XP Mode and security

S

swarfega

da Cleaner
Guru
Gold Member
VIP
Local time
2:52 PM
Messages
4,925
Would you need to install any anti virus software for the new XPM as well as your main OS?
 

My Computer

Computer Manufacturer/Model Number
self built
OS
Windows 7 Professional 64-bit
CPU
Intel E8400 3GHz
Motherboard
Intel DX48BT2
Memory
Kingston PC3-10700H 4Gb
Graphics Card(s)
XFX Radeon HD 5850 BlackEd.
Sound Card
Asus Xonar DG
Monitor(s) Displays
2x Samsung SM-T220HD 22"
Screen Resolution
1680x1050 on two monitors
Hard Drives
OCZ Vertex 2 120gb 3.5" (OS)
Seagate Momentus XT 500gb
Samsung F3 1Tb (games)
2x Samsung F1 1Tb
PSU
Thermaltake ToughPower 850w
Case
Thermaltake Armor
Cooling
Scythe Mugen II
Keyboard
Microsoft Comfort Curve USB
Mouse
Razer Diamondback 3G
Internet Speed
8128/443
Good question, Nick. I'm sure that some people will say Yes and others will say No. Personally, I would say No as it might lead to a conflict issue. This is NOT the same as having a multi-boot system where you can have separate AVs without conflicting (since the OSes are run separately). With this feature, XP Mode, is an application that runs under W7 and, therefore, uses the AV security present on the host (W7).

Have a look here Hyper-V, Virtualization | Server and Application Resources on TechNet

Specifically, look at Virtualization and Security: What Does It Mean for Me? Goto the subsection entitled Virtualization Security (the 3rd tab, approximately halfway through the presentation).

Note that you will need to have Silverlight installed, and you will have to use the 32-bit browser.
 

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Dwarf Dwf/11/2012 r09/2013
OS
Windows 8.1 Pro RTM x64
CPU
Intel Core-i5-3570K 4-core @ 3.4GHz (Ivy Bridge) (OC 4.4GHz)
Motherboard
ASRock Z77 Extreme4-M
Memory
4 x 4GB DDR3-1600 Corsair Vengeance CMZ8GX3M2A1600C9B (16GB)
Graphics Card(s)
MSI GeForce GTX770 Gaming OC 2GB
Sound Card
Realtek High Definition on board solution (ALC 898)
Monitor(s) Displays
ViewSonic VA1912w Widescreen (VGA)
Screen Resolution
1440x900
Hard Drives
OCZ Agility 3 SSD 120GB SATA III x2 (RAID 0)
Samsung HD501LJ 500GB SATA II x2
Hitachi HDS721010CLA332 1TB SATA II
Iomega 1.5TB Ext USB 2.0
WD 2.0TB Ext USB 3.0
PSU
XFX Pro Series 850W Semi-Modular
Case
Gigabyte IF233
Cooling
1 x 120mm Front Inlet 1 x 120mm Rear Exhaust
Keyboard
Microsoft Comfort Curve Keyboard 3000 (USB)
Mouse
Microsoft Comfort Mouse 3000 for Business (USB)
Internet Speed
NetGear DG834Gv3 ADSL Modem/Router (Ethernet) ~4.0 Mb/s (O2)
Antivirus
Avast! 8.0.1497
Browser
IE 11
Other Info
Optical Drive: HL-DT-ST BD-RE BH10LS30 SATA Bluray
Lexmark S305 Printer/Scanner/Copier (USB)
WEI Score: 8.1/8.1/8.5/8.5/8.25
Asus Eee PC 1011PX Netbook (Windows 7 x86 Starter)
True, it is a hosted OS.
 

My Computer

Computer Manufacturer/Model Number
self built
OS
Windows 7 Professional 64-bit
CPU
Intel E8400 3GHz
Motherboard
Intel DX48BT2
Memory
Kingston PC3-10700H 4Gb
Graphics Card(s)
XFX Radeon HD 5850 BlackEd.
Sound Card
Asus Xonar DG
Monitor(s) Displays
2x Samsung SM-T220HD 22"
Screen Resolution
1680x1050 on two monitors
Hard Drives
OCZ Vertex 2 120gb 3.5" (OS)
Seagate Momentus XT 500gb
Samsung F3 1Tb (games)
2x Samsung F1 1Tb
PSU
Thermaltake ToughPower 850w
Case
Thermaltake Armor
Cooling
Scythe Mugen II
Keyboard
Microsoft Comfort Curve USB
Mouse
Razer Diamondback 3G
Internet Speed
8128/443
I'm going to have a look through the resources later. Incidentally, I notice your link button has reappeared AGAIN. What on earth is happening with it? :confused:
 

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Dwarf Dwf/11/2012 r09/2013
OS
Windows 8.1 Pro RTM x64
CPU
Intel Core-i5-3570K 4-core @ 3.4GHz (Ivy Bridge) (OC 4.4GHz)
Motherboard
ASRock Z77 Extreme4-M
Memory
4 x 4GB DDR3-1600 Corsair Vengeance CMZ8GX3M2A1600C9B (16GB)
Graphics Card(s)
MSI GeForce GTX770 Gaming OC 2GB
Sound Card
Realtek High Definition on board solution (ALC 898)
Monitor(s) Displays
ViewSonic VA1912w Widescreen (VGA)
Screen Resolution
1440x900
Hard Drives
OCZ Agility 3 SSD 120GB SATA III x2 (RAID 0)
Samsung HD501LJ 500GB SATA II x2
Hitachi HDS721010CLA332 1TB SATA II
Iomega 1.5TB Ext USB 2.0
WD 2.0TB Ext USB 3.0
PSU
XFX Pro Series 850W Semi-Modular
Case
Gigabyte IF233
Cooling
1 x 120mm Front Inlet 1 x 120mm Rear Exhaust
Keyboard
Microsoft Comfort Curve Keyboard 3000 (USB)
Mouse
Microsoft Comfort Mouse 3000 for Business (USB)
Internet Speed
NetGear DG834Gv3 ADSL Modem/Router (Ethernet) ~4.0 Mb/s (O2)
Antivirus
Avast! 8.0.1497
Browser
IE 11
Other Info
Optical Drive: HL-DT-ST BD-RE BH10LS30 SATA Bluray
Lexmark S305 Printer/Scanner/Copier (USB)
WEI Score: 8.1/8.1/8.5/8.5/8.25
Asus Eee PC 1011PX Netbook (Windows 7 x86 Starter)
I think zero is mind controlling it.
 

My Computer

Computer Manufacturer/Model Number
self built
OS
Windows 7 Professional 64-bit
CPU
Intel E8400 3GHz
Motherboard
Intel DX48BT2
Memory
Kingston PC3-10700H 4Gb
Graphics Card(s)
XFX Radeon HD 5850 BlackEd.
Sound Card
Asus Xonar DG
Monitor(s) Displays
2x Samsung SM-T220HD 22"
Screen Resolution
1680x1050 on two monitors
Hard Drives
OCZ Vertex 2 120gb 3.5" (OS)
Seagate Momentus XT 500gb
Samsung F3 1Tb (games)
2x Samsung F1 1Tb
PSU
Thermaltake ToughPower 850w
Case
Thermaltake Armor
Cooling
Scythe Mugen II
Keyboard
Microsoft Comfort Curve USB
Mouse
Razer Diamondback 3G
Internet Speed
8128/443
If XP Mode works like traditional virtualized hardware (Win7 being the host and WinXP being the guest with it's own virtual hard drive) then you most definitely want AV software on it. It would basically be its own system at that point and more than likely susceptable to any virii that could be thrown at it. While the host OS might protect against things getting in via a firewall or patched security vulnerabilities, web browsing, file downloading, etc would still be susceptable on the guest OS.
 

My Computer

Computer Manufacturer/Model Number
ASUS N81Vg-X1
OS
Ubuntu Linux 8.10
CPU
Intel Core 2 Duo P8600 2.4GHz
Memory
4GB
Graphics Card(s)
NVidia GeForce GT 120M
Sound Card
Integrated
Monitor(s) Displays
14" Widescreen
Screen Resolution
1366x768
Hard Drives
320GB 7200RPM
I would second most of what betawind said. Of course I have not laid hands on that XP Mode software, but if it is like Virtual PC/VirtualBox/etc. then I would say yes, you should have antivirus software installed on the VM. However, it XP Mode is tightly wound to the host, like running the program in compatibility mode for XP when your host is Vista, for example, then no.
 

My Computer

Computer Manufacturer/Model Number
Dell Inspiron 1520 (Laptop)/ Home (Desktop)
OS
Windows 7 x64 / Same
CPU
Intel Core 2 Duo T7250 / Intel Core i7 930
Motherboard
Intel 945 / Asus P6X58D-E
Memory
4GB / 6GB
Graphics Card(s)
NVIDIA GeForce 8400M GS / ASUS 1GB
Sound Card
Whatever Dell gave me :-( / Onboard
Monitor(s) Displays
15.4" LCD / Crappy CRT
Hard Drives
Seagate 500GB SATA; 7200 RPM / Seagate 1TB SATA; 7200 RPM
PSU
N/A / OCZ Fatal1ty 550W Modular
Case
N/A / Antec 900
Cooling
Air
Mouse
Microsoft Presenter (Bluetooth)

My Computer

Computer Manufacturer/Model Number
ASUS N81Vg-X1
OS
Ubuntu Linux 8.10
CPU
Intel Core 2 Duo P8600 2.4GHz
Memory
4GB
Graphics Card(s)
NVidia GeForce GT 120M
Sound Card
Integrated
Monitor(s) Displays
14" Widescreen
Screen Resolution
1366x768
Hard Drives
320GB 7200RPM
swarfega said:
True, it is a hosted OS.
Click to expand...

Hi
I thought the Virtual PC is a GUEST OS. The HOST is the actual PHYSICAL machine running the virtual pc software.

In this case unlike a fully "virtualized or classical VM" the virtual PC isn't on a network as a "separate entity" so other machines on your network won't be able to comminicate with the VM running in "XP compatability mode".

A classical VM will appear on your network just like any other real machine does. So for those types of VM's the same rules apply as for your physical machine since a virus on the VM could be transmitted to other machines on your LAN real or Virtual.


With "XP mode" you've got a slightly different scenario as I've explained above. Whilst you can't network between the VM and the rest of your LAN you can infect disks on your real machine since the VM shows the LOCAL REAL HOST's disks as well as the virtual disks allowing you to cut and paste data between guest and host.

Because the Virtual machine can access the Internet and is able to install applications then you *might* consider installing av software on the virtual PC.

However since XP mode is only likely to be used for "Office" and trusted corporate / work place apps you won't really need to install AV software -- especially if you block separate Internet access from the Virtual PC.

The weak link in all this of course is in the use of USB drives. You can probably prevent a user attaching a USB drive to the virtual machine by disabling the facility on the host first.

Cheers
jimbo
 

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Custom built, several laptops HP/ASUS
OS
Linux CENTOS 7 / various Windows OS'es and servers
CPU
Intel i7 Intel i5
Memory
8GB, 16GB
Graphics Card(s)
On Motherboard
Sound Card
Realtek HD audio
Monitor(s) Displays
Apple Cinema display, Samsung LCD
Screen Resolution
1920 X 1080
Hard Drives
4 X 1TB SATA
Mouse
Toshiba wireless laser
Internet Speed
> 20MB up
jimbo45 said:
Hi
I thought the Virtual PC is a GUEST OS. The HOST is the actual PHYSICAL machine running the virtual pc software.
Click to expand...

Yes, that's true. He said a HOSTED OS, not a HOST OS. HOSTED = Guest :)

jimbo45 said:
In this case unlike a fully "virtualized or classical VM" the virtual PC isn't on a network as a "separate entity" so other machines on your network won't be able to comminicate with the VM running in "XP compatability mode".

A classical VM will appear on your network just like any other real machine does. So for those types of VM's the same rules apply as for your physical machine since a virus on the VM could be transmitted to other machines on your LAN real or Virtual.

With "XP mode" you've got a slightly different scenario as I've explained above. Whilst you can't network between the VM and the rest of your LAN you can infect disks on your real machine since the VM shows the LOCAL REAL HOST's disks as well as the virtual disks allowing you to cut and paste data between guest and host.
Click to expand...

What you you mean by a virtualized VM? Are you talking about a VMWare ESX Server? Do you know that the XP mode won't appear on the network for sure? I have 3 Virtualbox VMs running my Win7 machine using host interface networking. They show up as seperate PCs on my network.

jimbo45 said:
Because the Virtual machine can access the Internet and is able to install applications then you *might* consider installing av software on the virtual PC.

However since XP mode is only likely to be used for "Office" and trusted corporate / work place apps you won't really need to install AV software -- especially if you block separate Internet access from the Virtual PC.
Click to expand...

While this may be it's intended purpose, I could see it being used in place of Win7 for the average employee (in a business environment of course). Most end users hate new looks/feels to things and given the option between their well known and well loved XP and the new Win7 I would imagine they'd choose XP. My opinion though.

jimbo45 said:
The weak link in all this of course is in the use of USB drives. You can probably prevent a user attaching a USB drive to the virtual machine by disabling the facility on the host first.
Click to expand...

This all depends on how USB connectivity is disabled. Windows policy can prevent the USER from doing it, but I would have to imagine the hardware passthrough of Virtual XP uses the LocalSystem account, which would allow passthrough even if the current user was blocked.

If you're using a kernel level protection such as Sanctuary Device Control that's a completely different story as it can prevent the entire OS from having access.
 

My Computer

Computer Manufacturer/Model Number
ASUS N81Vg-X1
OS
Ubuntu Linux 8.10
CPU
Intel Core 2 Duo P8600 2.4GHz
Memory
4GB
Graphics Card(s)
NVidia GeForce GT 120M
Sound Card
Integrated
Monitor(s) Displays
14" Widescreen
Screen Resolution
1366x768
Hard Drives
320GB 7200RPM
just to be clear, XPM is a guest OS on windows 7.
 

My Computer

Computer Manufacturer/Model Number
self built
OS
Windows 7 Professional 64-bit
CPU
Intel E8400 3GHz
Motherboard
Intel DX48BT2
Memory
Kingston PC3-10700H 4Gb
Graphics Card(s)
XFX Radeon HD 5850 BlackEd.
Sound Card
Asus Xonar DG
Monitor(s) Displays
2x Samsung SM-T220HD 22"
Screen Resolution
1680x1050 on two monitors
Hard Drives
OCZ Vertex 2 120gb 3.5" (OS)
Seagate Momentus XT 500gb
Samsung F3 1Tb (games)
2x Samsung F1 1Tb
PSU
Thermaltake ToughPower 850w
Case
Thermaltake Armor
Cooling
Scythe Mugen II
Keyboard
Microsoft Comfort Curve USB
Mouse
Razer Diamondback 3G
Internet Speed
8128/443
And, *thus*, XP is a *hosted* OS on Win 7.
 

My Computers

System One System Two

  • Computer type
    PC/Desktop
    Computer Manufacturer/Model Number
    The Beast Model A (homebrew)
    OS
    Windows 11 21H2 Current build
    CPU
    AMD Ryzen 9 3950X
    Motherboard
    MSI MEG X570 GODLIKE
    Memory
    4 * 32 GB - Corsair Vengeance 3600 MHz
    Graphics Card(s)
    EVGA GeForce RTX 3080 Ti XC3 ULTRA GAMING (12G-P5-3955-KR)
    Sound Card
    Realtek® ALC1220 Codec
    Monitor(s) Displays
    2x Eve Spectrum ES07D03 4K Gaming Monitor (Matte) | Eve Spec
    Screen Resolution
    3x 3840 x 2160
    Hard Drives
    3x Samsung 980 Pro NVMe PCIe 4 M.2 2 TB SSD (MZ-V8P2T0B/AM) } 3x Sabrent Rocket NVMe 4.0 1 TB SSD
    PSU
    PC Power & Cooling’s Silencer Series 1050 Watt, 80 Plus Plat
    Case
    Fractal Design Define 7 XL Dark ATX Full Tower Case
    Cooling
    SteelSeries Apex Pro Wired Gaming Keyboard
    Keyboard
    SteelSeries Apex Pro
    Mouse
    Logitech MX Master 3S | MX Master 3 for business
    Internet Speed
    AT&T LightSpeed Gigabit Duplex Ftth
    Antivirus
    Windows Defender + MB 3
    Browser
    Nightly (default) + Firefox (stable),Chrome, Edge
  • Computer type
    PC/Desktop
    System Manufacturer/Model Number
    Dell Latitude E5470
    OS
    ChromeOS Flex Dev Channel (current)
    CPU
    Intel(R) Core(TM) i5-6300U CPU @ 2.40GHz, 2501 Mhz, 2 Core(s), 4 Logical Processor(s)
    Motherboard
    Dell
    Memory
    16 GB
    Graphics Card(s)
    Intel(R) HD Graphics 520
    Sound Card
    Intel(R) HD Graphics 520 + RealTek Audio
    Monitor(s) Displays
    Dell laptop display 15"
    Screen Resolution
    1920 * 1080
    Hard Drives
    Toshiba 128GB M.2 22300 drive
    INTEL Cherryville 520 Series SSDSC2CW180A 180 GB SATA III SSD
    PSU
    Dell
    Case
    Dell
    Cooling
    Dell
    Keyboard
    Dell
    Mouse
    Logitech MX Master 3S (shared w. Sys 1) | Dell TouchPad
    Internet Speed
    AT&T LightSpeed Gigabit Duplex Ftth
just me getting my terminology wrong.
 

My Computer

Computer Manufacturer/Model Number
self built
OS
Windows 7 Professional 64-bit
CPU
Intel E8400 3GHz
Motherboard
Intel DX48BT2
Memory
Kingston PC3-10700H 4Gb
Graphics Card(s)
XFX Radeon HD 5850 BlackEd.
Sound Card
Asus Xonar DG
Monitor(s) Displays
2x Samsung SM-T220HD 22"
Screen Resolution
1680x1050 on two monitors
Hard Drives
OCZ Vertex 2 120gb 3.5" (OS)
Seagate Momentus XT 500gb
Samsung F3 1Tb (games)
2x Samsung F1 1Tb
PSU
Thermaltake ToughPower 850w
Case
Thermaltake Armor
Cooling
Scythe Mugen II
Keyboard
Microsoft Comfort Curve USB
Mouse
Razer Diamondback 3G
Internet Speed
8128/443
Hey all,

I just grabbed the Virtual XP off of MSDN and wanted to relay my observations.

It's pretty standard as far as VMs are concerned so if you're familiar with it you won't see much different. It did come preconfigured a bit underpowered (only 256megs of RAM) and no easy way to actually shut it down. Virtual PC seemed to create an RDP like connection to the guest OS, giving me options to either "Log off" or "Disconnect" via the start menu. In order to change the RAM settings on the guest PC, it has to be shutdown. I ran "shutdown -s -t 1" in order to accomplish this.

The integration features are nice, it will share clipboard, printers, drives and smart cards on the host with the guest. All host hard drives will show up as mapped network drives in My Computer.

When you install the preconfigured it does default to NAT networking, basically creating a small network in the virtual environment. It *can* be configured for host interface networking, allowing it to request DHCP from your DHCP server (router, other server, etc) and will show up as a separate computer on the network in this configuration.

If you enable Host Networking, I would strongly advise keeping the firewall active. I'm admittedly not 100% sure if the Win7 firewall would protect it when it's in this configuration as host networking generally passes everything intended for the guest to the guest without any discrimination. 3rd party firewalls may behave differently though so keep that in mind if you have any problems.

It also is separately updated from Win7 so Auto Updates are a must with Host Networking. I would strongly recommend AV software as well.
 

My Computer

Computer Manufacturer/Model Number
ASUS N81Vg-X1
OS
Ubuntu Linux 8.10
CPU
Intel Core 2 Duo P8600 2.4GHz
Memory
4GB
Graphics Card(s)
NVidia GeForce GT 120M
Sound Card
Integrated
Monitor(s) Displays
14" Widescreen
Screen Resolution
1366x768
Hard Drives
320GB 7200RPM
You must log in or register to reply here.

Similar threads

Real time anti-virus that works on r3dfox?
Replies
1
Views
1K
michael diemer
M
Solved Dell Inspiron 1545 ssd and win 7 install?
Replies
19
Views
3K
townsbg
townsbg
Solved Program to open and edit DDS file
Replies
2
Views
13K
Xol1mn3c
Xol1mn3c
build a custom version of windows 7 to look and act like windows xp
Replies
2
Views
990
thewindows7nerd
T
Efi 1.10 Deviece Uefi hangs at for five minets then shutsdown.
Replies
0
Views
231
Jeff 100
J
Back
Top