Security Changes Summary
Moderator: drgrussell
2 posts
• Page 1 of 1
Security Changes Summary
by drgrussell » Wed Jul 01, 2009 7:33 pm
I am going to start this thread concerning what security changes I was forced to implement due to strange activity by users. Strange does not automatically mean evil, but the potential is there for strange activity to become a problem.
- drgrussell
- Site Admin
- Posts: 240
- Joined: Sat Feb 12, 2005 8:57 pm
Controlling virtual machines from a virtual machine
by drgrussell » Wed Jul 01, 2009 7:39 pm
You must control your virtual machine from outside the virtual machine network (eg from your own PC).
Someone over the last few days has been switching on a virtual machine, logging onto it, then switching control of the machine to a browser instance running on that virtual machine. This effectively stops me from knowing when a person has left the system, and potentially could make attacks on the system harder to trace (I say potentially, but actually my logs are much more complete than those shown via the interface).
I have now blocked all traffic from 10.0.0.0 from running virtual machine control scripts.
Someone over the last few days has been switching on a virtual machine, logging onto it, then switching control of the machine to a browser instance running on that virtual machine. This effectively stops me from knowing when a person has left the system, and potentially could make attacks on the system harder to trace (I say potentially, but actually my logs are much more complete than those shown via the interface).
I have now blocked all traffic from 10.0.0.0 from running virtual machine control scripts.
- drgrussell
- Site Admin
- Posts: 240
- Joined: Sat Feb 12, 2005 8:57 pm
2 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 1 guest