⚠️ Just a reminder, folks:

The "container" movement on Linux emerged as a convenient way to manage different, possibly conflicting settings & dependencies for different apps on a machine. "Security" by sandboxing got tacked on later, and the quality of that isolation remains LOW regardless of all the trendy project names and acronyms that have filled that space.

Data centers' standard for high security consists of virtual machines (type 1 hypervisors) or separate dedicated hardware. Ain't no way, no how is a successful datacenter going to ask a giant, complex, contorted Linux or BSD (or hybrid Windows or Mac) kernel for sandboxing services to contain threats.

If you are using containers to enhance security – on any general-purpose machine – make sure they are running as VMs, or as sandboxes on a microkernel (not monolithic) architecture.
#infosec #security #containers #hypervisors #microkernel

Guillotine: Hypervisors for isolating malicious AI
https://arxiv.org/abs/2504.15499

#AntiAI #hypervisor #hypervisors #Guillotine #infosec #ai

Documentation in operating systems is cool. It is possible to extend and rewrite utilities as time goes on, as #freebsd proves. You can still have cool utilities, like #containers and #zfs and #hypervisors, good docs for them and a consistent base system.

I dunno where I am going with this, other than wishing I didn't have to peruse the Arch wiki and the Gentoo wiki for everything when I get stuck, and instead could just "man xyz" and get good answers, speaking as #nixos user.

🤡 Apparently, we're supposed to be impressed that these folks can build #hypervisors, because everybody else is just a clueless poser stacking virtual Legos. Meanwhile, they're busy patting themselves on the back for not mistaking their keyboard for a toaster. 🧠💡
https://virtualize.sh/blog/few-build-hypervisors-were-one-of-them/ #virtualization #techhumor #cluelessposers #developerlife #HackerNews #ngated

minikube start --driver=virtualbox --no-vtx-check

#virtualization
#kernelspace vs #userspace #hypervisors

https://chatgpt.com/share/8074761e-017e-4571-aa63-384ae40b9cc1

When a developer learns kubernetes microservices, works on a windows laptop protected by cyberark and behind bluecoat and must become a devsecops expert.

https://kubernetes.slack.com/archives/C1F5CT6Q1/p1720859668481369?thread_ts=1720714401.537019&cid=C1F5CT6Q1

#GPU-accelerated #VM on #Proxmox, #XCPng? Here's what you need to know
Two of the biggest beneficiaries of #Broadcom's price hikes, at least on the free and #opensource side of things, have been the Proxmox VE and XCP-ng #hypervisors.
In this #tutorial, we'll be looking at what it takes to pass a GPU through to VMs running on either platform, and go over some of the more common pitfalls you may run into.
https://www.theregister.com/2024/06/19/proxmox_xcp_ng_gpu_passthrough/

Whats the virtualization story for #Windows11 ARM? I am thinking about getting the #Qualcomm dev box, but other #Hyperv, I prefer the hardware acceleration of #VMWare. Are other #hypervisors working to bring support to #ARM ?

Обзор гипервизора Harvester 1.3.0

В процессе поиска подходящей платформы для того, чтобы инсталлировать Kubernetes у себя дома, я эксперементировал с разными вариантами. В этой статье - делюсь опытом работы с этой системой. Что такое Harvester? Официально - A Cloud Native Open Source Hyper-converged Infrastructure. Если попробовать сказать простыми словами - то эта операционная система, которая предназначена для запуска и управления Kubernetes, виртуальных машин и система хранения данных (СХД). Вот такая иллюстрация на сайте Harvester:

https://habr.com/ru/articles/815467/

#Kubernetes #longhorn #hyperconvergence #hypervisors

It must be Christmas because the #blog posts from my team at #linaro keep coming. In this one @ablu discusses how we have leveraged #rust to build portable #virtio backends that can be built to support multiple #hypervisors: https://www.linaro.org/blog/rust-device-backends-for-every-hypervisor/

🚀 Elevate Your Load Balancing with RELIANOID ADC! 🚀
Explore how RELIANOID ADC seamlessly integrates with various hypervisors, providing unmatched performance and resource optimization for load balancing. Deploy on the hypervisor of your choice and witness unparalleled efficiency!

Don't miss out on the future of virtualization! Read the full article now: 👉📖 https://www.relianoid.com/resources/knowledge-base/misc/hypervisors-available-for-load-balancing/
#Hypervisors #Virtualization #CloudComputing #TechInnovation #ITInfrastructure #DataCenter #CyberSecurity

Came across a video talking about learning #openstack. Is it still a thing? Everything I have heard has been, it's great but crazy complex! I guess like k8 but we love that 🤣

#homelab #selfhosted #selfhosting #hypervisors #crazy #complex

📰 #ESXiArgs #Ransomware is currently affecting more than 2000 #ESXi #Hypervisors around the world. In our lastest blog post we detail the analysis of the #malware artifacts, new #Yara rules to detect it and recommendations to keep your systems safe.
➡️ https://www.secuinfra.com/en/techtalk/hide-your-hypervisor-analysis-of-esxiargs-ransomware/

#infosec #cyberdefense #blueteam

Tip : When you have a #software that you need to launch as a one-off and you don't fully trust the source of it.

The best way to proceed is to #sandbox your main operating system by using a #VirtualMachine that revert to its initial state upon closing it.

This is easy to setup with most #hypervisors and is available in #Windows 10+ by installing Windows Sandbox in the optional features.

#security #tips

And here it is. Slackware 15 running under qemu/nvmm on NetBSD. Retro fvwm theme to honor that of Slackware 1.1.2.
Listening to aNONradio by having qemu redirect OSS output to /dev/audio. Performance is good with 2 dedicated cores and 4G of RAM.
#slackware #netbsd #qemu #nvmm #virtualization #hypervisors #sdf #anonradio

Installing Slackware 15.0 on qemu/nvmm (NetBSD/amd64 host). #slackware #netbsd #virtualization #qemu #hypervisors

Status update: servers are starting to come online now, and the maintenance period is coming to a close. We thank everyone for their patience during this time and apologize that it went for a few more hours than expected.

What happened is that we had to migrate #hypervisors across all of our servers from #SolusVM towards #Virtualizor. The reason? The backups that the former was generating just weren't reliable enough.

Plus it took TWO FULL DAYS to generate backups for only three machines, despite the fact that we have 24+ servers. So can you just imagine that?

Ideally, we want backups to happen on a daily basis and this just wasn't possible beforehand.