>>> >>> I don't see much alternative. Do you a other proposal? >>> >> >> I think my use case simply requires the ability to pass the pass word in >> a way that cannot be intercepted by any kind of hook; whether it be >> wireshark, or an inotify hook. A unix domain socket that can receive >> the password would suffice, I believe. > > Do you use virt-viewer or other Spice client? Are you a direct user of > spice-controller?
We set SPICE_XPI_SOCKET to a unix domain socket and then invoke: remote-viewer --spice-controller and then instruct remote-viewer to connect using a password we ostensibly transmit in a secure fashion. I just reviewed the code again; and we don't use any other features of the XPI conversation; the only material thing we can't do if you remove this code is transmit the password. > > I think we should try to solve this at the virt-viewer level, and move the > discussion to virt-tools list. > Sure. /me goes to subscribe... Cheers, Jeremy _______________________________________________ Spice-devel mailing list [email protected] https://lists.freedesktop.org/mailman/listinfo/spice-devel
