> A little background... Awhile back, a FreeBSD server (running 7 domains) I > had running for 3 years (without reboot) got hacked into over Christmas > break. They wiped everything, including most of the logs. I was able to > determine that they got in from one of the user accounts. As you could > probably tell, no reboot also means being a bit behind on the security > patches as well... > > Anyways, so the plan with the new server is keeping each domain completely > isolated. The plan is a base Solaris install, ZFS on the data drives > (utilizing regular snapshots to rollback incase of being hacked), and > running each domain as a Xen domU. In order to ensure that each OS gets the > benefits of ZFS, I plan on sharing (NFS with ACL) a directory for each OS, > and then letting the domUs do NFS-based install (still local machine).
Have you considered using Zones (N1 Grid Containers) instead of xen? - Alexander Kolbasov _______________________________________________ zfs-discuss mailing list zfs-discuss@opensolaris.org http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
