[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-devel] [PATCH] let management expire vnc password
From: |
Dan Kenigsberg |
Subject: |
Re: [Qemu-devel] [PATCH] let management expire vnc password |
Date: |
Wed, 30 Sep 2009 16:03:13 +0200 |
User-agent: |
Mutt/1.5.19 (2009-01-05) |
On Wed, Sep 30, 2009 at 08:49:28AM -0500, Anthony Liguori wrote:
> Dan Kenigsberg wrote:
>> After a client connects to vnc server, management may wish to expire the
>> vnc password, so that an attacker has less time to break into the vm.
>>
>
> I don't understand what the use-case for this is.
>
> You want to basically lock out any new clients? Can't you just set the
> password to something random?
Yes, and actually that's what we currently do. But having a random
password still opens a crack for guessing it.
> I really don't understand why you would
> want to do this.
>
> Regards,
>
> Anthony Liguori