WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Xen-users] How secure is Dom0 from DomU

from [James Harper] [Permanent Link][Original]
To: <thewird@xxxxxxxxx>, "Thomas King" <tking@xxxxxxxxxx>
Subject: RE: [Xen-users] How secure is Dom0 from DomU
From: "James Harper" <james.harper@xxxxxxxxxxxxxxxx>
Date: Wed, 25 Jul 2007 23:18:46 +1000
Cc: xen-users@xxxxxxxxxxxxxxxxxxx
Delivery-date: Wed, 25 Jul 2007 06:16:35 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <198225.67467.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <OF6D0D52D9.6BF42E16-ON85257323.0043C298-85257323.00453A94@xxxxxxxxxx> <198225.67467.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
Thread-index: AcfOuRHYju8DXgS4SaKoz2Q/yvrHmgABPn2Q
Thread-topic: [Xen-users] How secure is Dom0 from DomU 
> 
> The DomU is an independent environment and cannot access other DomU's
> or  the Dom0 regardless of the privaledges.
> 

It's an interesting question though... what would be the implications if
a buffer overflow was found either in the hypervisor or in a Dom0
backend device driver. Maybe a deliberately malformed disk or network
request could overflow something in Dom0 and give you root access there?

Can anyone in the know comment on this?

Thanks

James

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-users] Hot backup vs (local) live migration, Nico Kadel-Garcia
Next by Date:  [Xen-users] Install 64 bit Dom 0, Ian Tobin
Previous by Thread:  Re: [Xen-users] How secure is Dom0 from DomU, thewird
Next by Thread:  [Xen-users] Compile error, Ian Tobin
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy