WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/

Home

xen-users

[Top] [All Lists]

RE: [Xen-users] Tracking DomU memory

from [Ulrich Windl]

[Permanent Link][Original]

To:	Security Initiative Team <passrete@xxxxxxxxx>
Subject:	RE: [Xen-users] Tracking DomU memory
From:	"Ulrich Windl" <ulrich.windl@xxxxxxxxxxxxxxxxxxxx>
Date:	Wed, 10 Jan 2007 11:19:20 +0100
Cc:	xen-users@xxxxxxxxxxxxxxxxxxx
Delivery-date:	Wed, 10 Jan 2007 02:19:43 -0800
Envelope-to:	www-data@xxxxxxxxxxxxxxxxxx
In-reply-to:	<96395.83616.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
List-help:	<mailto:xen-users-request@lists.xensource.com?subject=help>
List-id:	Xen user discussion <xen-users.lists.xensource.com>
List-post:	<mailto:xen-users@lists.xensource.com>
List-subscribe:	<http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe:	<http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
Organization:	Universitaet Regensburg, Klinikum
Priority:	normal
References:	<907625E08839C4409CE5768403633E0B018E1805@xxxxxxxxxxxxxxxxx>
Sender:	xen-users-bounces@xxxxxxxxxxxxxxxxxxx

On 9 Jan 2007 at 17:41, Security Initiative Team wrote:

> Is it possible for the "root" user of a guest domain to
> update the "text" section of a user-level process in that guest domain?
> 
> The text section is mapped as read-only,
> but is the "root" user privileged enough  to be able to
> update the page-table entry (which will go through Xen)
> to make it a writable mapping and then update it? 

Considering multiple CPUs this is an interesing concept just like 
self-modifying 
code...

Only a few things prevent root from writing to /dev/mem, commonsense is one of 
those, but you can read paswords from it, just as you can patch code (AFAIK).

Still: Why whould one want to do so?

Ulrich

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
RE: [Xen-users] Tracking DomU memory, Security Initiative Team RE: [Xen-users] Tracking DomU memory, Ulrich Windl <= RE: [Xen-users] Tracking DomU memory, Petersson, Mats RE: [Xen-users] Tracking DomU memory, Tim Post Re: [Xen-users] Tracking DomU memory, Mark Williamson RE: [Xen-users] Tracking DomU memory, Security Initiative Team Re: [Xen-users] Tracking DomU memory, Mark Williamson

Previous by Date:	[Xen-users] Ubuntu Server 6.10 HVM reboots with more than 3 guests are created, John
Next by Date:	Re: [Xen-users] VIRT to MACHINE conversion, Ulrich Windl
Previous by Thread:	RE: [Xen-users] Tracking DomU memory, Security Initiative Team
Next by Thread:	RE: [Xen-users] Tracking DomU memory, Petersson, Mats
Indexes:	[Date] [Thread] [Top] [All Lists]

This site is hosted by Citrix