WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/

Home

xen-devel

[Top] [All Lists]

Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users

from [Adam Heath]

[Permanent Link][Original]

To:	Anthony Liguori <aliguori@xxxxxxxxxx>
Subject:	Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users
From:	Adam Heath <doogie@xxxxxxxxxxxxx>
Date:	Fri, 4 Mar 2005 13:39:39 -0600 (CST)
Cc:	Rich Persaud <rich.p@xxxxxxxxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxxx>, Bastian Blank <waldi@xxxxxxxxxx>
Delivery-date:	Fri, 04 Mar 2005 19:47:55 +0000
Envelope-to:	xen+James.Bulpin@xxxxxxxxxxxx
In-reply-to:	<1109965655.3355.8.camel@localhost>
List-archive:	<http://sourceforge.net/mailarchive/forum.php?forum=xen-devel>
List-help:	<mailto:xen-devel-request@lists.sourceforge.net?subject=help>
List-id:	List for Xen developers <xen-devel.lists.sourceforge.net>
List-post:	<mailto:xen-devel@lists.sourceforge.net>
List-subscribe:	<https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=subscribe>
List-unsubscribe:	<https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=unsubscribe>
References:	<Pine.LNX.4.58.0503041118010.13626@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx> <1109962904.2746.12.camel@localhost> <4228B4D3.8020909@xxxxxxxxxxxxx> <1109965655.3355.8.camel@localhost>
Sender:	xen-devel-admin@xxxxxxxxxxxxxxxxxxxxx

On Fri, 4 Mar 2005, Anthony Liguori wrote:

> You can't stop local connections from non-root users but there's not a
> whole lot of reason to have non-root users in domain-0 anyway.

Well, you couldn't, but it's not the right approach.  There's the OWNER
extension to iptables.



-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/xen-devel

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Xen-devel] severe security issue on dom0/xend/xm/non-root users, Adam Heath Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Anthony Liguori Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Rich Persaud Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Anthony Liguori Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Adam Heath <= Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Bastian Blank Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Rik van Riel Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Bastian Blank Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Tommi Virtanen Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Rik van Riel Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Kurt Garloff Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Rik van Riel Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Kurt Garloff Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, David Hopwood Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Kurt Garloff

Previous by Date:	Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Adam Heath
Next by Date:	Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Anthony Liguori
Previous by Thread:	Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Anthony Liguori
Next by Thread:	Re: [Xen-devel] severe security issue on dom0/xend/xm/non-root users, Bastian Blank
Indexes:	[Date] [Thread] [Top] [All Lists]

This site is hosted by Citrix