[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Building domains as a lesser user (was Re: [Xen-devel] boot loaders for domain != 0)

  • To: "Anthony Liguori" <anthony@xxxxxxxxxxxxx>, "Jacob Gorm Hansen" <jacobg@xxxxxxx>
  • From: "Ian Pratt" <m+Ian.Pratt@xxxxxxxxxxxx>
  • Date: Fri, 4 Feb 2005 09:44:28 -0000
  • Cc: <xen-devel@xxxxxxxxxxxxxxxxxxxxx>
  • Delivery-date: Fri, 04 Feb 2005 09:45:44 +0000
  • List-id: List for Xen developers <xen-devel.lists.sourceforge.net>
  • Thread-index: AcUKaqFZUyY+eUcWQbO6Jv/jGqMfDgAMxjug
  • Thread-topic: Building domains as a lesser user (was Re: [Xen-devel] boot loaders for domain != 0)

> The current architecture of Xen requires that we trust whatever is 
> running in Domain-0.  The problems being cited wouldn't be a 
> problem if 
> you could create domains from unpriviledged Domains because you could 
> have creator Domains who could be created from a trusted 
> source and used 
> as a buffer against attack.

It's always been part of the plan to be able to delegate dom0 functions
to enable one domain to be given control over another e.g. to create it,
map its pages, stop/start, debug etc.

It just hasn't been a priority to implement this, but it's the direction
we're heading with some of the security work.

Of course, we'll have to rename dom0_op to something else :-)


This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting
Tool for open source databases. Create drag-&-drop reports. Save time
by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc.
Download a FREE copy at http://www.intelliview.com/go/osdn_nl
Xen-devel mailing list



Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.