On Tue, Aug 7, 2012 at 10:17 AM, James <wirel...@tampabay.rr.com> wrote: <SNIP> > Hello Mark, > > I think I'll put the R stuff as research interest on a separate > machine to evaluate... I'm Looking for some guidance on this > (VM) subject, related to online stock trading. Should I set up a > machine on a hardened system? SeLinux? Other ideas like a > transparent bride with some specific application filtering? >
Sounds like you're beyond my abilities. I use standard stable Gentoo myself. (I.e. - NOT ~amd64) Each Windows VM has it's own Windows license as well as it's own virus protection license. I run different trading apps in different VMs. All trading VMs are Virtualbox. In my case the compute server is a 12 core Intel machine. I dedicate 10 cores to the VMs (6 cores to one VM, 2 cores each to the other 2 VMs) for 3 VMs using 10 cores. That leaves 2 cores to Gentoo to manage the hardware. I do similar things on an 8 core machine, etc. I always reserve 2 CPUs for Gentoo. NOTE: Windows and it's apps are memory hogs so you'll need a LOT more memory than you think to make this work well day in and day out. > Should I setup a specific application firewall between the VM system > and the outside net? A generic security (architectural) approach is of > keen interest to me (reading references?). Windows security for me is > often troublesome; so specific (private?) suggestions are also of keen > interest to me. > Again, probably beyond my abilities to give guidance. I use standard Windows virus & firewall protection inside each VM and hope for the best figuring it's no worse than using Windows on real hardware. As with everything Windows, it's all a crap shoot as far as I can tell. HTH, Mark