On Fri, Jun 01, 2007 at 11:03:36AM -0400, Glen Deem wrote:
> Thanks to Igor Chubin (spasibo) and Richard Jones, the qemu vnc server
> was listening but I did not connect to its proper port (why libvirt
> doesn't use <IP>:<domU id> kind of vnc connection and restricts the
> server to local host only by default?).

VNC authentication is an utter joke. It can be trivially brute forced
so exposing it on a public IP address is not a good idea, hence the
default is 127.0.0.1, though even that's not ideal because it is still
exposed to local users. Ultimately VNC needs to have  SSL/TLS support
integrated into it to allow secure access over public network, which
is something I'm working on for QEMU...

Dan.
-- 
|=- Red Hat, Engineering, Emerging Technologies, Boston.  +1 978 392 2496 -=|
|=-           Perl modules: http://search.cpan.org/~danberr/              -=|
|=-               Projects: http://freshmeat.net/~danielpb/               -=|
|=-  GnuPG: 7D3B9505   F3C9 553F A1DA 4AC2 5648 23C1 B3DF F742 7D3B 9505  -=| 

--
Libvir-list mailing list
Libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list

Reply via email to