Quote:
Originally Posted by acetvman
I am running in a virtual machine environment the Ubuntu Linux for banking and other 'security concious' sites running a different VM for each.
|
To the part in bold, is there any particular reason for this? Obviously, your doing so on the basis of increased security, but why would this be more secure? In fact, a virtual machine can be as vulnerable, if not more so, than a physical machine and still requires all of the hardening aspects. Running a separate machine for each site, makes the project of maintaining and securing, which is an ongoing process that involves active analysis of the machines on a regular basis, much more difficult.
Instead of running a series of virtual machines, if you are really concerned about things like banking, use a liveCD as nothing will be stored on it and nothing can overwrite it.
Lastly, since you mentioned using Ubuntu for this purpose, I would recommend that you check out the Ubuntu Security Section. In particular, if I recall correctly, Bodhi Zazen has at least one white paper specificially about securing an Ubuntu system for use in applications like banking.