[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] XEN domUs and X11 (maybe not Xen-related)

To: xen-users@xxxxxxxxxxxxxxxxxxx
From: Javier Guerra Giraldez <javier@xxxxxxxxxxx>
Date: Thu, 17 Jan 2008 20:41:45 -0500
Delivery-date: Thu, 17 Jan 2008 17:42:39 -0800
List-id: Xen user discussion <xen-users.lists.xensource.com>

On Thursday 17 January 2008, Nico Kadel-Garcia wrote:
> This is a serious security issue with lots of VNC based tools, such as
> most remote KVM's. It mandates that you use a good screenlock on the VNC
> server's X session, in case you walk away and come back. Xen default
> setups attempt to deal with this somewhat by restricting those VNC
> clients to access from the Dom0 itself. But woe betide the admin who
> opens it up for remote management and fails to protect their X session!

being a non-encrypted protocol, i guess anyone that uses it remotely without 
some kind of VPN is already exposing too much.

-- 
Javier

Attachment: signature.asc
Description: This is a digitally signed message part.

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

Follow-Ups:
- Re: [Xen-users] XEN domUs and X11 (maybe not Xen-related)
  - From: Nico Kadel-Garcia

References:
- RE : Re: [Xen-users] XEN domUs and X11 (maybe not Xen-related)
  - From: Frédérique Da Luene
- Re: RE : Re: [Xen-users] XEN domUs and X11 (maybe not Xen-related)
  - From: Nico Kadel-Garcia

Prev by Date: Re: [Xen-users] [ANNOUNCE] Xen 3.2.0 released!
Next by Date: Re: [Xen-users] FreeBSD DomU under Debian Etch Dom0 (Xen 3.0.3-1)
Previous by thread: Re: RE : Re: [Xen-users] XEN domUs and X11 (maybe not Xen-related)
Next by thread: Re: [Xen-users] XEN domUs and X11 (maybe not Xen-related)
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.