From owner-freebsd-virtualization@FreeBSD.ORG Thu Nov 21 19:42:26 2013 Return-Path: Delivered-To: freebsd-virtualization@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 6BED23DC for ; Thu, 21 Nov 2013 19:42:26 +0000 (UTC) Received: from mail-qc0-x22a.google.com (mail-qc0-x22a.google.com [IPv6:2607:f8b0:400d:c01::22a]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 2B42D2FE3 for ; Thu, 21 Nov 2013 19:42:26 +0000 (UTC) Received: by mail-qc0-f170.google.com with SMTP id e20so170606qcy.29 for ; Thu, 21 Nov 2013 11:42:25 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=eitanadler.com; s=0xdeadbeef; h=mime-version:in-reply-to:references:from:date:message-id:subject:cc :content-type:content-transfer-encoding; bh=eJkWAhmnUnvpmnBeacjOICTsv+b6RSy5FFVhxKF/sLc=; b=V1nQzaT+PrcPPwq6BZiOZuVxCX8ZB8Tg1ccsKS5bsYVpDCxcPK6QlCiyK4ObLh/SPj 3DqZ2PBIQE68EtnHPxxC0htXf+wqguCTNDelz3TZWUH3Kzp8IYCOI0G+A/3JgaM01QUP dXdn9B/OfgHFnOxlLHy9HIgLNTFOQNnSSVjzA= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:cc:content-type:content-transfer-encoding; bh=eJkWAhmnUnvpmnBeacjOICTsv+b6RSy5FFVhxKF/sLc=; b=DZYrJGk9FBpqjsnaaUzQ/sUGGXWwBW23jTuUZWf6j/trhon4+fn4PEhUKrziUN3X6M MoO7cj9GBGny4F8RBwPgm04bULdYgL0awu6LgwG4/OWfc/vn12FrG/qlFsb+VXtv4xJ1 4YMDx0awBNS1V+pEJvQQdXfQ3ymTw4L+HlMHB4NCnUdpZiu7AIbVqWmVS4AgNayvf4JZ p1wy8I/86w53eQhSqy8oxBs9jzImTjS9rdtbzzYfsbHvu+7WXHyR6dMmUm07oMULJkvG 8zyGoUit6JVvAiSyAvrUUODZyoJH3CZJ2Bx1tKxfh3LNbvYhLloD3rYA15cmLHLu+Ktc YAPQ== X-Gm-Message-State: ALoCoQle6nRQ2dxNgifz/DtL4YGmeTtv8J+jQJ8cFA7EK3Po6Rtd6OJ8FbtA3JqhkExw23qS3qKJ X-Received: by 10.229.59.66 with SMTP id k2mr14509445qch.3.1385062945365; Thu, 21 Nov 2013 11:42:25 -0800 (PST) MIME-Version: 1.0 Received: by 10.96.63.101 with HTTP; Thu, 21 Nov 2013 11:41:55 -0800 (PST) In-Reply-To: References: From: Eitan Adler Date: Thu, 21 Nov 2013 14:41:55 -0500 Message-ID: Subject: Re: VPS / Jail / Bhyve File System isolation Cc: "freebsd-virtualization@freebsd.org" Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-BeenThere: freebsd-virtualization@freebsd.org X-Mailman-Version: 2.1.16 Precedence: list List-Id: "Discussion of various virtualization techniques FreeBSD supports." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 21 Nov 2013 19:42:26 -0000 On Thu, Nov 21, 2013 at 9:12 AM, Alexandre Biancalana wrote: > > On Thu, Nov 21, 2013 at 12:48 AM, Eitan Adler wrot= e: >> >> On Wed, Nov 20, 2013 at 12:55 PM, Bruno Lauz=C3=A9 = wrote: >> > >> > Using jails, customers are uncomfortable with the fact documents can b= e >> > accessed from the host with root access.Project VPS seems to isolate m= ore >> > the guest from the host but not as well as an hypervisor like bhyve. W= ith an >> > hypervisor what the client have is private, as long as the host can ma= nage >> > the disk, delete it, but the information is kept private from the hos= t. >> > Any suggestions how to offer jail, vps, or anything containers >> > techniques with total file system isolation from the host, or the only= way >> > is to go hypervisor, with the performance and instances count penalty = that >> > goes with it? >> >> Untrusted hypervisors is an active area of academic research. >> However, any such scheme requires additional hardware support. >> >> If you are interested I can give you some papers to look at. > > > I'm interested, can you provide the links of the papers ? I've replied in private mail. --=20 Eitan Adler