Proxmox Security and Licenses

100 %
0 %
Information about Proxmox Security and Licenses
Education

Published on March 29, 2014

Author: rahulkave

Source: slideshare.net

Description

Talks about GNU Affero Public License of Proxmox with it's application security concern and security concern against usage.

Social Issues in Computing in Load Management using Proxmox

Who owns the copyright? ● Institution / University / College / NGO ● How did we know? ● There is more...

License for the application? ● 'GNU Affero General Public License' – Key points – Why is it different from other licenses? ● Role of GNU/GPL ● Redistributing is Legal, yes! But

What Proxmox says? ● Under Section 2 'Grant of Rights' in Proxmox Copyright License Agreement – Contributor is a Licensee – It's non-exclusive, royalty-free – Right to distribute & modify ● Patent License – The community has right to add your Contribution to their future releases.

Application Security Concern ● RAM allocation ● Unstable flavor of Linux ● Undesired behavior of Application ● Eavesdroppers ● Screen Freeze

Avoiding Leaks ● Allocate RAM on runtime ● Old is good sometimes ● Manage load on existing VM(s) ● Remote access to smart ones only ● 3Rs repair / reorganize / refresh

Security Concern in terms of usage ● Who does what when and how? ● High Disk I/O ● Hampering with existing data ● How to monitor? – CCTV, bad option – Logs, still better

Climbing a wall! Build a door instead ● Defining roles ● User profiles ● Give Access Rights ● Pop alerts when at risk ● Make it mistake proof

Thank you Any Questions? Harsh Raj Bhatia 11030121033 Rahul Kaveeshwar 11030121050 Rohit Choudhary 11030121053

Social Issues in Computing in Load Management using Proxmox Talk about what our Dissertation was...

Who owns the copyright? ● Institution / University / College / NGO ● How did we know? ● There is more... How ? The copy of the Virtual Appliance is been submitted to the university, hence they own the privilege to redistribut,e modify and run the software OS & As submitted copy can be redistributed with monetary benefits also, we as a team and Proxmox GeBH would not ask for money because it is royalty-free

License for the application? ● 'GNU Affero General Public License' – Key points – Why is it different from other licenses? ● Role of GNU/GPL ● Redistributing is Legal, yes! But Key Points : - Affero : For Network based Appliances and Infrastructure With GPL it's advisory to imbibe AGPL for network based appliances However the norms, conditions and rights provided by GPL are justified but do not comply with AGPL Difference and GNU/GPL GPL does not provide clause for Remote Connections hence AGPL came into being Redistributing is legal, yes because the copy holds the same rights, however if it is redistributed without the license; the previous contributor holds no responsibility and is not liable for infringement allegations.

What Proxmox says? ● Under Section 2 'Grant of Rights' in Proxmox Copyright License Agreement – Contributor is a Licensee – It's non-exclusive, royalty-free – Right to distribute & modify ● Patent License – The community has right to add your Contribution to their future releases. Explain Proxmox CLA

Application Security Concern ● RAM allocation ● Unstable flavor of Linux ● Undesired behavior of Application ● Eavesdroppers ● Screen Freeze Screen Freeze : often the screen freezes due to high Disk I/O or someone is using the IP mischievously Undesired : because somehow the application must be using more resources and putting extra effort, else the VM is busy finishing some other IP's demand

Avoiding Leaks ● Allocate RAM on runtime ● Old is good sometimes ● Manage load on existing VM(s) ● Remote access to smart ones only ● 3Rs repair / reorganize / refresh 3Rs :- standard practice of restarting the VM after runtime allocation Old is good, sometimes the earlier version of a distribution which works well and verse is better than the ones which are traveling in space

Security Concern in terms of usage ● Who does what when and how? ● High Disk I/O ● Hampering with existing data ● How to monitor? – CCTV, bad option – Logs, still better

Climbing a wall! Build a door instead ● Defining roles ● User profiles ● Give Access Rights ● Pop alerts when at risk ● Make it mistake proof Mistake proof : USB jacks How in this? Allocate only the smart ones to access your domain

Thank you Any Questions? Harsh Raj Bhatia 11030121033 Rahul Kaveeshwar 11030121050 Rohit Choudhary 11030121053

Add a comment

Comments

google | 26/02/15
Want to see what what it feels like to have a million dollars in bitcoins. My bitcoin donation address is 3FsNSHj1HTvmTiKdr7NAFBpUo7CGVgsHNe lettheloveflow2015@gmail.com

Related presentations

Related pages

Trial License - Proxmox Mail Gateway

Trial license to test Proxmox Mail Gateway 30-days free. Home; Virtualization; Email Security. Features; Get Started ... Home Email SecurityTrial License.
Read more

Subscription Plans - Proxmox - Powerful Open Source Server ...

Subscription Plans. Proxmox Virtual Environment's source code is published under the free software license GNU AGPL, v3 and thus is freely available via ...
Read more

Proxmox VE license | Proxmox Support Forum

Proxmox VE license. Discussion in 'Proxmox ... the free software license GNU AGPL. www . proxmox . com ... getting stable updates and security ...
Read more

ProxmoxVE will change LICENCE? | Proxmox Support Forum

ProxmoxVE will change LICENCE? ... this dual licensing, Proxmox VE source code is ... best software and getting stable updates and security ...
Read more

Proxmox VE 3.1 – Subscription required for enterprise ...

Proxmox VE 3.1 release requires a valid subscription to access stable updates, security patches and bug ... Subscription required for enterprise updates”
Read more

ModulesGarden Proxmox Modules For WHMCS: Changelog

Proxmox Modules For WHMCS - Changelog. Proxmox VPS For WHMCS. ... Improved security and license validation; ... Added support for Proxmox VE authentication ...
Read more

Windows 2012 SPLA License for KVM in Proxmox?

Windows 2012 SPLA License for KVM in Proxmox? Windows Server > ... Can SPLA license be used on KVM based windows 2012 standart edition VM?
Read more

Remove the Proxmox “No Valid Subscription” message ...

Proxmox 3.1 has implemented a new ... Remove the Proxmox “No Valid Subscription ... This is allowed under the License (aGPLv3) used for Proxmox however ...
Read more

Proxmox | LinkedIn

View 6351 Proxmox posts, presentations, experts, and more. Get the professional knowledge you need on LinkedIn.
Read more