-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi everyone,

in the german linux-magazine of this month there is a very interesting
article on vserver. I like the idea of encapsulating servers as much as
possible to avoid harm to the system or to other servers. But as
vservers all run with the same kernel - isn't it still posible to harm
the kernel and therewith crack the whole system out of a vserver? How
about user-mode-linux, is there any posibility to break out of it?

If not - wouldn't it be great - one could set up a secure system with
iptables and no services at all but vserver or user-mode-linux and then
setup enviroments for each purpose needed... There must be some downside
to it, isn't there?

Best regards,

Ralf Ronneburger

- ------------------------------------------------------------
Ralf Ronneburger
ralfronneburger.de

Prefers to receive encrypted Mail, download public-key from
http://www.ronneburger.de/gpg/ralf_ronneburger.asc
- ------------------------------------------------------------

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQE96pdQLbWu9MVtJiYRAmFqAJ4mkcZndIxl20N5x/+En7G38unXXACfQlWr
yb8p/ymbVL1uoRcuqfgvOrw=
=Uut9
-----END PGP SIGNATURE-----

-- 
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-helpsuse.com
Security-related bug reports go to securitysuse.de, not here

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]