WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Xen-devel] LXR-type source code browsing

from [Ian Pratt] [Permanent Link][Original]
To: "Shane Geiger" <sgeiger@xxxxxxxxxxxxx>, <xen-devel@xxxxxxxxxxxxxxxxxxxxx>
Subject: RE: [Xen-devel] LXR-type source code browsing
From: "Ian Pratt" <m+Ian.Pratt@xxxxxxxxxxxx>
Date: Tue, 18 Jan 2005 20:26:53 -0000
Delivery-date: Tue, 18 Jan 2005 22:01:47 +0000
Envelope-to: xen+James.Bulpin@xxxxxxxxxxxx
List-archive: <http://sourceforge.net/mailarchive/forum.php?forum=xen-devel>
List-help: <mailto:xen-devel-request@lists.sourceforge.net?subject=help>
List-id: List for Xen developers <xen-devel.lists.sourceforge.net>
List-post: <mailto:xen-devel@lists.sourceforge.net>
List-subscribe: <https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=subscribe>
List-unsubscribe: <https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=unsubscribe>
Sender: xen-devel-admin@xxxxxxxxxxxxxxxxxxxxx
Thread-index: AcT9mCwWmWW7749FRbunbFnzy6NakgAA3+Mg
Thread-topic: [Xen-devel] LXR-type source code browsing 
> Would it perhaps be even better to run snort in an 
> unprivileged domain, using
> iptables to feed traffic to that domain?

Sure, this could be done, but it would be most efficient to run it in
whichever domain has the bridge. The tools currently don't make it easy
to setup drivers in other domains. 

> Incidentally, why isn't iptables support built into the 
> default xen/linux kernels?
> iptables seems a natural fit with a project that can do so 
> much for system security.

iptables is built as a module in the default 2.6 xen0 config.

Ian


-------------------------------------------------------
The SF.Net email is sponsored by: Beat the post-holiday blues
Get a FREE limited edition SourceForge.net t-shirt from ThinkGeek.
It's fun and FREE -- well, almost....http://www.thinkgeek.com/sfshirt
_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-devel] not enough memory for DOM0 memory reservation, mukesh agrawal
Next by Date:  Re: [Xen-devel] databases and xen?, Ian Pratt
Previous by Thread:  Re: [Xen-devel] LXR-type source code browsing, Anthony Liguori
Next by Thread:  [Xen-devel] Windows..., M Afifi
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy