Bonum Certa Men Certa

Don't Host GNU/Linux Under Hyper-V or Windows; There Are Back Doors

Azure



Summary: Reminder that Microsoft's proprietary hosting environments have got holes in them, facilitating access even to guests (irrespective of the operating system)

ONE THING we know for sure, especially owing to Edward Snowden's leaks, is that Microsoft and the NSA are two heads of the same hydra (one is privately-owned).



This morning we explained that Windows gets the latest back doors, whereas GNU/Linux gets endorsement from the British government (for internal use), so why would anyone want to make GNU/Linux dependent on (or a guest under) Windows hosts? Putting GNU/Linux on Azure is bad enough, but the same goes for hosting GNU/Linux as a virtual machine under Windows (a Trojan horse for the NSA), especially with Hyper-V (which is proprietary). According to [1], there are now vulnerabilities (read: back doors) in Hyper-V, so even the guests are being compromised (through the host). The same back doors that the NSA puts in Microsoft products (with Microsoft's help) may turn out to be exploited by non-state actors [2], based on an example Bruce Schneier gave today.

There are other cases where anything from Microsoft should be strongly avoided. Cars are increasingly becoming surveillance devices [3], especially ones with Microsoft inside (instead of Linux inside) and we know this because of Microsoft's connection to Ford and Ford's own position on surveillance.

In short, those who value privacy should avoid everything from Microsoft, including the surveillance device which is Xbox (chat, camera, et cetera) and malware called Skype. When you use something from Microsoft you should assume to be under surveillance. Evidence provided by Edward Snowden should reassure you that you're not being "paranoid".

Related/contextual items from the news:



  1. Whodunit: A Hyper-V failure may reveal fabled 'escape attack'


  2. Cell Phone Tracking by Non-State Actors


  3. 10 security, privacy issues you might not know about your car’s auto-location services
    As cars become more wired to the Internet and other communications services, the threat that your personal information and privacy could be exploited goes up exponentially.

    You can understand the concerns since at least one study from Frost & Sullivan found that the market for telematics services provided by auto manufacturers in North America is expected to increase from 11.8 million subscribers in 2012 to 31.6 million in 2016.


Recent Techrights' Posts

Links 25/12/2024: Windows TCO Brought to SSH, Terence Eden 'Retires'
Links for the day
Gemini Links 25/12/2024: Reality Bites and Gopher Thanks
Links for the day
Links 25/12/2024: Latest Report Front Microsoft Splinter Group, War Updates
Links for the day
Links 25/12/2024: Hong Kong Attacks Activists During Holidays, Xerox to Buy Lexmark
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, December 24, 2024
IRC logs for Tuesday, December 24, 2024
Gemini Links 25/12/2024: Open Source Social and No Search
Links for the day
Brittany Day Connects Windows Ransomware to "Linux" Using Microsoft LLMs (FUD Galore, Zero Effort, No Accountability)
FUD and misinformation made by Microsoft LLMs again?
Links 24/12/2024: Labour Strikes and TikTok Scrambling to Prop Up Radical Politicians That Would Protect TikTok
Links for the day
Where the Population is Controlled by Skinnerboxes Inside People's Pockets (or Purses)
A very small fraction of mobile users practise or exercise freedom/control over the skinnerbox
[Meme] Coin-Operated Publishers (Gaming the Message, Buying the Narrative)
Advertise (sponsor) to 'play'
Advertisers and Their Covert Impact on Publications' Output (or Writers' Topics of Choice, as Assigned or Approved by Editors)
It cannot be trivially denied that sponsorship in the form of "advertising" impacts where publishers go (or don't go, won't go)
Terrible Year for Microsoft Windows in Cyprus
down from 86% to 72% since January
[Meme] How to Kill Unions (Staff on Shoestring Budget Cannot Afford Lawyers)
What next for the EPO? "Gig economy"?
The EPO's Staff Union (SUEPO) Takes Legal Action to Rectify the Decrease in Wages (Lessening of Purchasing Power)
here is what the union published
Gemini Links 24/12/2024: Deedum Gemini Client Gets Colour Support, Advent of Code 2024
Links for the day
Microsoft Windows Slides to New Lows in Colombia
Now Windows is at an all-time low
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, December 23, 2024
IRC logs for Monday, December 23, 2024
A Strong and Positive Closing for the Year's Last Week
In a lot of ways this year was a good one for Free software
Feels Too Warm for Christmas
Christmas is here, no snow in sight
Links 23/12/2024: 'Negative Time' and US Arms Taiwan Again
Links for the day
Links 23/12/2024: The Book of Uncommon Beings, Squirrels, and Slop Ruining Workplaces
Links for the day
Links 23/12/2024: North Korean Death Toll in Russia at ~1,100, Oligarch Who Illegally Migrated/Stayed (Musk) Shuts Down US Government
Links for the day
The World's 'Richest Country' Chooses GNU/Linux
This has gone on for quite some time
Richard Stallman on Love
Richard Stallman's personal website includes a section that lists three essays on the subject of love
Apple's LLM Slop Told Us Luigi Mangione Had Shot Himself, BetaNews Used LLMs to Talk About a Dead Linus Torvalds
They can blame it on some bot
Microsoft, Give Me LLM Slop About "Linux" and "Santa", I Need Some Fake Article...
BetaNews is basically an LLM slop site
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, December 22, 2024
IRC logs for Sunday, December 22, 2024