WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Xen-devel] Individual passwords for guest VNC servers ?

from [Masami Watanabe] [Permanent Link][Original]
To: Ian Pratt <m+Ian.Pratt@xxxxxxxxxxxx>, "Daniel P. Berrange" <berrange@xxxxxxxxxx>, Anthony Liguori <aliguori@xxxxxxxxxx>
Subject: RE: [Xen-devel] Individual passwords for guest VNC servers ?
From: Masami Watanabe <masami.watanabe@xxxxxxxxxxxxxx>
Date: Thu, 28 Sep 2006 10:01:14 +0900
Cc: xen-devel@xxxxxxxxxxxxxxxxxxx, masami.watanabe@xxxxxxxxxxxxxx
Delivery-date: Wed, 27 Sep 2006 17:58:40 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <3AAA99889D105740BE010EB6D5A5A3B202A3D2@xxxxxxxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
References: <3AAA99889D105740BE010EB6D5A5A3B202A3D2@xxxxxxxxxxxxxxxxxxxxxxxxxx>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx 
> In the mean time, I'd just out them in the domain config file and change
> the default permissions and ownership.


Yes, I'll do as follows. 

I challenge the correction that uses xenstore. 
When the password is received, qemu-dm deletes it. 

Masami Watanabe


On Tue, 26 Sep 2006 19:23:47 +0100, Ian Pratt wrote:
>  
> > Thanks all point about security, I'll do as follows.
> > I thought that the point was the following two. 
> > 
> > 
> > 1. Storage place of encrypted password
> >   Should I store it in /etc/xen/passwd ?
> >     Or, should I wait for DB of Xen that will be released in 
> > the future?
> 
> The xend life cycle management patches were posted by Alistair a couple
> of months back. They'll go in early in the 3.0.4 cycle.
> 
> >   In the latter case, the release time and information, I want you to
> >   teach it.
> >   Now, I think we have no choice but to use /etc/xen/passwd.
> 
> In the mean time, I'd just out them in the domain config file and change
> the default permissions and ownership.
> 
> > 2. Method of Xen VNC Server receiving stored password
> >   By way of xenstore. However, it is necessary to consider 
> > xenstore-ls.
> 
> It can be passed transiently (i.e. it gets deleted from the store by
> qemu-dm)
> You need to be root to run xenstore-ls so I'm comfortable with this.
> 
> Ian
> 
> _______________________________________________
> Xen-devel mailing list
> Xen-devel@xxxxxxxxxxxxxxxxxxx
> http://lists.xensource.com/xen-devel


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: [Xen-devel] Dom0 hang problem, Ian Pratt
Next by Date:  Re: [Xen-devel] Individual passwords for guest VNC servers ?, Masami Watanabe
Previous by Thread:  RE: [Xen-devel] Individual passwords for guest VNC servers ?, Ian Pratt
Next by Thread:  [Xen-devel] [PATCH][Take 2] VNC authentification, Masami Watanabe
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy