1) Be nice and; have fun
Doxxing, trolling, sealioning, racism, and toxicity are not welcomed in AskLemmy. Remember what your mother said: if you can't say something nice, don't say anything at all. In addition, the site-wide Lemmy.world terms of service also apply here. Please familiarize yourself with them
2) All posts must end with a '?'
This is sort of like Jeopardy. Please phrase all post titles in the form of a proper question ending with ?
3) No spam
Please do not flood the community with nonsense. Actual suspected spammers will be banned on site. No astroturfing.
4) NSFW is okay, within reason
Just remember to tag posts with either a content warning or a [NSFW] tag. Overtly sexual posts are not allowed, please direct them to either !asklemmyafterdark@lemmy.world or !asklemmynsfw@lemmynsfw.com.
NSFW comments should be restricted to posts tagged [NSFW].
5) This is not a support community.
It is not a place for 'how do I?', type questions.
If you have any questions regarding the site itself or would like to report a community, please direct them to Lemmy.world Support or email info@lemmy.world. For other questions check our partnered communities list, or use the search function.
Reminder: The terms of service apply here too.
Logo design credit goes to: tubbadu
Keep your work and personal software separated. If you don't need it to do your job, don't install it on your work machine. If you don't need to access a site for work, don't access it on your work machine.
At the end of the day, it's not your computer and you shouldn't treat it like it is.
Consider it non-secure for personal stuff. Consider the possibility of full monitoring. They may not see the contents of encrypted traffic from the VM, sure, but there's still a possibility of keylogging and even screen monitoring, possibly something else.
To answer your question, the guest OS should reject the security software's certificates, should it attempt MITM. Otherwise there wouldn't be much of a reason to use HTTPS over plain HTTP.
It can still do blocking I guess.
Secondly, it's a work device, and that software is there for a reason. Trying to get around it may have different results. Your employer might not care much, or they could assume something malicious on your side, and fired you are.
So don't use it past work-related use cases, don't borrow it to kids nor anyone else. That bit of hardware is most likely not worth the risk.
IT Guy here - we have been ordered by management to operate a computer system to setup and maintain a usable and secure computer environment for the work the management needs to be done.
To do this, your IT team and selected Windows 11 as the plattform, this is due go several factors.
With your Linux VM you will introduce new security holes, remove central management and throw familiarity out the window.
In any sane company, and unauthorized VM would at minimum be grounds for immediate termination.
If you want to do a proof of concept for your idea, you need management buy in, speak with the CTO and ask about migrating your proccesses to Linux ant do it above board.
I don't know for sure, but I don't think they'd be able to read https traffic. That would be encrypted on the vm itself before being sent to the host, so the host couldn't see it.
If they're scanning your system remotely for unapproved software, I imagine they won't let you use a vm at all, since it kinda breaks that requirement.
I don't know for sure, but I don't think they'd be able to read https traffic. That would be encrypted on the vm itself before being sent to the host, so the host couldn't see it.
But they're able to access your screen, keylog you and read your HD. No need to read https if you can access what the user sees and does
Also your DNS traffic will leak what you are doing.
Just follow the most upvoted answer and keep personal stuff on your personal PC or mobile if you want to avoid trouble.
You can use DoT or DoH.
But you will still leak SNI.
I've faced this decision.
As long as the stuff I'm doing on the Linux VM is legitimate work, I find that no one cares.
Every so often someone asks questions about how the underlying concerns are being addressed - most critically backups.
As long as I have reasonable answers, or I express willingness to collaborate on solutions, it tends to work out.
That said, I'm a manager of software development, so I receive a lot of leeway to tell people what tools I need.
