Re: [Qemu-devel] Disabling outgoing connectiong from within guest

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] Disabling outgoing connectiong from within guest

From:	Paul Brook
Subject:	Re: [Qemu-devel] Disabling outgoing connectiong from within guest
Date:	Thu, 19 Jun 2008 01:01:42 +0100
User-agent:	KMail/1.9.9

On Wednesday 18 June 2008, Łukasz Taczuk wrote:
> Hi!
>
> I would like to create a sandboxed environment in which random users
> would be able to roam freely using ssh.
> However, I don't want to allow them to open outgoing connections just
> as if the box was offline (even if the guest is compromised).
> Basically I would like to have something like reversed user mode
> network stack: you can log in to the guest, but once you're in, you
> cannot connect to the host nor any other machine.

Your host OS firewall/packet filter should already be able to do this.
IMHO there's little or no point reimplementing this functionality in qemu.

Paul

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-devel] Disabling outgoing connectiong from within guest, Łukasz Taczuk, 2008/06/18
- Re: [Qemu-devel] Disabling outgoing connectiong from within guest, Paul Brook <=
  - Re: [Qemu-devel] Disabling outgoing connectiong from within guest, Johannes Schindelin, 2008/06/20
    - Re: [Qemu-devel] Disabling outgoing connectiong from within guest, Paul Brook, 2008/06/20
    - Re: [Qemu-devel] Disabling outgoing connectiong from within guest, Ben Taylor, 2008/06/20

Prev by Date: Re: [Qemu-devel] QEMU configuration files
Next by Date: [Qemu-devel] Again about SMP-host supporting
Previous by thread: [Qemu-devel] Disabling outgoing connectiong from within guest
Next by thread: Re: [Qemu-devel] Disabling outgoing connectiong from within guest
Index(es):
- Date
- Thread