This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
Home Products Support Community News


[Xen-devel] Individual passwords for guest VNC servers ?

To: xen-devel@xxxxxxxxxxxxxxxxxxx
Subject: [Xen-devel] Individual passwords for guest VNC servers ?
From: "Daniel P. Berrange" <berrange@xxxxxxxxxx>
Date: Wed, 16 Aug 2006 19:11:53 +0100
Delivery-date: Wed, 16 Aug 2006 11:12:28 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
Reply-to: "Daniel P. Berrange" <berrange@xxxxxxxxxx>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: Mutt/1.4.1i
The current implementation of the VNC server in qemu-dm appears to just
leverage whatever password the root user has set in /root/.vnc/passwd.
This doesn't really have very nice semantics if one migrates the domain
over to a different host...which may not have same VNC password file.
It also doesn't allow for delegating access to individuale guest VNC
console to differeing sets of users since all guests share same password
for access.

Has anyone given any thought to / written any patches to enable assignment
of different passwords to individual guest's VNC servers. At its simplest
one could just allow the crypt/md5 hash of the desired password to be
supplied in the xm config file, or XenD SEXPR when creating a new domain
and pass that hash through to qemu-dm to use instead of /root/.vnc/passwd

|=- Red Hat, Engineering, Emerging Technologies, Boston.  +1 978 392 2496 -=|
|=-           Perl modules: http://search.cpan.org/~danberr/              -=|
|=-               Projects: http://freshmeat.net/~danielpb/               -=|
|=-  GnuPG: 7D3B9505   F3C9 553F A1DA 4AC2 5648 23C1 B3DF F742 7D3B 9505  -=| 

Xen-devel mailing list