From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from eggs.gnu.org ([140.186.70.92]:37148)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <anthony@codemonkey.ws>) id 1QjXqt-00082R-CW
	for qemu-devel@nongnu.org; Wed, 20 Jul 2011 10:34:21 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <anthony@codemonkey.ws>) id 1QjXqq-0003pV-4q
	for qemu-devel@nongnu.org; Wed, 20 Jul 2011 10:34:17 -0400
Received: from mail-gy0-f173.google.com ([209.85.160.173]:44210)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <anthony@codemonkey.ws>) id 1QjXqp-0003p1-IA
	for qemu-devel@nongnu.org; Wed, 20 Jul 2011 10:34:15 -0400
Received: by gyf2 with SMTP id 2so142436gyf.4
	for <qemu-devel@nongnu.org>; Wed, 20 Jul 2011 07:34:14 -0700 (PDT)
Message-ID: <4E26E764.80809@codemonkey.ws>
Date: Wed, 20 Jul 2011 09:34:12 -0500
From: Anthony Liguori <anthony@codemonkey.ws>
MIME-Version: 1.0
References: <4E2055AE.8090107@redhat.com>	<CAJSP0QWd8DusPiNm9DpzcSBHvJAWVvv=3wCb5nHKT3VO1O2eag@mail.gmail.com>	<4E253136.4080509@redhat.com>	<CAJSP0QVaDnxZZgbg5FSYVEafoNnWVseirTNGBM8x7KF4=hr3_Q@mail.gmail.com>	<4E258635.2040108@redhat.com>	<4E258D70.6000205@redhat.com>	<4E25902D.2000403@redhat.com>	<4E2593B0.1030508@redhat.com>	<4E2594FB.4050203@redhat.com>
	<4E25AD51.4000802@codemonkey.ws> <4E26DD43.2050306@redhat.com>
In-Reply-To: <4E26DD43.2050306@redhat.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Re: [Qemu-devel] live snapshot wiki updated
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.nongnu.org/archive/html/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: Cleber Rosa <crosa@redhat.com>
Cc: qemu-devel@nongnu.org

On 07/20/2011 08:50 AM, Cleber Rosa wrote:
> Just as a reminder: with DAC, if a guest is compromised and somehow
> escalates to QEMU, it could disable its isolation (ie, by setting their
> own image files world readable). I guess we shouldn't try to fix the DAC
> model, but fix what's preventing us from fully using MAC, even though
> it's outside of QEMU.

I don't see how a guest making its data world readable is a fundamental 
problem.

DAC is a fundamental part of the Unix design and is something that 
administrators understand very well.  I completely understand the value 
of MAC but to argue that we shouldn't present DAC as an option I think 
is fundamentally wrong.

Regards,

Anthony Liguori

>
> CR.
>
>>
>> Regards,
>>
>> Anthony Liguori
>>
>
>