would it be possible to set my virtual stuff to read only or would that be helpful as far as security goes.........if so how....

This sounds scary...Im not sure I want VMware on my machine at all........

It sounds scary, but as far as I know, it's all theoretical. Anyway, the default is read-only, so you should be safe If you want to be extra paranoid, disable shared folders entirely.

Dear ETung,

I choose Fusion over parallels because it seemed that Parallels now has just to much sharing going on with the host MAC OS. I am only running XP so I can print with Qimage.. and possibly scan with Nikon Scan and my CoolScan.

How should I set Fusion up so that is is completely isolted from my Host MAC OS? Even if I have to transfer files from a thumb drive from MAC to Fusion/XP that would be fine.... All I need to do is access the network in Windows to update XP and download my Nikon Scan ware and have my Scanner able to access FW400 ports on the MacPro.

you said if you dont trust the guest...do you mean guest os....I want win 98 on my virtual vmware...i know it is not supported by microcrap.....excuse me...microsoft anymore.....can i safely install win 98.....

As I said in reply to another one of your posts, I'm afraid you Firewire scanner won't work. You can get complete (well, as close to complete as I know) by adding the following line to the .vmx config file:

monitor_control.restrict_backdoor = "TRUE"

This disables the communications channel that the guest can use to talk to the host, but also disables many useful features (like dynamic screen resizing, soft ungrab, and Tools).

Slightly less draconian is to disable specific features, like shared folders or drag-and-drop. For example, those would correspond to the following config lines:

isolation.tools.hgfs.disable = "TRUE"
isolation.tools.dnd.disable = "TRUE"

A very simple solution would be to just not enable shared folders. You could not install Tools in the first place (shared folders requires Tools), but as with the first suggestion, you'll miss out on many features.

I brought up the shared folder possibility to point out that security is definitely on our minds, not to scare anyone. Personally, I don't worry about this theoretical vulnerability - my approach is to not use shared folders, but when I do need to, I enable them for specific folders. I don't feel the need for more restrictive settings, though they exist if you want them.

you said if you dont trust the guest...do you mean guest os....

Yes, "guest" and "guest OS" mean the same thing to me.

I want win 98 on my virtual vmware... can i safely install win 98.....

There's nothing special about Windows 98 (apart from being older, and with more security vulnerabilities) than other guests as far as what I've said (well, I don't remember if it supports shared folders). Personally, with something like Win98, I would keep it disconnected from the network entirely if possible since Microsoft won't provide any more patches. However, this is more for guest safety than host safety.

Dear Etung,

Where do I go in Fusion to disable shared folders?

Thanks.

Virtual Machine > Settings > Shared Folders

You can also disable them on a per-folder basis, or just don't define any in the first place.