|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [Xen-users] Multiple VMs - one static routable IP address
Alex Samad wrote: chroot for OpenSSH has never been well-supported. (I used to be the maintainer of that add-on functionality, and it remains rejected by the core authors to this day, much to my lament.) WebDAV over HTTPS works well for upload/download sites, and avoids the shell access and local account problems of SSH.On Thu, May 17, 2007 at 10:24:24PM -0500, cyber@xxxxxxxxx wrote:Originally I was planning on putting all my own personal websites and email on Domain-0, as well as an iptables based firewall. Having read more, seems like the recommendation is to keep Domain-0 behind a DomU where the firewall runs. Makes sense, and doesn't seem difficult to do... just a new paradigm for me. I've always only had one server, and it did everything and anything. I love the idea of breaking it all up from a security and manageability standpoint... just not sure what to do about getting all the bits to the right VMs that need to be routed correctly.if its for security of apps, why not look at chroot ? I'm not a believer in external, hardware firewalls, to avoid the complexities and difficulties of maintaining my own software ones. _______________________________________________ Xen-users mailing list Xen-users@xxxxxxxxxxxxxxxxxxx http://lists.xensource.com/xen-users
|
 |
Lists.xenproject.org is hosted with RackSpace, monitoring our |