WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-users

Re: [Xen-users] XCP/Xen security

I've never seen it happen, but according to the various security
bulletins that have come out on the xen kernels that come
from RedHat it can happen.
What I have done myself is by nasty I/O inside the domU to crash
not only the domU but panic the dom0 that is hosting it too.  I
think that is the bigger risk.

Much of this stuff if I understand correctly is due to
vulnerabilities in the virtual machines layer of the hardware itself.

Steve

On Tue, 16 Mar 2010, Vern Burke wrote:

Greetings all:
  Just a general question for the group at large. I find myself in the position of 
fighting a lot of vague "cloud security issues".

The question is, has anyone ever seen a VM break into the Xen hypervisor layer 
and presumably break into another VM? I'm not talking about an external attack 
on the Dom0, I'm talking about an internal attack through the DomU's connection 
to the hypervisor.

Vern
Sent from my BlackBerry® wireless device from U.S. Cellular


--
------------------------------------------------------------------
Steven C. Timm, Ph.D  (630) 840-8525
timm@xxxxxxxx  http://home.fnal.gov/~timm/
Fermilab Computing Division, Scientific Computing Facilities,
Grid Facilities Department, FermiGrid Services Group, Assistant Group Leader.

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
<Prev in Thread] Current Thread [Next in Thread>