From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43)
	id 1NKHb6-0006Fq-P2
	for qemu-devel@nongnu.org; Mon, 14 Dec 2009 15:32:48 -0500
Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43)
	id 1NKHb1-00064G-W6
	for qemu-devel@nongnu.org; Mon, 14 Dec 2009 15:32:48 -0500
Received: from [199.232.76.173] (port=45139 helo=monty-python.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43) id 1NKHb1-00063y-J5
	for qemu-devel@nongnu.org; Mon, 14 Dec 2009 15:32:43 -0500
Received: from mx1.redhat.com ([209.132.183.28]:30609)
	by monty-python.gnu.org with esmtp (Exim 4.60)
	(envelope-from <kraxel@redhat.com>) id 1NKHb0-0000ke-U1
	for qemu-devel@nongnu.org; Mon, 14 Dec 2009 15:32:43 -0500
Message-ID: <4B26A0DE.5000304@redhat.com>
Date: Mon, 14 Dec 2009 21:32:30 +0100
From: Gerd Hoffmann <kraxel@redhat.com>
MIME-Version: 1.0
Subject: Re: [Qemu-devel] Re: qdev property bug?
References: <20091214132423.GB973@redhat.com> <4B263F23.2090601@suse.de>
	<4B2647AF.1030605@codemonkey.ws> <20091214141143.GA1360@redhat.com>
	<20091214141341.GB1360@redhat.com> <4B264AF1.6060802@codemonkey.ws>
	<7FB8DD1225E54176BCAF5523B6AEA89B@FSCPC>
	<4B26931E.4000101@codemonkey.ws> <20091214194210.GB6150@redhat.com>
	<4B269933.3010906@codemonkey.ws> <20091214202019.GF6150@redhat.com>
In-Reply-To: <20091214202019.GF6150@redhat.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
List-Id: qemu-devel.nongnu.org
List-Unsubscribe: <http://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/pipermail/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <http://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: "Michael S. Tsirkin" <mst@redhat.com>
Cc: glommer@redhat.com, qemu-devel@nongnu.org, Alexander Graf <agraf@suse.de>, Kevin O'Connor <kevin@koconnor.net>, Sebastian Herbszt <herbszt@gmx.de>

On 12/14/09 21:20, Michael S. Tsirkin wrote:
>> So far, it's not clear to me that anyone has demonstrated how this is
>> harmful for people that don't want pxe booting.  Assuming we fix the bug
>> about rom loading, then there's really no impact to users.

Fix (v2) is on the list already.

> PXE booting might have security impact. You do not want to
> do this if you are on a hostile network.

Option rom loaded doesn't imply pxe boot will be tried.  It only means 
PXE boot can be selected, either via

   -boot order=[something with 'n' here]

or via

   -boot menu=on + F12 + picking menu entry

By default qemu doesn't try to PXE-boot, even if no other bootable 
device is available.

cheers,
   Gerd