WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-users] XEN domUs and X11 (maybe not Xen-related)

from [Javier Guerra Giraldez] [Permanent Link][Original]
To: xen-users@xxxxxxxxxxxxxxxxxxx
Subject: Re: [Xen-users] XEN domUs and X11 (maybe not Xen-related)
From: Javier Guerra Giraldez <javier@xxxxxxxxxxx>
Date: Thu, 17 Jan 2008 20:41:45 -0500
Delivery-date: Thu, 17 Jan 2008 17:42:39 -0800
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <478FDB1F.70605@xxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <877300.99685.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <478FDB1F.70605@xxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: KMail/1.9.6 (enterprise 0.20070907.709405) 
On Thursday 17 January 2008, Nico Kadel-Garcia wrote:
> This is a serious security issue with lots of VNC based tools, such as
> most remote KVM's. It mandates that you use a good screenlock on the VNC
> server's X session, in case you walk away and come back. Xen default
> setups attempt to deal with this somewhat by restricting those VNC
> clients to access from the Dom0 itself. But woe betide the admin who
> opens it up for remote management and fails to protect their X session!

being a non-encrypted protocol, i guess anyone that uses it remotely without 
some kind of VPN is already exposing too much.

-- 
Javier

Attachment: signature.asc
Description: This is a digitally signed message part.

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-users] [ANNOUNCE] Xen 3.2.0 released!, Fajar A. Nugraha
Next by Date:  Re: [Xen-users] FreeBSD DomU under Debian Etch Dom0 (Xen 3.0.3-1), Kip Macy
Previous by Thread:  Re: RE : Re: [Xen-users] XEN domUs and X11 (maybe not Xen-related), Nico Kadel-Garcia
Next by Thread:  Re: [Xen-users] XEN domUs and X11 (maybe not Xen-related), Nico Kadel-Garcia
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy