[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-devel] [PATCH] Security house-cleaning
From: |
Renzo Davoli |
Subject: |
Re: [Qemu-devel] [PATCH] Security house-cleaning |
Date: |
Thu, 17 Jun 2004 17:14:18 +0200 |
User-agent: |
Mutt/1.3.28i |
On Thu, Jun 17, 2004 at 04:07:20PM +0100, Gianni Tedesco wrote:
> Thats only worrisome from a security perspective if qemu was designed to
> run SUID, which I doubt that it is... Of course it's a bug and needs
> fixing though.
One of the main pros of Qemu (among the others) it that it has been
designed NOT to run SUID.
The only piece of code that need root access is tuntap networking.
This problem can be circunvented by:
- using sudo for tuntap
- using user net (a.k.a slirp)
- using vde.
renzo
- [Qemu-devel] [PATCH] Security house-cleaning, Tim, 2004/06/17
- Re: [Qemu-devel] [PATCH] Security house-cleaning, Gianni Tedesco, 2004/06/17
- Re: [Qemu-devel] [PATCH] Security house-cleaning,
Renzo Davoli <=
- Re: [Qemu-devel] [PATCH] Security house-cleaning, Panagiotis Issaris, 2004/06/17
- Re: [Qemu-devel] [PATCH] Security house-cleaning, Sebastien Bechet, 2004/06/17
- Re: [Qemu-devel] [PATCH] Security house-cleaning, Tim, 2004/06/17
- Re: [Qemu-devel] [PATCH] Security house-cleaning, Sander Nagtegaal, 2004/06/17
- Re: [Qemu-devel] [PATCH] Security house-cleaning, Gianni Tedesco, 2004/06/17
- Re: [Qemu-devel] [PATCH] Security house-cleaning, Renzo Davoli, 2004/06/17
- Re: [Qemu-devel] [PATCH] Security house-cleaning, Tim, 2004/06/17