On 10/24/07, Damien Miller <djm@mindrot.org> wrote:
Restating my earlier post again, in regards to Xen:
1. Ormandy states that Xen's design is congruent with good security
2. Ormandy doesn't actually demonstrate a DomU -> Dom0 escalation, and
in fact, didn't test any HVMs at all.
3. Ormandy hypothesizes that based on Qemu flaws, there may be lurking
issues. However, Qemu compromises != Xen HVM Qemu compromises
Furthermore:
1. Upstream patches already exist [1] in response to Ormandy's bug report [2]
On 10/24/07, Brian <brian@planetunix.net> wrote:
The standard of security is 100% bug free code? If so, then OpenBSD is
certainly insecure, because the two remote root exploits demonstrated
in the last 10 years shows that OpenBSD is not 100% bug free. Also, a
flaw (along with demonstrated code) was pointed out earlier in this
thread by Christopher Eggart.
Usually, when someone makes a claim that OpenBSD is insecure because
of some hypothetical vulnerability, the response is (rightly)
"Demonstrate an exploit. You'll be famous."
Can someone demonstrate a DomU->Dom0 exploit in the current, patched
version of Xen?
On 10/24/07, Jason Dixon <jason@dixongroup.net> wrote:
From my earlier post, did you look at:
http://shell.cse.ucdavis.edu/~bill/virt/virt.pdf
In particular, how does defending against certain classes of rootkits
and having known, good checksums for known, good binaries not increase
the security of the system?
Lets say DomU is OpenBSD (which HVM virtualizes fine, BTW). The few
rootkits (that could be installed by local, malicious users) for
OpenBSD can be detected using CDR, which wouldn't be the case
otherwise.
On 10/24/07, Theo de Raadt <deraadt@cvs.openbsd.org> wrote:
That I agree with.
But Xen is free ....
Adam
[1] https://launchpad.net/ubuntu/+source/xen-3.1/
[2] http://secunia.com/advisories/26986/
--
"Invincibility is in oneself, vulnerability in the opponent." -- Sun Tzu
