diff --git a/nixos/modules/programs/virtualbox-host.nix b/nixos/modules/programs/virtualbox-host.nix
index 504ef36d44be..fc113a08a356 100644
--- a/nixos/modules/programs/virtualbox-host.nix
+++ b/nixos/modules/programs/virtualbox-host.nix
@@ -35,7 +35,7 @@ in
 
     enableHardening = mkOption {
       type = types.bool;
-      default = false;
+      default = true;
       description = ''
         Enable hardened VirtualBox, which ensures that only the binaries in the
         system path get access to the devices exposed by the kernel modules
@@ -54,13 +54,6 @@ in
     boot.extraModulePackages = [ virtualbox ];
     environment.systemPackages = [ virtualbox ];
 
-    warnings = mkIf (!cfg.enableHardening) (singleton (
-      "Hardening is currently disabled for VirtualBox, because of some " +
-      "issues in conjunction with host-only-interfaces. If you don't use " +
-      "hostonlyifs, it's strongly recommended to set " +
-      "`services.virtualboxHost.enableHardening = true'!"
-    ));
-
     security.setuidOwners = let
       mkSuid = program: {
         inherit program;