Hi,
I'm running CentOS 5.5 under Xen, it works excellent, no problems.
--
Regards, Samuel Paragreen.
On 7/3/10, David McGuffey davidmcguffey@verizon.net wrote:
On Sat, 2010-07-03 at 11:52 +0800, Emmanuel Noobadmin wrote:
- Security
Some sites point out that KVM VM runs in userspace as threads. So a compromised guest OS would then give intruder access to the system as well as other VMs.
Should I really be concerned or are these worries only for extreme situations and that KVM is viable for normal production situations? Are there other things I should be aware of?
As I understand it each VM under kvm has a different SELinux context. Breaking into one VM doesn't give you the context to manipulate another. One would have to go back out through the network to attack the next VM...and if you have decent logging and IDS the noise should be seen/detected.
I went with kvm specifically because it is integrated into SELinux.
Dave M
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos