To mitigate this, for the internet I use virtual machine software that is regularly maintained (i.e. VMWare and not QEMU), use Linux as the host and Windows as the guest in the virtual machine, run all virtual machines that access the internet under a regular Linux user account (i.e. not root), use host only networking under VMWare for all virtual machines that access the internet and tell the host Linux firewall to block all services for that VMWare host only network except for file sharing (Samba) and the web server (Apache). Then, I use a Windows 95 virtual machine to do my regular internet access, the reason being that, for the last several years, every instance of malware that has invaded my Windows 95 virtual machine has caused it to promptly crash, thereby stopping the malware in its tracks before it can do worse damage and also immediately making me aware that I just came across malware. So far, I have yet to be able to duplicate this type of protection in later versions of Windows.

A comment on: Does running Windows in a virtual machine protect me from viruses?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2011.

(copied response)

Seems to me you could greatly mitigate the networking issue of VM's by shutting down the networking feature, at least temporarily. If it is possible, for example, to bar the VM from sending any data to the physical machine, but only to certain peripherals (particularly the monitor and printer), you could then, while this state lasts, safely use the VM for web browsing, knowing that all downloads, cookies, malware, etc., is being written EXCLUSIVELY to the VM, and NOT to the physical computer. Toss the VM session down the drain, and all malware, etc., vanishes with it.

But now for the BIG Question: Is this scenario even possible?

A comment on: Does running Windows in a virtual machine protect me from viruses?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2009.

But now for the BIG Question: Is this scenario even possible?

Please expand on your article and answer this, Leo!!! It's IMPORTANT!!!

A comment on: Does running Windows in a virtual machine protect me from viruses?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2009.

To reach the goal of "a computer for every kid" in our school system, Linux is the only way to go. Kids need to learn from their start they can do all sorts in Linux without that M$$$ stuff.

I'm especially angry with M$$$$ over their peremptory discontinuance of XP. I'm the decision maker for 200 computers in our various businesses and it's XP forever, and friends who are IT guys in large companies tell me they aren't scrapping all their computers for new ones just to pay M$$$ for a new operating system they don't need anyway, either.

M$$$$$ is a stupid greedy company caring only for itself and not the world "out there" which wants to keep using XP. That Ballmer person ought to be "whacked upside the head," a phrase used by Judge Jackson in the anti-trust case. There's no excuse for not continuing to sell it, expand site licenses, etc. particularly since support will continue until 2016. XP+SP4 could be very profitably sold in huge quantities @$50 per copy on hooks in stores; and it would be appropriate to charge existing users something for SP4 if there were to be such a thing.

Greed leads to piracy and ultimately will be its own comeuppance for M$$$$. It's history.

j

A comment on: Does running Windows in a virtual machine protect me from viruses?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2009.

Anyway, back to the topic, I have many reasons to keep a lot of alternative OS's in my computer all available in a VM. Customers and friends often ask me to show them how something is meant to work or whether it works properly in a certain environment. I have every Windows release(except ME which I could but don't use) from 2000 up to Win 7). Being able to jump in and out without rebooting is just so useful.

As Leo states, all the connectivity, shares, etc. are as difficult or easy to setup as they are in a traditional environment. I therefore treat a VM as an easily infected environment and so keep all my anti-virus software up-to-date (something that needs to be understood BTW, is that although Linux is virtually 'virus or germ proof', passing on or sharing infected files onto an unprotected Windows machine is the same as passing that same dirty file onto a normal unprotected Windows computer - the germ simply 'wakes up'.

WINE in Linux is pretty cool - I use it occasionally for MYOB simply because in WINE it runs almost natively. In Virtual machines, there is nothing that doesn't work in my experience. In fact, with the caveat that you do need modern quantities of memory, VM performance feels identical to working in a sole environment.

To Selinap and Gabe, I need to point out that using a VM for banking is a complete waste of time in 99.9% of cases. In banking, all your work is done behind a fortified encryption SSH screen (shown by a Padlock somewhere in your Window). A VM is no safer than your normal session.

The exception might be (because I haven't tested it) that a VM provides you with a layer of protection against a key-logger if you share your computer or if it's been accessible to someone malicious enough to install a key-logger application. A VM might protect you due to the fact that you've crossed over into a clean environment as you enter the VM. I'm open to correction on that though.

A comment on: Does running Windows in a virtual machine protect me from viruses?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2009.

Leo discusses the pros and cons of that here. It sounds like you've got a good suggestion for the "complexity" drawback he mentions at the very end of that article. While it does add complexity to a users daily computing, I could see having a dedicated VM that I ONLY use to:
1) Open Internet Explorer
2) Browse to BankA, BankB, or BankC to handle all of my personal banking needs
3) Close the browsers and then close the VM

I like it!

A comment on: Does running Windows in a virtual machine protect me from viruses?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2009.

That way, we have created an isolated environment for critical activities.

A comment on: Does running Windows in a virtual machine protect me from viruses?

Tech Questions? Get Answers! - Ask Leo! ... by Leo Notenboom
Leo's Answers Newsletter - Ask Leo! in your inbox every week.

All content Copyright © 2009.