xen-devel

Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users

To:	Anthony Liguori <aliguori@xxxxxxxxxx>
Subject:	Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users
From:	Adam Heath <doogie@xxxxxxxxxxxxx>
Date:	Fri, 4 Mar 2005 13:39:39 -0600 (CST)
Cc:	Rich Persaud <rich.p@xxxxxxxxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxxx>, Bastian Blank <waldi@xxxxxxxxxx>
Delivery-date:	Fri, 04 Mar 2005 19:47:55 +0000
Envelope-to:	xen+James.Bulpin@xxxxxxxxxxxx
In-reply-to:	<1109965655.3355.8.camel@localhost>
List-archive:	<http://sourceforge.net/mailarchive/forum.php?forum=xen-devel>
List-help:	<mailto:xen-devel-request@lists.sourceforge.net?subject=help>
List-id:	List for Xen developers <xen-devel.lists.sourceforge.net>
List-post:	<mailto:xen-devel@lists.sourceforge.net>
List-subscribe:	<https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=subscribe>
List-unsubscribe:	<https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=unsubscribe>
References:	<Pine.LNX.4.58.0503041118010.13626@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx> <1109962904.2746.12.camel@localhost> <4228B4D3.8020909@xxxxxxxxxxxxx> <1109965655.3355.8.camel@localhost>
Sender:	xen-devel-admin@xxxxxxxxxxxxxxxxxxxxx

On Fri, 4 Mar 2005, Anthony Liguori wrote:

> You can't stop local connections from non-root users but there's not a
> whole lot of reason to have non-root users in domain-0 anyway.

Well, you couldn't, but it's not the right approach.  There's the OWNER
extension to iptables.



-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/xen-devel

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Xen-devel] severe security issue on dom0/xend/xm/non-root users, Adam Heath Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Anthony Liguori Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Rich Persaud Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Anthony Liguori Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Adam Heath <= Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Bastian Blank Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Rik van Riel Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Bastian Blank Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Tommi Virtanen Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Rik van Riel Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Kurt Garloff Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Rik van Riel Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Kurt Garloff Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, David Hopwood Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Kurt Garloff

Previous by Date:	Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Adam Heath
Next by Date:	Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Anthony Liguori
Previous by Thread:	Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Anthony Liguori
Next by Thread:	Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Bastian Blank
Indexes:	[Date] [Thread] [Top] [All Lists]

xen.org, Legal and Privacy

This site is hosted by XenSource, a Citrix company