From mboxrd@z Thu Jan 1 00:00:00 1970 From: voices Subject: Re: Porting Openbsd to Xen? Date: Mon, 24 Jan 2005 12:56:32 +0100 Message-ID: References: <20050124021059.GD23571@stateless> Reply-To: voices@metallicrain.com Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Return-path: In-Reply-To: <20050124021059.GD23571@stateless> Sender: xen-devel-admin@lists.sourceforge.net Errors-To: xen-devel-admin@lists.sourceforge.net List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , List-Archive: To: xen-devel@lists.sourceforge.net List-Id: xen-devel@lists.xenproject.org Nicholas Lee wrote: > Has there been any thoughts on porting Openbsd to Xen? (http://www.cl.cam.ac.uk/Research/SRG/netos/xen/) > > Both Freebsd (unstable) > http://www.bsdclusters.com/xenofreebsd/ > and Netbsd (stable) > http://www.cl.cam.ac.uk/Research/SRG/netos/xen/faq.html#a1.3 > have been ported. > > > The principle of Xen, having an insecure (linux) layer running as a host > OS might go against the philosophy of Openbsd. It would be nice though to > be able to use pf/altq and other Openbsd goodies in Linux land. It would be really great, because OpenBSD has a lot of built-in security features, for example W^X. I think one of the biggest problems preventing usage of Xen in some environments is lack of possibilities to highly secure guest systems - for example great PaX (most important part of grsecurity). We all know, that standard linux is totally defenceless against so popular buffer overflows exploitation, or format string bugs ... -- voices (at) metallicrain (dot) com ------------------------------------------------------- This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting Tool for open source databases. Create drag-&-drop reports. Save time by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc. Download a FREE copy at http://www.intelliview.com/go/osdn_nl