On Tue, 6 Aug 2013 02:14:25 +0300 Alex Efros <[email protected]> wrote:
> Good news! > VirtualBox now works with hardened kernel if these options are disabled: > [ ] Enforce non-executable kernel pages > [ ] Randomize kernel stack base I wouldn't call such news good. KERNEXEC, especially on x86_64, plays a big role in protecting the kernel from both local and remote attacks. KVM doesn't require such arguable compromises (no pun intended).
pgppKqYnW_gsI.pgp
Description: PGP signature
