Hello, I am thinking of using UML to run a website in a virtual machine. The idea is that this will provide an extra layer of security. What I'm thinking of doing is:
- setting up a partition to use as a UML disk. - running UML on the host machine. - running a webserver (probably apache) inside the UML machine. - then writing a script running on the host machine which monitors the UML machine's filesystem and checks for any break-ins. (e.g. with chkrootkit, aide etc) I am hoping that by doing this, it will make any rootkit checking program more effective because it will be running one layer above the filesystem it is checking. What I would like to know is firstly is this possible, and secondly if you think it's a sensible thing to do - e.g. - will it make things more secure, or just make things too complex and create more security holes? - whether the performance will be good enough for running a website. (It's a low traffic personal site at the moment, but I'm thinking of using the same technique on a bigger site, which is why I want to try it out.) - if anyone out there has done anything like this, it would be good to hear how it's worked out in practice. cheers, andy baxter. ------------------------------------------------------------------------------ Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july _______________________________________________ User-mode-linux-user mailing list User-mode-linux-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/user-mode-linux-user
