Boston Linux & Unix (BLU) Home | Calendar | Mail Lists | List Archives | Desktop SIG | Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings
Linux Cafe | Meeting Notes | Blog | Linux Links | Bling | About BLU

BLU Discuss list archive


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Discuss] web server can't see out but others can see in



On Fri, 28 Sep 2012 16:03:36 -0400
Tom Metro <tmetro+blu at gmail.com> wrote:

> VMs have networking options that let you chose between bridged and NAT
> connections between the host and guest. One thing Eric should clarify
> is whether the NAT setup is something set in an external firewall
> appliance, or was it part of the VM setup.

Doesn't matter. The host's network interface is exposed to all of the
guest's traffic. The host's NIC is also in promiscuous mode which itself
is not a vulnerability but it means that a compromised host or guest
can be used to sniff the internal network.

-- 
Rich P.



BLU is a member of BostonUserGroups
BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Valid HTML 4.01! Valid CSS!



Boston Linux & Unix / webmaster@blu.org