In Fedora we have had /dev/kvm mode 0666 for years. It was changed that way in July 2009.
There has never been a security problem attributable to this. There is no problem with having any user create a VM. Virtual machines are regular processes, subject to all the usual ulimits. They use regular malloc'd memory. Furthermore small appliances are useful for security: for sandboxing single tasks, and for securely accessing filesystems. Rich. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
