| 1 |
On 11/10/2010 01:51 PM, Matthew Thode wrote: |
| 2 |
> Disable kernexec and uderef on host for both AMD and Intel. |
| 3 |
> You can enable kernexec and uderef on AMD guests. |
| 4 |
> You can enable kernexec but not uderef on Intel guests. |
| 5 |
> |
| 6 |
> The intel processors tested were the core2duo, i3 and i7. |
| 7 |
> |
| 8 |
> -- prometheanfire |
| 9 |
> |
| 10 |
|
| 11 |
Thanks for that info, it should go into the documentation I'm writing on |
| 12 |
hardened+virt. I only tested the amd guests and assumed it was the same |
| 13 |
for intel. |
| 14 |
|
| 15 |
-- |
| 16 |
Anthony G. Basile, Ph.D. |
| 17 |
Gentoo Developer |
Archives