WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-devel] xm create as root vs xm destroy as normal user

from [Mark Williamson] [Permanent Link][Original]
To: xen-devel@xxxxxxxxxxxxxxxxxxx, tanner@xxxxxxxxxxxxx
Subject: Re: [Xen-devel] xm create as root vs xm destroy as normal user
From: Mark Williamson <mark.williamson@xxxxxxxxxxxx>
Date: Mon, 27 Jun 2005 18:54:17 +0100
Delivery-date: Mon, 27 Jun 2005 18:01:23 +0000
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <200506271242.42327@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
References: <200506241724.18807@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx> <b1fa291705062516522517fb81@xxxxxxxxxxxxxx> <200506271242.42327@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: KMail/1.8 
> > There is currently no notion of capabilities. In 3.0 the default
> > communication path between xm and xend is now a unix domain socket so
> > by default only root can execute xm commands.
>
> I'm sorry, I do not understand the answer. The "no notion of capabilities",
> does that mean "yes, non-root users can stop Xen sessions in 2.x"?

Yep.  Anyone who can get to Xend's http interface can access all the 
management functions.  The only solution in the 2.0 tree is to allow only 
trusted users the appropriate network access (e.g. no untrusted local users, 
firewall off Xend from non-management networks).

Security in 3.0 will be rather less permissive :-)

Cheers,
Mark

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-devel] xm create as root vs xm destroy as normal user, Josh Triplett
Next by Date:  Re: [Xen-devel] [PATCH] 1 of 2: default ssid to 0, Josh Triplett
Previous by Thread:  Re: [Xen-devel] xm create as root vs xm destroy as normal user, Josh Triplett
Next by Thread:  [Xen-devel] [PATCH] Add DOM0_GETDOMAININFOLIST op for bulk retrieval of domain info, Josh Triplett
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy