WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Xen-devel] Xen Security

from [Neugebauer, Rolf] [Permanent Link][Original]
To: "Phillip Mumford" <phillip.mumford@xxxxxxxxx>, <xen-devel@xxxxxxxxxxxxxxxxxxxxx>
Subject: RE: [Xen-devel] Xen Security
From: "Neugebauer, Rolf" <rolf.neugebauer@xxxxxxxxx>
Date: Thu, 20 Jan 2005 10:00:06 -0000
Delivery-date: Thu, 20 Jan 2005 10:01:19 +0000
Envelope-to: xen+James.Bulpin@xxxxxxxxxxxx
List-archive: <http://sourceforge.net/mailarchive/forum.php?forum=xen-devel>
List-help: <mailto:xen-devel-request@lists.sourceforge.net?subject=help>
List-id: List for Xen developers <xen-devel.lists.sourceforge.net>
List-post: <mailto:xen-devel@lists.sourceforge.net>
List-subscribe: <https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=subscribe>
List-unsubscribe: <https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=unsubscribe>
Sender: xen-devel-admin@xxxxxxxxxxxxxxxxxxxxx
Thread-index: AcT+zH2lbsKo4f5dQXG93fVXPMYjMAACdKxA
Thread-topic: [Xen-devel] Xen Security 

> -----Original Message-----
> From: xen-devel-admin@xxxxxxxxxxxxxxxxxxxxx [mailto:xen-devel-
> admin@xxxxxxxxxxxxxxxxxxxxx] On Behalf Of Phillip Mumford
> Sent: 19 January 2005 14:39
> To: xen-devel@xxxxxxxxxxxxxxxxxxxxx
> Subject: [Xen-devel] Xen Security
> 
> Just a quick question regarding the security of a Xen host.
> 
> Are there any security implications I need to be aware of if I allow a
> Xen-U host to use kernel modules?  I've mainly used UML in past, where
> a user could easily read files on the host machines filesystem.
> 
> Is it safe to allow people to run with modules allowed?

Xen provides stronger isolation than UML and kernel modules in a VM
should only be able to compromise the resources that that VM has access
to (eg its filespace) but not other VMs

rolf


> 
> 
> -------------------------------------------------------
> This SF.Net email is sponsored by: IntelliVIEW -- Interactive
Reporting
> Tool for open source databases. Create drag-&-drop reports. Save time
> by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc.
> Download a FREE copy at http://www.intelliview.com/go/osdn_nl
> _______________________________________________
> Xen-devel mailing list
> Xen-devel@xxxxxxxxxxxxxxxxxxxxx
> https://lists.sourceforge.net/lists/listinfo/xen-devel


-------------------------------------------------------
This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting
Tool for open source databases. Create drag-&-drop reports. Save time
by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc.
Download a FREE copy at http://www.intelliview.com/go/osdn_nl
_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-devel] allocating virtual nic to domain0, Björn Sessler
Next by Date:  Re: [Xen-devel] Kernel crash, Tobias Hunger
Previous by Thread:  [Xen-devel] Re: Xen Security, Nuutti Kotivuori
Next by Thread:  Re: [Xen-devel] Xen Security, Felipe Alfaro Solana
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy