Would installing an OS on an external ssd and booting into that to run pirated software while blocking access to other drives in your system or physically unplugging them be one way?
Or are there better ways to isolate the software you run and use as much as possible?
I don’t unfortunately. This is from a conversation I had with a researcher in VM escape.
As far as I’m aware peripherals are not actually passed through exactly but rather emulated on the guest machine. When you pass through a peripheral you’re only passing the input of that device, data is not sent upstream.
Whereas passing through the GPU you’re providing a means of accessing non-emulated devices through the hardware itself bypassing the isolation provided by virtualization entirely.
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !piracy@lemmy.dbzer0.com
⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.
GPU passthroughs can expose the host to a potentially compromised VM.
Interesting, do you have more information on that? Because why is GPU passthrough a problem but not other PCI devices?
I don’t unfortunately. This is from a conversation I had with a researcher in VM escape.
As far as I’m aware peripherals are not actually passed through exactly but rather emulated on the guest machine. When you pass through a peripheral you’re only passing the input of that device, data is not sent upstream.
Whereas passing through the GPU you’re providing a means of accessing non-emulated devices through the hardware itself bypassing the isolation provided by virtualization entirely.
That’s true, but the IOMMU on your host is supposed to prevent any accesses outside of the group you passed in
As long as the GPU is the only thing in that IOMMU group, you’re reasonably safe