WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Xen-devel] LXR-type source code browsing

from [John L Griffin] [Permanent Link][Original]
To: xen-devel@xxxxxxxxxxxxxxxxxxxxx
Subject: RE: [Xen-devel] LXR-type source code browsing
From: John L Griffin <jlg@xxxxxxxxxx>
Date: Mon, 17 Jan 2005 19:18:08 -0500
Cc: "Ian Pratt" <m+Ian.Pratt@xxxxxxxxxxxx>
Delivery-date: Tue, 18 Jan 2005 01:15:45 +0000
Envelope-to: xen+James.Bulpin@xxxxxxxxxxxx
In-reply-to: <A95E2296287EAD4EB592B5DEEFCE0E9D1233C0@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
List-archive: <http://sourceforge.net/mailarchive/forum.php?forum=xen-devel>
List-help: <mailto:xen-devel-request@lists.sourceforge.net?subject=help>
List-id: List for Xen developers <xen-devel.lists.sourceforge.net>
List-post: <mailto:xen-devel@lists.sourceforge.net>
List-subscribe: <https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=subscribe>
List-unsubscribe: <https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=unsubscribe>
Sender: xen-devel-admin@xxxxxxxxxxxxxxxxxxxxx 
> I've never been very convinced about the security of LXR. Do you reckon
> we'd get away with running one on the public internet? Do you know
> whether lxr.linpro.no have had problems?

Offhand I'm not aware of any, though they have occasionally pushed updates 
that remove vulnerabilities (i.e., version 0.3.1, Mar 2003).  The 
lxr.linpro.no site replaced what used to be lxr.linux.no site [for what 
seems to be bandwidth-related reasons], and they have an LXR repository 
hosted at mozilla.org -- both are popular sites, so my guess is security 
problems would crop up more often if LXR was indeed prone to them.

As you point out, Xen provides an ideal environment for opening access to 
a sandboxed LXR webserver.  :-)

What is the timeline for deploying the new server?  Access to the LXR 
repository is something I would find immediately useful.

JLG

P.S. Is there a problem with the mail at sourceforge?  My posts to 
xen-devel made it out immediately in December, but today the lag is 45 
minutes or more.



-------------------------------------------------------
The SF.Net email is sponsored by: Beat the post-holiday blues
Get a FREE limited edition SourceForge.net t-shirt from ThinkGeek.
It's fun and FREE -- well, almost....http://www.thinkgeek.com/sfshirt
_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Xen-devel] XenDebugger-HOWTO, Ryan Harper
Next by Date:  Re: [Xen-devel] AFS-based VBD backend, Steve Traugott
Previous by Thread:  RE: [Xen-devel] LXR-type source code browsing, Ian Pratt
Next by Thread:  Re: [Xen-devel] LXR-type source code browsing, Shane Geiger
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy