On Thu, Jan 21, 2010 at 12:56:20AM +0700, Sthu Deus wrote:
Thank You for Your time and answer, Boyd:
With Xen/KVM/Qemu the guests are not fully protected from the host, but even
kernel-level tasks/processes in the guests cannot affect the host unless
there
is a security issue with the
On Thursday 21 January 2010 00:47:28 Sthu Deus wrote:
Thank You for Your time and answer, Boyd:
VServer and OpenVZ requires the guests to know they are running in a
virtualized environment, since they share a kernel with the host. They
don't support unmodified guest OSes.
In case of guest
Thank You for Your time and answer, Boyd:
If I'm just separating one or more Apache 2 instances from one or more Exim
instances from one or more Dovecot instances from one or more Postgres
instances... They all have fairly good security records, and they all do the
majority of their work as a
Thank You for Your time and great answers, Steve:
I want to separate diver services and make NAT to them - so that
it be more secure in case if one of them will be hacked - I still
Right so you want a host which has a public IP (or more than one)
and each guest will have private IPs on
Thank You for Your time and answer, Boyd:
Xen also supports running unmodified guest OSes.
Excuse me, but what does it mean unmodified guest OS?
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Thank You for Your time and answer, Boyd:
With Xen/KVM/Qemu the guests are not fully protected from the host, but even
kernel-level tasks/processes in the guests cannot affect the host unless there
is a security issue with the specific virtualization technologies involved.
Seems the more
Thank You for Your time and answer, Michal:
ahh idiot. Here is the link
You are not! :)
http://marc.info/?l=openbsd-miscw=2r=1s=obsd+as+domUq=b
Thanks, once again.
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact
On Wednesday 20 January 2010 11:45:32 Sthu Deus wrote:
Thank You for Your time and answer, Boyd:
Xen also supports running unmodified guest OSes.
Excuse me, but what does it mean unmodified guest OS?
A guest OS that hasn't been modified to support whatever virtualization
technology you are
Thank You for Your time and answer, Boyd:
VServer and OpenVZ requires the guests to know they are running in a
virtualized environment, since they share a kernel with the host. They don't
support unmodified guest OSes.
In case of guest crack - will the attacker identify that he is in the
Thank You for Your time and answer, randall:
some do, but i always use the vserver patched kernel from the repos, it
never gave me any problems and i'm always assured of the security
updates, did not have any issue when upgrading from etch to lenny.
The thing you heard was broken is the
Thank You for Your time and answer, Robert:
Can You easily turn networked guests on/off? - Can others still function as
before turning off of them?
I dont know what you exactly mean, but you always can:
vzctl stop xxx #this will stop virtual xxx and the others will remain running
I'm
Dne Út 19. ledna 2010 17:39:39 Sthu Deus napsal(a):
Thank You for Your time and answer, Robert:
Can You easily turn networked guests on/off? - Can others still function
as before turning off of them?
I dont know what you exactly mean, but you always can:
vzctl stop xxx #this will stop
Dne Čt 14. ledna 2010 13:36:03 Sthu Deus napsal(a):
Thank You for Your time and answer, Robert:
I think that openvz is stable enough for production use in lenny. And what
I have read vserver does not have the nice features and wrapper like
vzctl.
How is it to install/manage/use/update?
You need to say what you're using them for. Otherwise people who have
experience with vserver will say it rocks, people who use openvz will
say that rocks, and people using Xen will say that's even better.
If you're using it for something specific then your needs and
preferences
Sthu Deus wrote:
Good day.
As I have heard that vserver package does not work well in Debian, I would like
to hear Your opinion (if any) on what is working more stable (well for use in
production systems):
1. vserver
2. openvz
3. something else
Thanks for Your time.
PS Please, reply to
Thank You for Your time and answer, Boyd:
Xen.
Why?
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Thank You for Your time and answer, randall:
thanks to the fact it shares the same kernel with the host and all the
guests, but this could be a disadvantage if you need a seperate kernel
per guest.
One of the reasons I would like to use virtualization is security... so, how
does using of a
Sthu Deus wrote:
Thank You for Your time and answer, randall:
thanks to the fact it shares the same kernel with the host and all the
guests, but this could be a disadvantage if you need a seperate kernel
per guest.
One of the reasons I would like to use virtualization is security...
On Thu Jan 14, 2010 at 18:43:07 +0700, Sthu Deus wrote:
One of the reasons I would like to use virtualization is security...
What kind of security?
Instead of having N applications installed on one host you could move
to having 3+ virtual machines. That would suggest you'd need to
Thank You for Your time suggestion and answer, Steve:
1. vserver
2. openvz
3. something else
You need to say what you're using them for. Otherwise people who have
experience with vserver will say it rocks, people who use openvz will
say that rocks, and people using Xen will say that's
Thank You for Your time and answer, Robert:
I think that openvz is stable enough for production use in lenny. And what I
have read vserver does not have the nice features and wrapper like vzctl.
How is it to install/manage/use/update?
Can You easily turn networked guests on/off? - Can others
On Thu Jan 14, 2010 at 19:32:16 +0700, Sthu Deus wrote:
I want to separate diver services and make NAT to them - so that
it be more secure in case if one of them will be hacked - I still
Right so you want a host which has a public IP (or more than one)
and each guest will have private IPs
*Sorry for the top post but this has only to do with the subject*
I think you should read these posts started with obsd as domU. Someone
started talking about using OpenBSD with virtulisation and some people
had some interesting answers. I don't agree with everything said here, I
use VMware ESXi
ahh idiot. Here is the link
http://marc.info/?l=openbsd-miscw=2r=1s=obsd+as+domUq=b
On 14/01/2010 13:30, Michal wrote:
*Sorry for the top post but this has only to do with the subject*
I think you should read these posts started with obsd as domU. Someone
started talking about using OpenBSD
Michal mic...@ionic.co.uk wrote:
*Sorry for the top post but this has only to do with the subject*
Why not remove the irrelevant stuff from your message?
Chris
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact
On 1/14/2010 4:28 AM, Michal wrote:
You need to say what you're using them for. Otherwise people who have
experience with vserver will say it rocks, people who use openvz will
say that rocks, and people using Xen will say that's even better.
If you are forced to run Windows, the
On Thursday 14 January 2010 05:39:04 Sthu Deus wrote:
Thank You for Your time and answer, Boyd:
Xen.
Why?
Better isolation of guests from the host, but that's just hearsay on my part.
More independence/flexibility in the guests (e.g. custom kernel or modules).
Good commercial support, if
On Thursday 14 January 2010 10:25:35 Mark Allums wrote:
On 1/14/2010 4:28 AM, Michal wrote:
You need to say what you're using them for. Otherwise people who
have experience with vserver will say it rocks, people who use openvz
will say that rocks, and people using Xen will say that's
On Thursday 14 January 2010 07:30:20 Michal wrote:
*Sorry for the top post but this has only to do with the subject*
That makes top-posting appropriate, I guess.
It doesn't explain why you couldn't trim the quoted text down to... nothing.
You should only quote text that is required to give
On Thursday 14 January 2010 05:43:07 Sthu Deus wrote:
Thank You for Your time and answer, randall:
thanks to the fact it shares the same kernel with the host and all the
guests, but this could be a disadvantage if you need a seperate kernel
per guest.
One of the reasons I would like to use
Good day.
As I have heard that vserver package does not work well in Debian, I would like
to hear Your opinion (if any) on what is working more stable (well for use in
production systems):
1. vserver
2. openvz
3. something else
Thanks for Your time.
PS Please, reply to the list.
--
To
In 4b4ddfeb.0437560a.1e72.f...@mx.google.com, Sthu Deus wrote:
I would
like to hear Your opinion (if any) on what is working more stable (well for
use in production systems):
3. something else
Xen.
--
Boyd Stephen Smith Jr. ,= ,-_-. =.
b...@iguanasuicide.net
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wednesday 13 January 2010, Sthu Deus sthu.d...@gmail.com was
heard to say:
As I have heard that vserver package does not work well in Debian,
I would like to hear Your opinion (if any) on what is working more
stable (well for use in production
Hi
I use openvz on my servers (lenny) without problems. I have never used
vserver.
I think that openvz is stable enough for production use in lenny. And what I
have read vserver does not have the nice features and wrapper like vzctl.
I just got virtuals: fedora, centos, debian lenny/squeeze,
On Wed Jan 13, 2010 at 21:58:37 +0700, Sthu Deus wrote:
As I have heard that vserver package does not work well in Debian, I would
like to hear Your opinion (if any) on what is working more stable (well for
use in production systems):
1. vserver
2. openvz
3. something else
You need to
35 matches
Mail list logo