WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Xen-users] Xen Security

from [Simon Hobson] [Permanent Link][Original]
To: Xen-users@xxxxxxxxxxxxxxxxxxx
Subject: RE: [Xen-users] Xen Security
From: Simon Hobson <linux@xxxxxxxxxxxxxxxx>
Date: Sat, 17 Jul 2010 08:08:08 +0100
Cc:
Delivery-date: Sat, 17 Jul 2010 00:16:06 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <46C13AA90DB8844DAB79680243857F0F0AFDC4@xxxxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <4C3F905E.9030100@xxxxxxxxxxx><20100716060713.GB19848@xxxxxxxxxxxxxxxxx><4 C4004FD.8010202@xxxxxxxxxxx> <p0624081dc865c344cbea@xxxxxxxxxxxxxxxxxxxxxx> <46C13AA90DB8844DAB79680243857F0F0AFDC4@xxxxxxxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx 
Jonathan Tripathy wrote:


 >One is simply to subvert the communications between the guest and the
 >host - things like buffer overflows, code injection, etc
You say "simply", however isn't it actually quite difficult to do the things you mentioned? Reading on the CVE lists, there doesn't seem to be any current known possible exploits?
I've no idea how hard or otherwise such things are to do, I didn't mean to imply it's simple to do, but I'd imagine it's a relatively simple attack vector to use.
OK, it's a different scale of things to SQL Injection where you've a website passing user-supplied data to a backend database (via the website scripting), but you've still got an open communications channel where the guest OS can exchange messages with the host (OS and/or Xen). Find a bug in the handling of those messages and you've an open attack vector.
Having an open communications channel is half of the battle - without it you need to crack two things, find a flaw in the system AND find a way of getting in to exploit it. 

--
Simon Hobson

Visit http://www.magpiesnestpublishing.co.uk/ for books by acclaimed
author Gladys Hobson. Novels - poetry - short stories - ideal as
Christmas stocking fillers. Some available as e-books.

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Xen-users] Possible to boot domu from iso and get vnc?, Donny Brooks
Next by Date:  Re: [Xen-devel] RE: XCP: first unstable snapshot available, Ian Campbell
Previous by Thread:  Re: [Xen-users] Xen Security, Steve Spencer
Next by Thread:  Re: [Xen-users] Xen Security, Rudi Ahlers
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy