[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [Libvirt] VNC auth per VM



Daniel P. Berrange wrote:
> > What about the VNC password?
> > That's per-VM, isn't it?
> 
> That is true by I don't really consider VNC password to be useful. It is
> utterly insecure. ...

Garry Dolley wrote:
> With KVM/QEMU, you can set a VNC password per VM.
> 
> But I think it is either/or though; you can use VNC with passwords
> (no encryption), or use VNC with TLS, which is encrypted, but anyone
> with a valid certificate can connect (to any VM).


Ok, makes sense.  In my own case, where VNC only listens on 127.0.0.1
and all remote connections are tunneled through SSH anyway, I think
that plaintext passwords and the lack of VNC encryption would be OK.

Thanks for the clearifications.

-jim


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]