From mboxrd@z Thu Jan  1 00:00:00 1970
From: "Vladimir 'phcoder' Serbinenko" <phcoder@gmail.com>
Subject: Fwd: Re: [PATCH 3/4] Build grub.xen.
Date: Thu, 12 Dec 2013 17:49:51 +0100
Message-ID: <CAEaD8JNFuZfwtLCQg85LQOTO9xfr1h=y=xpYOEwk_JNzhxxtJw__45502.1297712394$1386867091$gmane$org@mail.gmail.com>
References: <20131212153643.GA1431@riva.ucam.org>
	<20131212153741.GD1431@riva.ucam.org>
	<CAEaD8JN=Gg8fut+pXBA0=8abvo5YE=Q4eiXYR6kPT-yRqjNA1Q@mail.gmail.com>
	<20131212163907.GG1431@riva.ucam.org>
	<CAEaD8JM_cUCb46GZs8=Ct-M15FHcD_X7tgiq8=570T9cyWs=bA@mail.gmail.com>
Mime-Version: 1.0
Content-Type: multipart/mixed; boundary="===============5066202263555205027=="
Return-path: <xen-devel-bounces@lists.xen.org>
Received: from mail6.bemta5.messagelabs.com ([195.245.231.135])
	by lists.xen.org with esmtp (Exim 4.72)
	(envelope-from <phcoder@gmail.com>) id 1Vr9ST-0000C4-Oi
	for xen-devel@lists.xenproject.org; Thu, 12 Dec 2013 16:49:54 +0000
Received: by mail-wi0-f180.google.com with SMTP id hn9so2788956wib.7
	for <xen-devel@lists.xenproject.org>;
	Thu, 12 Dec 2013 08:49:51 -0800 (PST)
In-Reply-To: <CAEaD8JM_cUCb46GZs8=Ct-M15FHcD_X7tgiq8=570T9cyWs=bA@mail.gmail.com>
List-Unsubscribe: <http://lists.xen.org/cgi-bin/mailman/options/xen-devel>,
	<mailto:xen-devel-request@lists.xen.org?subject=unsubscribe>
List-Post: <mailto:xen-devel@lists.xen.org>
List-Help: <mailto:xen-devel-request@lists.xen.org?subject=help>
List-Subscribe: <http://lists.xen.org/cgi-bin/mailman/listinfo/xen-devel>,
	<mailto:xen-devel-request@lists.xen.org?subject=subscribe>
Sender: xen-devel-bounces@lists.xen.org
Errors-To: xen-devel-bounces@lists.xen.org
To: xen-devel <xen-devel@lists.xenproject.org>, development of GRUB 2 <grub-devel@gnu.org>
List-Id: xen-devel@lists.xenproject.org

--===============5066202263555205027==
Content-Type: multipart/alternative; boundary=f46d04155418654aae04ed5922a4

--f46d04155418654aae04ed5922a4
Content-Type: text/plain; charset=ISO-8859-1

---------- Forwarded message ----------
From: "Vladimir 'phcoder' Serbinenko" <phcoder@gmail.com>
Date: Dec 12, 2013 5:45 PM
Subject: Re: [PATCH 3/4] Build grub.xen.
To: "The development of GNU GRUB" <grub-devel@gnu.org>

No I meant full access to just obe of guest partitions. E.g. FTP may be
using separate partition and non-admins may have control over it. If system
has some kind of automatic user creation and /home is separate someone may
register as boot or grub and put grub.xen in his directory. If /tmp is on
separate partition and not in RAM then everybody can put grub.xen to
/tmp/grub/grub.xen
On Dec 12, 2013 5:39 PM, "Colin Watson" <cjwatson@ubuntu.com> wrote:

> On Thu, Dec 12, 2013 at 05:24:50PM +0100, Vladimir 'phcoder' Serbinenko
> wrote:
> > This config has a security problem. If a user has full acces to some
> > partition (e.g. fto server partition) he can put grub.xen there and load
> > his own code
>
> Only in the domU context, though.  If a user has full access to a guest
> filesystem then of course they can run code in the domU.  This seems
> unsurprising and not a problem?
>
> --
> Colin Watson                                       [cjwatson@ubuntu.com]
>
> _______________________________________________
> Grub-devel mailing list
> Grub-devel@gnu.org
> https://lists.gnu.org/mailman/listinfo/grub-devel
>

--f46d04155418654aae04ed5922a4
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable

<div class=3D"gmail_quote">---------- Forwarded message ----------<br>From:=
 &quot;Vladimir &#39;phcoder&#39; Serbinenko&quot; &lt;<a href=3D"mailto:ph=
coder@gmail.com">phcoder@gmail.com</a>&gt;<br>Date: Dec 12, 2013 5:45 PM<br=
>
Subject: Re: [PATCH 3/4] Build grub.xen.<br>To: &quot;The development of GN=
U GRUB&quot; &lt;<a href=3D"mailto:grub-devel@gnu.org">grub-devel@gnu.org</=
a>&gt;<br><br type=3D"attribution"><p>No I meant full access to just obe of=
 guest partitions. E.g. FTP may be using separate partition and non-admins =
may have control over it. If system has some kind of automatic user creatio=
n and /home is separate someone may register as boot or grub and put grub.x=
en in his directory. If /tmp is on separate partition and not in RAM then e=
verybody can put grub.xen to /tmp/grub/grub.xen</p>
<div class=3D"elided-text">

<div class=3D"gmail_quote">On Dec 12, 2013 5:39 PM, &quot;Colin Watson&quot=
; &lt;<a href=3D"mailto:cjwatson@ubuntu.com" target=3D"_blank">cjwatson@ubu=
ntu.com</a>&gt; wrote:<br type=3D"attribution"><blockquote class=3D"gmail_q=
uote" style=3D"margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1e=
x">

On Thu, Dec 12, 2013 at 05:24:50PM +0100, Vladimir &#39;phcoder&#39; Serbin=
enko wrote:<br>
&gt; This config has a security problem. If a user has full acces to some<b=
r>
&gt; partition (e.g. fto server partition) he can put grub.xen there and lo=
ad<br>
&gt; his own code<br>
<br>
Only in the domU context, though. =A0If a user has full access to a guest<b=
r>
filesystem then of course they can run code in the domU. =A0This seems<br>
unsurprising and not a problem?<br>
<br>
--<br>
Colin Watson =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =
=A0 =A0 =A0 =A0 [<a href=3D"mailto:cjwatson@ubuntu.com" target=3D"_blank">c=
jwatson@ubuntu.com</a>]<br>
<br>
_______________________________________________<br>
Grub-devel mailing list<br>
<a href=3D"mailto:Grub-devel@gnu.org" target=3D"_blank">Grub-devel@gnu.org<=
/a><br>
<a href=3D"https://lists.gnu.org/mailman/listinfo/grub-devel" target=3D"_bl=
ank">https://lists.gnu.org/mailman/listinfo/grub-devel</a><br>
</blockquote></div>
</div></div>

--f46d04155418654aae04ed5922a4--


--===============5066202263555205027==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xen.org
http://lists.xen.org/xen-devel

--===============5066202263555205027==--