zlacker

[parent] [thread] 1 comments
1. kevinr+(OP)[view] [source] 2025-12-18 17:12:07
> Virtual machines are treated as a security boundary despite the fact that with enough R&D they are not. Hosting minecraft servers in virtual machines is fine, but not a great idea if they’re cohosted on a machine that has billions of dollars in crypto or military secrets.

While I generally agree with the technical argument, I fail to see the threat model here. Is it that some external threat would have prior knowledge that an important target is in close proximity to a less hardened one? It doesn't seem viable to me for nation states to spend the expensive R&D to compromise hobbyist-adjacent services in a hope that they can discover more valuable data on the host hypervisor.

Once such expensive malware is deployed, there's a huge risk that all the R&D money is spent on potentially just reconnaissance.

replies(1): >>hsbaua+Jd1
2. hsbaua+Jd1[view] [source] 2025-12-18 23:23:34
>>kevinr+(OP)
Yes. Docker too.
[go to top]