Re: About Xen: maybe a reiterative question but ..

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: bofh <goodb0fh@...>

To: OpenBSD general usage list <misc@...>

Subject: Re: About Xen: maybe a reiterative question but ..

Date: Wednesday, October 24, 2007 - 12:08 am

On 10/23/07, Ben Goren wrote:

quoted text

> But that's about it. I suppose running Windows virtual machines on
> a real OpenBSD machine might ``have a lot of security benefits''
> in some perverted sense of the words, but it's not like the VM is
> magically going to protect the virtual machines or anything. And

That's why you use a virtual firewall with openbsd in front of it!!!

> if the Windows virtual machines can still talk to the outside

quoted text

> world or to each other (via simulated network interfaces, for
> example), even those ``security benefits'' won't mean much.

Heh. Read any of the recent advisories against vmware? Real world
exploits are already out there. AIUI, to fix the current set of
problems, you basically have to turn off vmware tools.

Right now, you do have to attack the guest before you can get to the
host, but I'm sure there's a malicious packet out there, somewhere,
that can tickle the system just right, and skip past all that straight
into the host.

If you do take that as the gospel truth, please, at least, buy
the freaking CD, yeah?
--
"This officer's men seem to follow him merely out of idle curiosity."
-- Sandhurst officer cadet evaluation.

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

About Xen: maybe a reiterative question but .., carlopmart, (Mon Oct 22, 4:05 am)

Re: About Xen: maybe a reiterative question but .., ropers, (Mon Oct 22, 2:36 pm)

Re: About Xen: maybe a reiterative question but .., Nick Guenther, (Mon Oct 22, 3:11 pm)

Re: About Xen: maybe a reiterative question but .., Jeff Quast, (Mon Oct 22, 6:07 pm)

Re: About Xen: maybe a reiterative question but .., ropers, (Tue Oct 23, 1:02 pm)

Re: About Xen: maybe a reiterative question but .., ropers, (Mon Oct 22, 7:05 pm)

Re: About Xen: maybe a reiterative question but .., ropers, (Mon Oct 22, 7:11 pm)

Re: About Xen: maybe a reiterative question but .., Luca Corti, (Tue Oct 23, 4:03 am)

Re: About Xen: maybe a reiterative question but .., , (Tue Oct 23, 8:57 pm)

Re: About Xen: maybe a reiterative question but .., Ben Goren, (Tue Oct 23, 11:35 pm)

Re: About Xen: maybe a reiterative question but .., Douglas A. Tutty, (Wed Oct 24, 9:58 am)

Re: About Xen: maybe a reiterative question but .., bofh, (Wed Oct 24, 12:08 am)

Re: About Xen: maybe a reiterative question but .. , Theo de Raadt, (Tue Oct 23, 9:14 pm)

Non-x86 (was: About Xen: maybe a reiterative question but ..), Lars Noodén, (Wed Oct 24, 2:54 am)

Re: Non-x86 (was: About Xen: maybe a reiterative question bu..., ropers, (Thu Oct 25, 8:22 am)

Re: Non-x86, Lars Noodén, (Fri Oct 26, 3:54 am)

Re: Non-x86, Ted Unangst, (Fri Oct 26, 11:28 am)

Re: Non-x86, Lars Noodén, (Fri Oct 26, 12:17 pm)

Re: Non-x86, Martin Schröder, (Fri Oct 26, 12:23 pm)

Re: Non-x86, Lars Noodén, (Mon Oct 29, 12:53 pm)

Re: Non-x86, Matthew Szudzik, (Tue Oct 30, 2:26 pm)

Re: Non-x86, Douglas A. Tutty, (Mon Oct 29, 5:47 pm)

Re: Non-x86, Matthew Szudzik, (Fri Oct 26, 5:03 pm)

Re: Non-x86, Jeff Quast, (Sun Oct 28, 9:59 am)

Re: Non-x86, Douglas A. Tutty, (Sun Oct 28, 11:27 am)

Re: Non-x86, Martin Schröder, (Fri Oct 26, 7:39 am)

Re: Non-x86, mickey, (Fri Oct 26, 7:49 am)

Re: About Xen: maybe a reiterative question but .., Adam Getchell, (Wed Oct 24, 1:41 am)

Re: About Xen: maybe a reiterative question but .., carlopmart, (Wed Oct 24, 9:38 am)

Re: About Xen: maybe a reiterative question but .., Chris Kuethe, (Wed Oct 24, 10:14 am)

Re: About Xen: maybe a reiterative question but .., Christoph Egger, (Wed Oct 24, 11:10 am)

Re: About Xen: maybe a reiterative question but .., Artur Grabowski, (Wed Oct 24, 11:25 am)

Re: About Xen: maybe a reiterative question but .., Christoph Egger, (Wed Oct 24, 11:33 am)

Re: About Xen: maybe a reiterative question but .., carlopmart, (Wed Oct 24, 11:45 am)

Re: About Xen: maybe a reiterative question but .., carlopmart, (Wed Oct 24, 10:20 am)

Re: About Xen: maybe a reiterative question but .. , Damien Miller, (Tue Oct 23, 9:25 pm)

Re: About Xen: maybe a reiterative question but .. , Carlo Gebhardt, (Fri Oct 26, 6:58 am)

Re: About Xen: maybe a reiterative question but .., Per-Erik Persson, (Tue Oct 23, 5:00 am)

Re: About Xen: maybe a reiterative question but .., Ted Unangst, (Tue Oct 23, 12:39 pm)

Re: About Xen: maybe a reiterative question but .., Lars Hansson, (Tue Oct 23, 6:56 am)

Re: About Xen: maybe a reiterative question but .., Lars Noodén, (Tue Oct 23, 6:45 am)

Re: About Xen: maybe a reiterative question but .., xSAPPYx, (Tue Oct 23, 2:18 pm)

Re: About Xen: maybe a reiterative question but .., carlopmart, (Tue Oct 23, 3:07 am)

Re: About Xen: maybe a reiterative question but .., Henning Brauer, (Tue Oct 23, 8:19 am)

Re: About Xen: maybe a reiterative question but .., ropers, (Tue Oct 23, 12:22 pm)

Re: About Xen: maybe a reiterative question but .., Christoph Egger, (Wed Oct 24, 11:09 am)

Re: About Xen: maybe a reiterative question but .., Ted Unangst, (Wed Oct 24, 2:09 pm)

Re: About Xen: maybe a reiterative question but .., ropers, (Mon Oct 22, 3:34 pm)

Re: About Xen: maybe a reiterative question but .., ropers, (Mon Oct 22, 4:14 pm)


linux-kernel:
Andrew Morton	Re: -mm merge plans for 2.6.23 -- sys_fallocate
david	Re: Dual-Licensing Linux Kernel with GPL V2 and GPL V3
Linus Torvalds	Linux 2.6.27-rc5
David Miller	Re: [PATCH] net: Fix the prototype of call_netdevice_notifiers
git:

linux-netdev:

Gerrit Renker	[PATCH 27/37] dccp: Integration of dynamic feature activation - part 2 (server side)
David Miller	Re: [GIT]: Networking
Jarek Poplawski	[PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
openbsd-misc:

Re: About Xen: maybe a reiterative question but ..

Online users