[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-devel] [PATCH] Make password based authentication the default
|
From: |
Daniel P. Berrange |
|
Subject: |
Re: [Qemu-devel] [PATCH] Make password based authentication the default for VNC |
|
Date: |
Tue, 7 Jun 2016 10:24:43 +0100 |
|
User-agent: |
Mutt/1.6.0 (2016-04-01) |
On Tue, Jun 07, 2016 at 12:13:06PM +0300, Attila-Mihaly Balazs wrote:
> To improve the security of the embedded VNC server make password
> based authentication the default when no authentication mechanism
> is specified.
VNC password authentication offers no meaningful level of security,
so this is really just going to change long standing default behaviour
of QEMU VNC configuration without any real world benefit IMHO.
Anyone who actually wants credible real world security should be using
the TLS and/or SASL options to VNC, never the awful legacy passwd based
auth.
Regards,
Daniel
--
|: http://berrange.com -o- http://www.flickr.com/photos/dberrange/ :|
|: http://libvirt.org -o- http://virt-manager.org :|
|: http://autobuild.org -o- http://search.cpan.org/~danberr/ :|
|: http://entangle-photo.org -o- http://live.gnome.org/gtk-vnc :|