Xen project Mailing List

Re: [Xen-devel] [PATCH] xen-2.0: privileged port connections

To: Ian Pratt <m+Ian.Pratt@xxxxxxxxxxxx>

From: Tommi Virtanen <tv@xxxxxxxxxxxxx>

Date: Thu, 24 Mar 2005 21:06:08 +0200

Cc: Kurt Garloff <garloff@xxxxxxx>, Anthony Liguori <aliguori@xxxxxxxxxx>, Xen development list <xen-devel@xxxxxxxxxxxxxxxxxxxxx>, ian.pratt@xxxxxxxxxxxx

Delivery-date: Fri, 25 Mar 2005 01:48:44 +0000

List-id: List for Xen developers <xen-devel.lists.sourceforge.net>

Ian Pratt wrote:

For Xen 2.x, unix domain sockets would be too much of a pain to
implement over Twisted. Kurt's approach gets us closer toward 'secure by
default'.

That just tells me you don't know twisted (putting my "Twisted upstream developer" hat on..) Replace current reactor.listenTCP(port, protocolFactory) with reactor.listenUNIX(path, protocolFactory). If there's code that assumes TCP things (transport.getPeer() to give IP addresses and ports etc), those may need to be fixed, naturally. If you would use .tacs, as the recommended Twisted way of deplying server applications is, that would more like a configuration file change, done in /etc, as suits the admin. If you would use strports, that would be switching from string "8080" to string "unix:/path/to/socket". The actual protocol mechanics work identically. ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click _______________________________________________ Xen-devel mailing list Xen-devel@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/xen-devel

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.