the arrival of Shielded VMs for Linux VMs
Ok, ok... lemme get this straight.
If the host system is 'taken over' or has malware mucking with it, this "shielded VM" thing is supposed to stop it from mucking with the VM's too, right? And previous incarnations from the earlier server release only did this for VM's running some version of windows, right?
And this "new, shiny" _also_ includes Linux. Wheee.
I say, why not host everything on a NON-micro-shaft OS instead? You know, like *REAL* Linux!
I'm certainly not against running windows in a VM hosted on Linux or FreeBSD when customers want a VM that runs windows. Just don't have a windows host when you do it. Many reasons exist, INCLUDING the need for "Shielded VMs" in the FIRST place! (think bandade on a compound fracture, bubble gum patching the radiator, finger in a dike, bailing wire and duck tape...) That being said, 'windows VM host' = security crater out of the box as far as I'm concerned. Recent vulnerabilities and zero-days are good supporting proof of that.
Seriously, WHAT advantages are there to running cloudy VMs on a Windows host, vs something LIKE CentOS or FreeBSD?
*crickets chirping*
As for "Microsoft Linux" - Embrace, Extend, Extinguish, *EX-TER-MIN-ATE*!!!