From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1MaG6G-0005Pi-Kc for garchives@archives.gentoo.org; Sun, 09 Aug 2009 21:38:44 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 02D69E02C7; Sun, 9 Aug 2009 21:38:43 +0000 (UTC) Received: from ey-out-1920.google.com (ey-out-1920.google.com [74.125.78.145]) by pigeon.gentoo.org (Postfix) with ESMTP id BB827E02C7 for ; Sun, 9 Aug 2009 21:38:42 +0000 (UTC) Received: by ey-out-1920.google.com with SMTP id 5so684575eyb.10 for ; Sun, 09 Aug 2009 14:38:42 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=TyAHoytqM0OzXY+PgmZSk2m3UsQN3TkF9CTp26EXsL0=; b=eLIkXwqFbPq5IJXA0DTLMOXhA1rApeaNZAE5I2y9EHWPUSBGqUQ9jeiJeC/N0gfwpr 66xwH3qjVNyWtPs3kWZN1VK+YqeOE7tFs0RpfTjC/C5mvhC0yICjj10cdtrxebW+2OB2 IfDbqE9Vtq3Q43SK2NRsMgI2F9hIKDhZuNc0I= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; b=FVS3EaJudkYhqknIwSw4Riedp3grXee//S/aT8GFWf+Y/nK2xio7erzJZiyafCMqWy iuW7SMfuS035dsIkV6cxud8V2Rjfxh4ddPj7Ixm9FvhleIMT7rK0UyiZZ2jPwUylHucG Aunx+QLKwBgeqPr50DldvlKYhFoSJj/JDmzzo= Received: by 10.210.137.4 with SMTP id k4mr2208421ebd.89.1249853922211; Sun, 09 Aug 2009 14:38:42 -0700 (PDT) Received: from ?95.188.93.44? (stc.44.93.188.95.dsl.krasnet.ru [95.188.93.44]) by mx.google.com with ESMTPS id 24sm9446509eyx.53.2009.08.09.14.38.40 (version=TLSv1/SSLv3 cipher=RC4-MD5); Sun, 09 Aug 2009 14:38:41 -0700 (PDT) Message-ID: <4A7F414D.8080909@gmail.com> Date: Mon, 10 Aug 2009 05:36:13 +0800 From: Pavel Labushev User-Agent: Thunderbird 2.0.0.22 (X11/20090629) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-hardened@lists.gentoo.org Reply-to: gentoo-hardened@lists.gentoo.org MIME-Version: 1.0 To: gentoo-hardened@lists.gentoo.org Subject: Re: [gentoo-hardened] virtualization with gentoo hardened References: <20090808213543.260ad68f@mpismpirikos.tolises.homeunix.org> <4A7DC67A.3070006@opensource.dyc.edu> <20090808215531.47a1e2a7@mpismpirikos.tolises.homeunix.org> <1249845901.4090.12.camel@karmic> <20090809225929.3f93dca0@mpismpirikos.tolises.homeunix.org> In-Reply-To: <20090809225929.3f93dca0@mpismpirikos.tolises.homeunix.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Archives-Salt: a93de73e-cf09-4490-81e6-66c1917b71f5 X-Archives-Hash: 87d578599a1b3fccf79c244acce30972 > How secure is this setup considered? I mean having > the host os(xen-souces) only for running some instances of > hardened-gentoo as guests is it the same(almost?) as running them on > seperate physical pc's? No, it's not the same and not almost the same. There were vulnerabilities found in Xen already, and nobody can guarantee there are no more of them.