kvm – WindowsTechs.com

This Is Not a Laptop, It’s a KVM Combo

Posted on August 19, 2024 by Donald Papp

A spare monitor and keyboard are handy things to have around, but they’re a bit of a hassle. They are useful for hardware development, plugging in to headless servers, or …read more Continue reading This Is Not a Laptop, It’s a KVM Combo→

Untrusted QEMU guest with access to host partition UUID/label

Posted on August 12, 2024 by PhilipRoman

I’m analyzing a system where services are isolated via QEMU. For storage, it gives each guest access to their own block device/partition on the host (for performance reasons).
I’m wondering if this enables a hypothetical exploit if the gue… Continue reading Untrusted QEMU guest with access to host partition UUID/label→

Custom Pneumatic Cylinders Lock This Monitor Arm in Place

Posted on August 9, 2024 by Dan Maloney

Few consumer-grade PCs are what you’d categorize as built to last. Most office-grade machines are as likely as not to give up the ghost after ingesting a few too many …read more Continue reading Custom Pneumatic Cylinders Lock This Monitor Arm in Place→

Google Launches $250,000 kvmCTF Bug Bounty Program for KVM Exploits

Posted on July 2, 2024 by Waqas

Google offers up to $250,000 for finding security holes in KVM, a key technology for virtual machines. This… Continue reading Google Launches $250,000 kvmCTF Bug Bounty Program for KVM Exploits→

Google Offering $250,000 for Full VM Escape in New KVM Bug Bounty Program

Posted on July 1, 2024 by Eduard Kovacs

Google has announced a new KVM bug bounty program named kvmCTF with rewards of up to $250,000 for a full VM escape.
The post Google Offering $250,000 for Full VM Escape in New KVM Bug Bounty Program appeared first on SecurityWeek.
Continue reading Google Offering $250,000 for Full VM Escape in New KVM Bug Bounty Program→

Can I use SELinux to add an extra layer of protection against 0-day VM escape exploits in KVM/QEMU?

Posted on March 20, 2024 by OneAndOnly

My host is Fedora, and I want to add an extra layer of protection against 0day KVM/QEMU exploits that execute code on the host. For example there have been CVEs where if we run a specially crafted malicious windows executable on the window… Continue reading Can I use SELinux to add an extra layer of protection against 0-day VM escape exploits in KVM/QEMU?→

Building a Better Keyboard and Mouse Switch

Posted on December 26, 2023 by Navarre Bartz

An exploded view render of a red 3D printed case with a green PCB is inside with visible USB-A connectors with a mouse and keyboard graphic above each and "A" and "B" labels above USB-C connectors on the other side.

Switching inputs between desktops seems like something that should be simple but can prove to be a pain in reality. [Hrvoje Cavrak] decided to take maters into his own hands …read more Continue reading Building a Better Keyboard and Mouse Switch→

Security considerations and differences between Bare metal and Virtualization

Posted on July 1, 2023 by Rocco

I’m currently working on a server. This server is meant to be converged, as in be my storage server and the place publicly accessible services run on. Services like some API’s in docker or k8s and maybe an occasional game server.
There are… Continue reading Security considerations and differences between Bare metal and Virtualization→

securing KVM (RedHat) VPS [duplicate]

Posted on April 6, 2023 by agiAWjoa0za

I worry about 2 things:

how to restrict access to guests via VNC? I guess, it can be possible if you disable VGA "lspci"-device (which is shown via lspci)
how to disable all other virtual PCI devices attached by KVM and prevent … Continue reading securing KVM (RedHat) VPS [duplicate]→

Pi-Cast Adds ATX Signalling To KVM

Posted on December 30, 2022 by Bryan Cockfield

A KVM is a great tool for administering a number of different computers without cluttering one’s desk with extra peripherals, or for having to re-connect the keyboard, video, and mouse …read more Continue reading Pi-Cast Adds ATX Signalling To KVM→