Jeff,
Thanks for the response.
On Tue, 24 Oct 2006, Jeff Dike wrote:
> On Tue, Oct 24, 2006 at 06:51:39AM -0800, John P. Mitchell wrote:
>> I have been reading about UML on the UML Kernel Home Page. I have
>> found several references to security issues such as the host system being
>> accesible from the guest system and memory not being secure between
>> multple UML instances.
>
> URLS?
http://user-mode-linux.sourceforge.net/todo.html
The entry that is interesting is:
protect kernel memory from userspace
http://user-mode-linux.sourceforge.net/skas.html
I can not tell if this is something that works with 2.6 kernel revs or
not. From the web page it sounds like UML is very insecure without this
patch. Some of the mailing lists refer to a skas0 and a skas3 which I
can not find anything on the web page about.
>
>> Have these security issues been solved? I want to
>> use UML on a single server with three UMLs that I want to be totally
>> isolated from one another. Is that possible yet? Thanks for your time.
>
> UMLs are (and have been for a long time) isolated from each other and
> the host.
>
> Jeff
Please do not take my questions as disrespect, UML is a great
accomplishment. I am just trying to figure out if it is secure enough that
in the event that a UML instance is compromised at the root user level
that another UML instance on the same machine will not be at risk.
Thanks for your time.
--
John P. Mitchell <[EMAIL PROTECTED]>
-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
User-mode-linux-user mailing list
User-mode-linux-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/user-mode-linux-user
