[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-devel] Disabling outgoing connectiong from within guest
From: |
Paul Brook |
Subject: |
Re: [Qemu-devel] Disabling outgoing connectiong from within guest |
Date: |
Thu, 19 Jun 2008 01:01:42 +0100 |
User-agent: |
KMail/1.9.9 |
On Wednesday 18 June 2008, Łukasz Taczuk wrote:
> Hi!
>
> I would like to create a sandboxed environment in which random users
> would be able to roam freely using ssh.
> However, I don't want to allow them to open outgoing connections just
> as if the box was offline (even if the guest is compromised).
> Basically I would like to have something like reversed user mode
> network stack: you can log in to the guest, but once you're in, you
> cannot connect to the host nor any other machine.
Your host OS firewall/packet filter should already be able to do this.
IMHO there's little or no point reimplementing this functionality in qemu.
Paul