I really wish macOS implemented something like @QubesOS' netvm(s) at some point...
/cc @radian @XenoKovahhttps://twitter.com/Semmle/status/1057351261123739648 …
would that actually help? wouldn't a netvm still be able to trigger this kind of attack surface in connected VMs?
-
-
Even if -- I'd rather have my netvm exploiting a bunch of connected VMs, while still preserving those which are non-connected, or connected to other netvms (not to mention dom0/GUI), than having my whose system being pwnd/crashed. Don't you agree?
-
well - yeah, but that's only really useful if the user actually separates their data into multiple VMs already
- 3 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.