Hardening Issue starting redhat VM

Discussions related to using VirtualBox on Windows hosts.

Hardening Issue starting redhat VM

Postby Bill Hunsicker » 25. Sep 2017, 17:30

Hi Everyone,

I have been having an issue starting up a Red Hat RHEL7 Linux VM on a Win7 Citrix VDI. We tracked down the first problem and removed the virus protection that was conflicting. I have run through all the items listed on the Diagnosing Hardening Issues and nothing pops out as a problem. The RHEL image works on our Mac, and Win10 systems without a problem. We also recreated a brand new Win7VDI system and the RHEL VM starts up there. It is only on a system we have fully loaded for our developers where this seems to be a problem.

Getting this error (pretty generic):
The virtual machine 'Red_Hat_Dev' has terminated unexpectedly during startup with exit code -1073741819 (0xc0000005). More details may be available in 'C:\Users\{USERNAME}\VirtualBox VMs\Red_Hat_Dev\Logs\VBoxHardening.log'.
Result Code:
E_FAIL (0x80004005)
Component:
MachineWrap
Interface:
IMachine {b2547866-a0a1-4391-8b86-6952d82efaa0}

Any assistance on getting this running would be appreciated. Let me know if I missed any information needed to help debug and I will provide it.
Attachments
Bill_VBoxHardening.zip
Hardening File Log
(7.46 KiB) Downloaded 18 times
Bill Hunsicker
 
Posts: 3
Joined: 25. Sep 2017, 17:21

Re: Hardening Issue starting redhat VM

Postby mpack » 25. Sep 2017, 19:10

The FAQ which I assume you're referring to is FAQ: Diagnosing VirtualBox Hardening Issues.

According to the provided log you still have "Cylance Protect" installed, which has become a bit of red flag around here. I suggest that you Google for ""Cylance Protect" site:forums.virtualbox.org".
mpack
Site Moderator
 
Posts: 29561
Joined: 4. Sep 2008, 17:09
Primary OS: MS Windows 10
VBox Version: PUEL
Guest OSses: Mostly XP

Re: Hardening Issue starting redhat VM

Postby Bill Hunsicker » 26. Sep 2017, 20:08

Hi MPack,

Thanks for the reply. I had our CyLance admins remove Cylance from my system and we tested VBox starting the Red Hat VM. We got the same problem, but with out CyLance PROTECT listed in the log file. Any other suggestions I can try?
Bill Hunsicker
 
Posts: 3
Joined: 25. Sep 2017, 17:21

Re: Hardening Issue starting redhat VM

Postby Bill Hunsicker » 26. Sep 2017, 22:04

Ok, here is an update.

It turns out the Beyond Trust's Power Broker Client for Windows is the culprit. There are two system DLL files that PB seems to overwrite with PB versions. Once I unloaded PB, everything seems to work as expected.

Is there a way to exclude the files from the Hardening check?
Thanks
Bill
Bill Hunsicker
 
Posts: 3
Joined: 25. Sep 2017, 17:21

Re: Hardening Issue starting redhat VM

Postby mpack » 27. Sep 2017, 11:55

Bill Hunsicker wrote:Is there a way to exclude the files from the Hardening check?

No. That would create obvious openings for malware. If "Beyond Trust" hacks a system DLL then they must re-sign the hacked version, that is the only allowed option.
mpack
Site Moderator
 
Posts: 29561
Joined: 4. Sep 2008, 17:09
Primary OS: MS Windows 10
VBox Version: PUEL
Guest OSses: Mostly XP


Return to VirtualBox on Windows Hosts

Who is online

Users browsing this forum: arla_king and 26 guests