Unless that was what WannaCry was doing through SMB1. I don't recall reading that there are circumstances now where a process with such write access could write to the root of the shared folder or another folder not in the path of the shared folder. The second is a possible and dangerous subset of the first.īeing able to write to a shared folder does allow writing to everything within that shared folder. Sharing the "Shared" folder won't allow access to "MyVM", even though they're on the same partition. The first could be lots of things, such as on a Windows host: "C:\MyVM" vs ![]() SecretCode wrote:write access to the machine folder Jul 2009, 10:20 Location: Finland Primary OS: Ubuntu other VBox Version: PUEL Guest OSses: Ubuntu, XP, other ![]() Is case 2 - shared access to a distinct subdirectory - safer? - Does the shared folder protocol restrict file read/write/deletes to within the specified subdirectory? SecretCode Posts: 67 Joined: 17. Was it a risk in the past, but now it isn't. Is this a genuine, major risk (to the extent that you should never do this - I don't expect shared folders in VMs will ever be risk-free)? vdi files and snapshots all stored, as default, in "~/VIrtualBox VMs".Ĭase 1: A shared folder to the host's home dir "~" is set up, with read/write access.Ĭase 2: A shared folder to "~/Shared" on the host is set up, with read/write access. If the guest has write access to the machine folder, it could in principle delete critical files and corrupt/crash the vm.Įxample (I'm using Linux guests on a Linux host but I expect the answer does not depend on OS types): ![]() This must be a very common setup - if the host has only one drive or partition, shared folders will be on the same drive/partition. But I can't find any posts or pages about it now. I think I recall reading that there were major risks in giving a guest VM write access through a shared folder to the same partition that the virtual machine files (.vdi files, and/or snapshots, and/or.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |