[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

[Ovirt-devel] Re: virt-viewer plugin integration issues



On Fri, Aug 22, 2008 at 08:57:26AM +0100, Richard W.M. Jones wrote:
> On Thu, Aug 21, 2008 at 11:43:45PM -0400, Perry N. Myers wrote:
> > Either of you have any suggestions on where we should go with this.  
> > Short term we need a solution (even if it is slightly hackish) just to 
> > make the console work.  Longer term we need something more secure.
> 
> virt-viewer in this case is still running from the browser plugin, or
> are we expecting users to launch virt-viewer themselves?
> 
> If we control the launching of virt-viewer (eg. through the browser
> plugin) then can we obtain a one-time password or key from the QEMU
> server on the managed node?  If we can obtain one, then we can easily
> pass it through to virt-viewer via an HTML <embed> parameter which
> gets passed to the virt-viewer command line.

The one time key idea doesn't easily work because it doesn't enable use of
encryption - it only provides authentication - unless we find a SASL plugin
that lets us do this.

Daniel
-- 
|: Red Hat, Engineering, London   -o-   http://people.redhat.com/berrange/ :|
|: http://libvirt.org  -o-  http://virt-manager.org  -o-  http://ovirt.org :|
|: http://autobuild.org       -o-         http://search.cpan.org/~danberr/ :|
|: GnuPG: 7D3B9505  -o-  F3C9 553F A1DA 4AC2 5648 23C1 B3DF F742 7D3B 9505 :|


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]