[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Xen-users] How secure is Dom0 from DomU

To: <thewird@xxxxxxxxx>, "Thomas King" <tking@xxxxxxxxxx>
From: "James Harper" <james.harper@xxxxxxxxxxxxxxxx>
Date: Wed, 25 Jul 2007 23:18:46 +1000
Cc: xen-users@xxxxxxxxxxxxxxxxxxx
Delivery-date: Wed, 25 Jul 2007 06:16:35 -0700
List-id: Xen user discussion <xen-users.lists.xensource.com>
Thread-index: AcfOuRHYju8DXgS4SaKoz2Q/yvrHmgABPn2Q
Thread-topic: [Xen-users] How secure is Dom0 from DomU

> 
> The DomU is an independent environment and cannot access other DomU's
> or  the Dom0 regardless of the privaledges.
> 

It's an interesting question though... what would be the implications if
a buffer overflow was found either in the hypervisor or in a Dom0
backend device driver. Maybe a deliberately malformed disk or network
request could overflow something in Dom0 and give you root access there?

Can anyone in the know comment on this?

Thanks

James

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

References:
- [Xen-users] How secure is Dom0 from DomU
  - From: Thomas King
- Re: [Xen-users] How secure is Dom0 from DomU
  - From: thewird

Prev by Date: Re: [Xen-users] Hot backup vs (local) live migration
Next by Date: [Xen-users] Install 64 bit Dom 0
Previous by thread: Re: [Xen-users] How secure is Dom0 from DomU
Next by thread: [Xen-users] Compile error
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.