I like the request for Graphics in DomU. How do you want to run a
Xen-System on a laptop maybe? The Dom0-Kernel shouldn''t have ANY
contact
with the users itself due to security reasons. (too much software that
could be possible security holes)
Another point is: When you run a Xen-System that runs at home to solve
several issues at once (internal file server, firewall, music
station/browser/whatever) you are very fast at the point that you CAN
use the PC in console mode (xm console DomU-Name) But that is a security
hole per default because you need to be admin to do that. So basically
if you want to run a xenified server that should NOT be a dedicated one
(without monitor) you get serious trouble if you want to use that
computer as a "normal" PC as well. When you can''t remap the
graphic
card, you don''t have "normal consoles" or "normal
X-Window" that is
secure enough to esure, that it can''t harm the other VMs running...
So having an option that remaps the graphic card and hands it over to a
VM that then takes over the whole graphic output (dom0 only reachable
using SSH or serial console or something) would make quite some sense
security wise ;)
Regards, Bigfoot29
_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users
