On Sat, Apr 24, 2010 at 04:29:17PM -0600, Rainer Deyke wrote: > Running the browser as a restricted user is good (and indeed necessary), > but when you're running native code, you're only as secure your OS and > CPU allow. Running on a VM provides an additional layer of insulation.
Sure, that's reasonable. I'll point out that if the VM is compromised, you're back to depending on the OS, but you'll be right to counter that it is one more hurdle for the bad guys.
