From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43)
	id 1MOJUs-0004we-9A
	for qemu-devel@nongnu.org; Tue, 07 Jul 2009 18:50:46 -0400
Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43)
	id 1MOJUn-0004uc-LN
	for qemu-devel@nongnu.org; Tue, 07 Jul 2009 18:50:45 -0400
Received: from [199.232.76.173] (port=35126 helo=monty-python.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43) id 1MOJUn-0004uW-Gw
	for qemu-devel@nongnu.org; Tue, 07 Jul 2009 18:50:41 -0400
Received: from mail-ew0-f207.google.com ([209.85.219.207]:55374)
	by monty-python.gnu.org with esmtp (Exim 4.60)
	(envelope-from <bique.alexandre@gmail.com>) id 1MOJUn-000561-4y
	for qemu-devel@nongnu.org; Tue, 07 Jul 2009 18:50:41 -0400
Received: by ewy3 with SMTP id 3so832025ewy.34
	for <qemu-devel@nongnu.org>; Tue, 07 Jul 2009 15:50:40 -0700 (PDT)
MIME-Version: 1.0
In-Reply-To: <200907072344.33893.paul@codesourcery.com>
References: <200907011931.53521.alexandre.bique@citrix.com>
	<20090707200327.GA3902@miranda.arrow>
	<5d3bb3090907071421i506a2f0bh5aca170c35a26f62@mail.gmail.com>
	<200907072344.33893.paul@codesourcery.com>
From: Alexandre Bique <bique.alexandre@gmail.com>
Date: Tue, 7 Jul 2009 22:50:20 +0000
Message-ID: <5d3bb3090907071550s6e832c45k804bca769aa57f70@mail.gmail.com>
Subject: Re: [Qemu-devel] [PATCH 0/5] ATAPI pass through v2
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
List-Id: qemu-devel.nongnu.org
List-Unsubscribe: <http://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/pipermail/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <http://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: Paul Brook <paul@codesourcery.com>
Cc: qemu-devel@nongnu.org

On Tue, Jul 7, 2009 at 10:44 PM, Paul Brook<paul@codesourcery.com> wrote:
>> > I expect that running qemu as root counts as a 'bad idea' (I gather
>> > that commands are filtered when running as a regular user), but even s=
o,
>> > I wonder if guests should be prevented from performing firmware update=
s?
>>
>> Yeps.
>
> I disagree. =C2=A0Upgrading the firmware from within the guest sounds lik=
e a
> legitimate use, =C2=A0especially given the proliferation of proprietary w=
indows-
> only upgrade utilities.

Maybe we could agree on a switch to forward/block this command ?

--=20
Alexandre Bique