On Sun, Jan 03, 2010 at 12:47:54PM +0800, Paul Wise wrote: > On Sun, Jan 3, 2010 at 9:01 AM, Brian May <b...@snoopy.debian.net> wrote: > > > 1) I believe Xen, with paravirtualization (that is without QEMU) is more > > secure > > then KVM (or Xen) with QEMU. > > I haven't heard this claim before, do you have any references to support this?
http://blog.orebokech.com/2007/05/xen-security-or-lack-thereof.html links to http://taviso.decsystem.org/virtsec.pdf. I don't know for certain this applies to KVM, however I would assume so. In doing a search for the above I come across a number of security issues in Xen that are blamed on QEMU. Also see: http://etbe.coker.com.au/2007/10/28/xen-and-security/ -- Brian May <b...@snoopy.debian.net> -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org