|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [Xen-devel] [PATCH] [RFC] run QEMU as non-root
On Fri, 2015-05-15 at 11:46 +0100, Stefano Stabellini wrote: > On Fri, 15 May 2015, Ian Campbell wrote: > > On Thu, 2015-05-14 at 18:52 +0100, Stefano Stabellini wrote: > > > Run QEMU as non-root. Starting from uid 6000, the chosen uid is > > > base+domid. If the uid doesn't exist, try just 6000. This is less > > > secure: ideally we don't want different domains having their QEMUs > > > running with the same uid. Finally if uid 6000 doesn't exist either, > > > fall back to running QEMU as root. > > > > We can't just pick a random number like that, especially not hardcoded. > > > > You should call getpwent_r. > > Are you suggesting to go over the full list of records in passwd? It > doesn't sound like a good idea. Did you mean getpwnam_r? yes, sorry. _______________________________________________ Xen-devel mailing list Xen-devel@xxxxxxxxxxxxx http://lists.xen.org/xen-devel
|
 |
Lists.xenproject.org is hosted with RackSpace, monitoring our |