[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-discuss] GUI compatibility
From: |
Peter Maydell |
Subject: |
Re: [Qemu-discuss] GUI compatibility |
Date: |
Wed, 1 Aug 2018 20:25:45 +0100 |
On 1 August 2018 at 04:11, microsoft gaofei <address@hidden> wrote:
> One more question, is that safe to run QEMU as root user?
Well, define "safe". By running as root you're reducing
the number of barriers to bad things happening if either
(a) QEMU has a bug (for instance, a bug that allows
malicious code inside the guest to escape) or (b) you
make a mistake and tell QEMU to do something you didn't
intend.
I definitely wouldn't recommend it as a common practice
(better to fix whatever it is thet prevents you running
it as a non-root user) especially if you're running
arbitrary guests[*] but on the other hand we don't prevent
you from doing it.
[*] in fact "best practice" here involves running
QEMU as a user with almost no privileges and with
very limited access to files and so on; libvirt can
set up this kind of configuration.
thanks
-- PMM