Re: About Xen: maybe a reiterative question but .. | KernelTrap

Re: About Xen: maybe a reiterative question but ..

view
thread

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: Damien Miller

Subject: Re: About Xen: maybe a reiterative question but ..

Date: Wednesday, October 24, 2007 - 7:01 pm

On Wed, 24 Oct 2007, L. V. Lammert wrote:

quoted text> I still stand by my original statement. Running application 'domains' in
> VMs instead of on a single server increases security.

It no worse security-wise to run applications on VMs rather than on the
one OS, but that isn't the only choice - is it?

You obviously didn't read Tavis' virtualisation security paper. VM escape
vulnerabilites are not theoretical. Tavis found vulnerabilities in every
VM he tested using only a couple of fuzzers.

Please stop pretending that virtualisation is about security, it isn't.
The benefits are cost savings and decoupling applications from hardware.

-d

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

Re: About Xen: maybe a reiterative question but .., Henning Brauer, (Wed Oct 24, 1:18 am)

Re: About Xen: maybe a reiterative question but .., L. V. Lammert, (Wed Oct 24, 6:31 am)

Re: About Xen: maybe a reiterative question but .., Paul de Weerd, (Wed Oct 24, 7:50 am)

Re: About Xen: maybe a reiterative question but .., Henning Brauer, (Wed Oct 24, 8:12 am)

Re: About Xen: maybe a reiterative question but .., Dave Anderson, (Wed Oct 24, 8:45 am)

Re: About Xen: maybe a reiterative question but .., Adam Getchell, (Wed Oct 24, 9:46 am)

Re: About Xen: maybe a reiterative question but .. , Theo de Raadt, (Wed Oct 24, 9:59 am)

Re: About Xen: maybe a reiterative question but .. , Jack J. Woehr, (Wed Oct 24, 10:14 am)

Re: About Xen: maybe a reiterative question but .., L. V. Lammert, (Wed Oct 24, 10:16 am)

Re: About Xen: maybe a reiterative question but .., Marc Espie, (Wed Oct 24, 10:44 am)

Re: About Xen: maybe a reiterative question but .. , Theo de Raadt, (Wed Oct 24, 10:45 am)

Re: About Xen: maybe a reiterative question but .., L. V. Lammert, (Wed Oct 24, 10:48 am)

Re: About Xen: maybe a reiterative question but .. , Theo de Raadt, (Wed Oct 24, 11:03 am)

Re: About Xen: maybe a reiterative question but .. , L. V. Lammert, (Wed Oct 24, 11:41 am)

Re: About Xen: maybe a reiterative question but .. , Theo de Raadt, (Wed Oct 24, 11:57 am)

Re: About Xen: maybe a reiterative question but .., Paul de Weerd, (Wed Oct 24, 12:22 pm)

Re: About Xen: maybe a reiterative question but .., Darren Spruell, (Wed Oct 24, 12:27 pm)

Re: About Xen: maybe a reiterative question but .., bofh, (Wed Oct 24, 12:39 pm)

Re: About Xen: maybe a reiterative question but .. , Theo de Raadt, (Wed Oct 24, 12:46 pm)

Re: About Xen: maybe a reiterative question but .., Henning Brauer, (Wed Oct 24, 1:16 pm)

Re: About Xen: maybe a reiterative question but .., L. V. Lammert, (Wed Oct 24, 1:31 pm)

Re: About Xen: maybe a reiterative question but .., Jason Dixon, (Wed Oct 24, 1:37 pm)

Re: About Xen: maybe a reiterative question but .., bofh, (Wed Oct 24, 1:48 pm)

Re: About Xen: maybe a reiterative question but .., L. V. Lammert, (Wed Oct 24, 1:48 pm)

Re: About Xen: maybe a reiterative question but .., Kevin Stam, (Wed Oct 24, 2:04 pm)

Re: About Xen: maybe a reiterative question but .., Daniel Ouellet, (Wed Oct 24, 2:19 pm)

Re: About Xen: maybe a reiterative question but .., Henning Brauer, (Wed Oct 24, 2:26 pm)

Re: About Xen: maybe a reiterative question but .. , Theo de Raadt, (Wed Oct 24, 2:31 pm)

Re: About Xen: maybe a reiterative question but .. , Theo de Raadt, (Wed Oct 24, 2:41 pm)

Re: About Xen: maybe a reiterative question but .. , L. V. Lammert, (Wed Oct 24, 2:59 pm)

Re: About Xen: maybe a reiterative question but .., L. V. Lammert, (Wed Oct 24, 3:00 pm)

Re: About Xen: maybe a reiterative question but .., Henning Brauer, (Wed Oct 24, 3:14 pm)

Re: About Xen: maybe a reiterative question but .. , Tony Abernethy, (Wed Oct 24, 3:27 pm)

Re: About Xen: maybe a reiterative question but .., Matthew Weigel, (Wed Oct 24, 3:35 pm)

Re: About Xen: maybe a reiterative question but .. , L. V. Lammert, (Wed Oct 24, 3:44 pm)

Re: About Xen: maybe a reiterative question but .. , Jack J. Woehr, (Wed Oct 24, 3:52 pm)

Re: About Xen: maybe a reiterative question but .. , Jeremy Huiskamp, (Wed Oct 24, 4:52 pm)

Re: About Xen: maybe a reiterative question but .., Brian, (Wed Oct 24, 5:06 pm)

Re: About Xen: maybe a reiterative question but .., Darrin Chandler, (Wed Oct 24, 5:43 pm)

Re: About Xen: maybe a reiterative question but .., L. V. Lammert, (Wed Oct 24, 6:14 pm)

Re: About Xen: maybe a reiterative question but .., L. V. Lammert, (Wed Oct 24, 6:20 pm)

Re: About Xen: maybe a reiterative question but .., L. V. Lammert, (Wed Oct 24, 6:27 pm)

Re: About Xen: maybe a reiterative question but .., bofh, (Wed Oct 24, 6:46 pm)

Re: About Xen: maybe a reiterative question but .., Darren Spruell, (Wed Oct 24, 6:46 pm)

Re: About Xen: maybe a reiterative question but .., Brian, (Wed Oct 24, 6:51 pm)

Re: About Xen: maybe a reiterative question but .., Steve Shockley, (Wed Oct 24, 6:53 pm)

Re: About Xen: maybe a reiterative question but .., Darrin Chandler, (Wed Oct 24, 6:54 pm)

Re: About Xen: maybe a reiterative question but .., Jason Dixon, (Wed Oct 24, 6:57 pm)

Re: About Xen: maybe a reiterative question but .. , Theo de Raadt, (Wed Oct 24, 7:01 pm)

Re: About Xen: maybe a reiterative question but .., Damien Miller, (Wed Oct 24, 7:01 pm)

Re: About Xen: maybe a reiterative question but .., Damien Miller, (Wed Oct 24, 7:05 pm)

Re: About Xen: maybe a reiterative question but .., Tony Abernethy, (Wed Oct 24, 8:07 pm)

Re: About Xen: maybe a reiterative question but .., Karsten McMinn, (Wed Oct 24, 9:15 pm)

Re: About Xen: maybe a reiterative question but .., Lars Hansson, (Wed Oct 24, 9:50 pm)

Re: About Xen: maybe a reiterative question but .., Lars Noodén, (Wed Oct 24, 11:14 pm)

Re: About Xen: maybe a reiterative question but .., Richard Toohey, (Thu Oct 25, 12:28 am)

Re: About Xen: maybe a reiterative question but .., Richard Toohey, (Thu Oct 25, 12:37 am)

Re: About Xen: maybe a reiterative question but .., Lars Noodén, (Thu Oct 25, 1:00 am)

Re: About Xen: maybe a reiterative question but .., Richard Toohey, (Thu Oct 25, 1:06 am)

Hardware support for secure virtualization (was: About Xen ..., Rodrigo V. Raimundo, (Thu Oct 25, 3:50 am)

Re: Hardware support for secure virtualization (was: About ..., Stuart Henderson, (Thu Oct 25, 4:13 am)

Re: About Xen: maybe a reiterative question but .., Douglas A. Tutty, (Thu Oct 25, 6:04 am)

Re: About Xen: maybe a reiterative question but .., Douglas A. Tutty, (Thu Oct 25, 6:16 am)

Re: About Xen: maybe a reiterative question but .., L. V. Lammert, (Thu Oct 25, 7:06 am)

Re: About Xen: maybe a reiterative question but .., Adam Getchell, (Thu Oct 25, 7:30 am)

Re: About Xen: maybe a reiterative question but .., L. V. Lammert, (Thu Oct 25, 8:02 am)

Re: About Xen: maybe a reiterative question but .., L. V. Lammert, (Thu Oct 25, 9:09 am)

Re: About Xen: maybe a reiterative question but .., L. V. Lammert, (Thu Oct 25, 9:11 am)

Re: About Xen: maybe a reiterative question but .., Jason Dixon, (Thu Oct 25, 9:23 am)

Re: About Xen: maybe a reiterative question but .., L. V. Lammert, (Thu Oct 25, 9:26 am)

Re: About Xen: maybe a reiterative question but .., Tom Van Looy, (Thu Oct 25, 9:54 am)

Re: About Xen: maybe a reiterative question but .., L. V. Lammert, (Thu Oct 25, 10:43 am)

Re: About Xen: maybe a reiterative question but .., richardtoohey, (Thu Oct 25, 11:36 am)

Re: About Xen: maybe a reiterative question but .., Subcommander l0r3zz, (Thu Oct 25, 1:36 pm)

Re: About Xen: maybe a reiterative question but .., Matt Rowley, (Fri Oct 26, 5:34 am)

Re: About Xen: maybe a reiterative question but .., Subcommander l0r3zz, (Fri Oct 26, 10:23 am)

Re: About Xen: maybe a reiterative question but .., Shawn K. Quinn, (Sun Oct 28, 11:29 am)

Re: About Xen: maybe a reiterative question but .., bofh, (Sun Oct 28, 2:34 pm)

Re: About Xen: maybe a reiterative question but .., Douglas A. Tutty, (Sun Oct 28, 3:18 pm)

Re: About Xen: maybe a reiterative question but .., Nick Holland, (Sun Oct 28, 7:31 pm)

Re: About Xen: maybe a reiterative question but .., Douglas A. Tutty, (Mon Oct 29, 5:43 am)

Re: About Xen: maybe a reiterative question but .., bofh, (Mon Oct 29, 6:11 am)

Re: About Xen: maybe a reiterative question but .., Douglas A. Tutty, (Mon Oct 29, 1:26 pm)

Re: About Xen: maybe a reiterative question but .., Balázs, (Mon Oct 29, 8:56 pm)

Navigation

Popular discussions


linux-kernel:
Rafael J. Wysocki	[Bug #11407] suspend: unable to handle kernel paging request
Christoph Lameter	Re: [bug] SLUB + mm/slab.c boot crash in -rc9
Jörn	Re: [00/41] Large Blocksize Support V7 (adds memmap support)
Jeremy Fitzhardinge	Re: [2.6.25] compat VDSO option not disabling
Rafael J. Wysocki	[Bug #11551] Semi-repeatable hard lockup on 2.6.27-rc6
git:
Pat Thoyts	[PATCH] git-gui: use themed tk widgets with Tk 8.5
Frans Pop	'git gc --aggressive' effectively unusable
Stephan Beyer	Re: git sequencer prototype
Lynn Lin	Re: clearcase migration to git
Tait	Re: [PATCH] Replace hard-coded path with one from <paths.h>
linux-netdev:
William Allen Simpson	[net-next-2.6 PATCH v8 0/7] TCPCT part 1: cookie option exchange
Eric Dumazet	Re: [PATCH net-next-2.6] net: Introduce skb_orphan_try()
David Miller	Re: [PATCH] IPv6: preferred lifetime of address not getting updated
Eric Dumazet	Re: [PATCH net-next-2.6] net: Introduce skb_orphan_try()
Mark McLoughlin	Re: [PATCH 2/3] virtio: fix delayed xmit of packet and freeing of old packets.
git-commits-head:
Linux Kernel Mailing List	sparc64: Fix sun4u execute bit check in TSB I-TLB load.
Linux Kernel Mailing List	init: Open /dev/console from rootfs
Linux Kernel Mailing List	Remove empty comment in acpi/power.c
Linux Kernel Mailing List	x86 boot: only pick up additional EFI memmap if add_efi_memmap flag
Linux Kernel Mailing List	.gitignore: ignore *.lzo files
openbsd-misc:
nixlists	Re: Which laptops do the developers use?
Robert	disklabel - cylinder rounding
L. V. Lammert	OT, .. but has anyone seen a crontab editor
admin	Drive a 2009 car from R799p/m
Darrin Chandler	Re: That whole "Linux stealing our code" thing

Colocation donated by:

Syndicate