On Sat, Aug 26, 2017 at 01:05:46 +, Zhangbo (Oscar) wrote:
> >On Fri, Aug 25, 2017 at 08:52:16 +, Zhangbo (Oscar) wrote:
> >> >On Fri, Aug 25, 2017 at 06:45:18 +, Zhangbo (Oscar) wrote:
[...]
> >If you don't trust the host, don't use it. There's no protection from
> >reading the memor
On 08/25/2017 12:41 PM, Martin Kletzander wrote:
> On Fri, Aug 25, 2017 at 10:29:03AM +, Zhangbo (Oscar) wrote:
>>>
>>> Host can read all of the guest's memory or mount the image and modify
>>> the guest agent. Or even add their own communication program that can
>>> do anything.
>>>
>>
>> I g
>>>Host can read all of the guest's memory or mount the image and modify
>>>the guest agent. Or even add their own communication program that can
>>>do anything.
>>>
>>
>>I get your point now! :) Thanks a lot!!
>>
>>Further more, kvm seems not as secure as xen, because xen isolates dom0 and
>dom
>On Fri, Aug 25, 2017 at 08:52:16 +, Zhangbo (Oscar) wrote:
>> >On Fri, Aug 25, 2017 at 06:45:18 +, Zhangbo (Oscar) wrote:
>
>[...]
>
>> >> The Administrator also can use other commands such as "
>> >guest-file-open" that also cause Insider Access.
>> >>
>> >> So, how to avoid t
On Fri, Aug 25, 2017 at 10:29:03AM +, Zhangbo (Oscar) wrote:
Host can read all of the guest's memory or mount the image and modify
the guest agent. Or even add their own communication program that can
do anything.
I get your point now! :) Thanks a lot!!
Further more, kvm seems not as
>
>Host can read all of the guest's memory or mount the image and modify
>the guest agent. Or even add their own communication program that can
>do anything.
>
I get your point now! :) Thanks a lot!!
Further more, kvm seems not as secure as xen, because xen isolates dom0 and
domU well,
The ad
On Fri, Aug 25, 2017 at 08:59:54AM +, Zhangbo (Oscar) wrote:
On Fri, Aug 25, 2017 at 06:45:18AM +, Zhangbo (Oscar) wrote:
Hi all:
The Host Administrator is capable of running any exec in guests via the
qemu-ga command "guest-exec", eg:
virsh qemu-agent-command test_guest '{
>On Fri, Aug 25, 2017 at 06:45:18AM +, Zhangbo (Oscar) wrote:
>>Hi all:
>> The Host Administrator is capable of running any exec in guests via the
>qemu-ga command "guest-exec", eg:
>>
>>virsh qemu-agent-command test_guest '{"execute": "guest-exec",
>"arguments": {"path": "ifconfig"
On Fri, Aug 25, 2017 at 06:45:18AM +, Zhangbo (Oscar) wrote:
Hi all:
The Host Administrator is capable of running any exec in guests via the qemu-ga
command "guest-exec", eg:
virsh qemu-agent-command test_guest '{"execute": "guest-exec", "arguments": {"path": "ifconfig",
"arg":
On Fri, Aug 25, 2017 at 06:45:18 +, Zhangbo (Oscar) wrote:
> Hi all:
> The Host Administrator is capable of running any exec in guests via the
> qemu-ga command "guest-exec", eg:
>
> virsh qemu-agent-command test_guest '{"execute": "guest-exec",
> "arguments": {"path": "ifconfig
Hi all:
The Host Administrator is capable of running any exec in guests via the
qemu-ga command "guest-exec", eg:
virsh qemu-agent-command test_guest '{"execute": "guest-exec",
"arguments": {"path": "ifconfig", "arg": [ "eth1", "192.168.0.99"
],"capture-output": true } }'
{"return"
11 matches
Mail list logo
