> True. Theo de Raadt: > > "You've been smoking something really mind altering, and I think you > should share it. > > x86 virtualization is about basically placing another nearly full > kernel, full of new bugs, on top of a nasty x86 architecture which > barely has correct page protection. Then running your operating system > on the other side of this brand new pile of shit. > > You are absolutely deluded, if not stupid, if you think that a worldwide > collection of software engineers who can't write operating systems or > applications without security holes, can then turn around and suddenly > write virtualization layers without security holes." >
That is Theo on thinking you could use virtualization for security. As I recall through that whole thread he had no real issues if you were foolish enough to want to maximize utilization of a system just donât try to call it more secure. And yes the KVM stuff is not there. -- Jason Barbier | [email protected] Pro Patria Vigilans
