Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://djsumdog.com/objects/ff4ca96c-0b6a-4465-972d-60a4a0166276">djsumdog (djsumdog@djsumdog.com)'s status on Tuesday, 18-Mar-2025 03:07:34 JST</a><a href="https://djsumdog.com/users/djsumdog" title="djsumdog@djsumdog.com"><img src="https://gnusocial.jp/avatar/2108-48-20220727014656.webp" width="48" height="48" alt="djsumdog" style="position: absolute; left: 0; top: 0;">djsumdog</a><div><a href="https://mt.watamelon.win/objects/0195a537-75a9-016d-972d-1e9f3a1a02c6" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/1517" title="pomstan@xn--p1abe3d.xn--80asehdb">pomstan</a></li><li><a href="https://gnusocial.jp/user/260880" title="tadano@mt.watamelon.win">Tadano</a></li></ul></div></section><article><p>I have one Incognet VM and I just use it as a proxy for torrent traffic via Wireguard. E-mail stays on a dedicated elsewhere.</p><p>Since the article mentions a similar situation on BuyVM, I'm wondering if this is just a case of the hypervisor allocation block storage and not wiping it first. In that case, it's not a vulnerability in getting stuff from other peoples' VMs. It's a situation of reusing the same blocks for a different VM allocation.</p><p>Anything you put on a cloud host (or even a dedicated host) can be fucked with. Even if you use full disk encryption and have to login via VNC to unlock it on boot, the host can always get your disk key out of memory. A dedicated sever can always monitor the remote KVM.</p><p>I can see why a provider wouldn't zero out storage on allocation. That would be incredibly show. But they could zero old volumes x days after cancellation before returning them to the storage pool.I think the real takeaway here is zero out your VM disks before you cancel a service.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4747698#notice-9299733">In conversation</a><time datetime="2025-03-18T03:07:34+09:00" title="Tuesday, 18-Mar-2025 03:07:34 JST">about 18 days ago</time> <span>from <span><a href="https://djsumdog.com/objects/ff4ca96c-0b6a-4465-972d-60a4a0166276" rel="external" title="Sent from djsumdog.com via ActivityPub">djsumdog.com</a></span></span><a href="https://djsumdog.com/objects/ff4ca96c-0b6a-4465-972d-60a4a0166276">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
djsumdog (djsumdog@djsumdog.com)'s status on Tuesday, 18-Mar-2025 03:07:34 JSTdjsumdog
in reply to
I have one Incognet VM and I just use it as a proxy for torrent traffic via Wireguard. E-mail stays on a dedicated elsewhere.
Since the article mentions a similar situation on BuyVM, I'm wondering if this is just a case of the hypervisor allocation block storage and not wiping it first. In that case, it's not a vulnerability in getting stuff from other peoples' VMs. It's a situation of reusing the same blocks for a different VM allocation.
Anything you put on a cloud host (or even a dedicated host) can be fucked with. Even if you use full disk encryption and have to login via VNC to unlock it on boot, the host can always get your disk key out of memory. A dedicated sever can always monitor the remote KVM.
I can see why a provider wouldn't zero out storage on allocation. That would be incredibly show. But they could zero old volumes x days after cancellation before returning them to the storage pool.I think the real takeaway here is zero out your VM disks before you cancel a service.
In conversationabout 18 days ago from djsumdog.compermalink

Public

Embed Notice

HTML Code

Corresponding Notice