[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] [PATCH] Make password based authentication the default

From: Daniel P. Berrange
Subject: Re: [Qemu-devel] [PATCH] Make password based authentication the default for VNC
Date: Tue, 7 Jun 2016 10:24:43 +0100
User-agent: Mutt/1.6.0 (2016-04-01)

On Tue, Jun 07, 2016 at 12:13:06PM +0300, Attila-Mihaly Balazs wrote:
> To improve the security of the embedded VNC server make password
> based authentication the default when no authentication mechanism
> is specified.

VNC password authentication offers no meaningful level of security,
so this is really just going to change long standing default behaviour
of QEMU VNC configuration without any real world benefit IMHO.

Anyone who actually wants credible real world security should be using
the TLS and/or SASL options to VNC, never the awful legacy passwd based

|: http://berrange.com      -o-    http://www.flickr.com/photos/dberrange/ :|
|: http://libvirt.org              -o-             http://virt-manager.org :|
|: http://autobuild.org       -o-         http://search.cpan.org/~danberr/ :|
|: http://entangle-photo.org       -o-       http://live.gnome.org/gtk-vnc :|

reply via email to

[Prev in Thread] Current Thread [Next in Thread]