On Wed, Nov 24, 2004 at 01:13:15PM -0500, Colin Walters wrote:
> On Wed, 2004-11-24 at 15:49 +0000, Luke Kenneth Casson Leighton wrote:
>
> > okay, regarding the second argument to avc_has_perm(),
> > i asked the nice xen developers if it'd be possible to
> > associate a sid with each virtual machine.
>
> When would you want a process to be able to control one Xen machine but
> not another?
 

 i described such a scenario in an earlier message today to stephen:  giving an operator-admin the right to reboot a VM running a SQL server  but NOT giving that same operator the right to reboot the master OS  which, if you rebooted that, would take down every single VM with it.

 l.

-- 
--
<a href="http://lkcl.net">http://lkcl.net</a>
--

--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.