From mboxrd@z Thu Jan 1 00:00:00 1970 From: Rusty Russell Subject: RE: [BUNDLE] Testing a simpler inter-domain transport Date: Mon, 13 Feb 2006 13:32:54 +1100 Message-ID: <1139797974.5201.19.camel@localhost.localdomain> References: <44BDAFB888F59F408FAE3CC35AB4704102FCD61D@orsmsx409> Mime-Version: 1.0 Content-Type: text/plain Content-Transfer-Encoding: 7bit Return-path: In-Reply-To: <44BDAFB888F59F408FAE3CC35AB4704102FCD61D@orsmsx409> List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Sender: xen-devel-bounces@lists.xensource.com Errors-To: xen-devel-bounces@lists.xensource.com To: "King, Steven R" Cc: xen-devel List-Id: xen-devel@lists.xenproject.org On Sun, 2006-02-12 at 15:39 -0800, King, Steven R wrote: > > Note that like a real LAN, one badly behaved partition > > can block communication for the others they share the lan with... > > Shared page LAN is much less secure than a real LAN. Any domain > attached to the shared page, i.e. in the LAN, can modify any frame "in > flight" on the page. Recipients have no confidence that the received > frame is actually what the sender sent. Hi Steve, I don't quite know how to respond to this! Your statement is true given some assumptions, but not relevent to my implementation, hence the presence of your assertion in this thread is quixotic. In my implementation, you can't tell which domain on the LAN a packet came from, nor do I try to prevent malicious domains on the LAN from effectively stopping all useful traffic. I believe that multi-domain access is useful in some scenarious, nonetheless. Hope that clarifies? Rusty. -- ccontrol: http://ozlabs.org/~rusty/ccontrol