WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-devel] [PATCH] [Xend] Move some backend configuration

from [Ian Jackson] [Permanent Link][Original]
To: Keir Fraser <keir.fraser@xxxxxxxxxxxxx>
Subject: Re: [Xen-devel] [PATCH] [Xend] Move some backend configuration
From: Ian Jackson <Ian.Jackson@xxxxxxxxxxxxx>
Date: Thu, 2 Oct 2008 10:34:09 +0100
Cc: Pascal Bouchareine <pascal@xxxxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxx, "Daniel P. Berrange" <berrange@xxxxxxxxxx>, John Levon <levon@xxxxxxxxxxxxxxxxx>
Delivery-date: Thu, 02 Oct 2008 02:34:39 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <C5080DC1.279C8%keir.fraser@xxxxxxxxxxxxx>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
Newsgroups: chiark.mail.xen.devel
References: <20080930153054.GE15442@xxxxxxxxxx> <C5080DC1.279C8%keir.fraser@xxxxxxxxxxxxx>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx 
Keir Fraser writes ("Re: [Xen-devel] [PATCH] [Xend] Move some backend 
configuration"):
> On 30/9/08 16:30, "Daniel P. Berrange" <berrange@xxxxxxxxxx> wrote:
> > Console data
> >  /local/domain/%d/console/vnc-port
> >  /local/domain/%d/console/tty
> 
> Duplicating this pair of nodes sounds fine to me, *but* then libvirt is
> simply remaining vulnerable to the kind of attack we're are looking to
> avoid? Can any good really come from keeping the old locations?

Once again we have this tradeoff: in an old installation which has not
been properly patched or updated, should we
  (a) continue to let the system `work' but be vulnerable
  (b) make the system report an error so that the administrator
      knows that it needs to be fixed.

At least in this case I suppose we can expect old installations to be
patched _eventually_ ...

Ian.

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Xen-devel] Creating HVM guest by libxenguest, Gihan Munasinghe
Next by Date:  Re: [Xen-devel] [PATCH] [Xend] Move some backend configuration, Keir Fraser
Previous by Thread:  [Xen-devel] Creating HVM guest by libxenguest, Gihan Munasinghe
Next by Thread:  Re: [Xen-devel] [PATCH] [Xend] Move some backend configuration, Keir Fraser
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy