From mboxrd@z Thu Jan 1 00:00:00 1970 From: Anthony Liguori Subject: Re: Building domains as a lesser user (was Re: boot loaders for domain != 0) Date: Thu, 03 Feb 2005 21:34:43 -0600 Message-ID: <4202ED53.70802@codemonkey.ws> References: <4202CB48.2040704@diku.dk> <4202DB0F.1050102@codemonkey.ws> <4202E915.4030100@diku.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit In-Reply-To: <4202E915.4030100@diku.dk> Sender: xen-devel-admin@lists.sourceforge.net Errors-To: xen-devel-admin@lists.sourceforge.net List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , List-Archive: To: Jacob Gorm Hansen Cc: xen-devel@lists.sourceforge.net List-Id: xen-devel@lists.xenproject.org Jacob Gorm Hansen wrote: > Anthony Liguori wrote: > > If we trust Linux to enforce security, we do not need Xen at all ;-) > The current architecture of Xen requires that we trust whatever is running in Domain-0. The problems being cited wouldn't be a problem if you could create domains from unpriviledged Domains because you could have creator Domains who could be created from a trusted source and used as a buffer against attack. No matter what, you're trusting some non-Xen piece of software to enforce security within Domain-0, unless the next step in Xen is to write a Domain-0 OS :-) Regards, -- Anthony Liguori anthony@codemonkey.ws ------------------------------------------------------- This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting Tool for open source databases. Create drag-&-drop reports. Save time by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc. Download a FREE copy at http://www.intelliview.com/go/osdn_nl