[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-devel] Security Implications of letting customers use their own kernel

To: Xen-devel@xxxxxxxxxxxxxxxxxxx
From: Jonathan Tripathy <jonnyt@xxxxxxxxxxx>
Date: Wed, 15 Dec 2010 12:26:28 +0000
Cc:
Delivery-date: Wed, 15 Dec 2010 04:27:06 -0800
List-id: Xen developer discussion <xen-devel.lists.xensource.com>

Hi Everyone,

What are the security implications of letting customers install theirown kernel?

In my own research, I have only seen things that would compromise theirown DomU. My main area on concern is to protect all the other DomUs.

An area of potential concern is if someone were to build a kernel thatenabled "No Execute" or "Disable Execution", could that compromise otherDomUs? Or would that just leave their DomU vulnerable to runningmalicious code?


Anyone aware of anything else?

Thanks

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

Follow-Ups:
- RE: [Xen-devel] Security Implications of letting customers use theirown kernel
  - From: James Harper

Prev by Date: Re: [Xen-devel] [PATCH][TOOLS] libxl: open code basename()
Next by Date: Re: [Xen-devel] [PATCH] svm: support VMCB cleanbits
Previous by thread: [Xen-devel] [PATCH][TOOLS] libxl: open code basename()
Next by thread: RE: [Xen-devel] Security Implications of letting customers use theirown kernel
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.