| Thread Previous • Date Previous • Date Next • Thread Next |
** Changed in: nova
Status: In Progress => Opinion
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Compute (nova).
https://bugs.launchpad.net/bugs/1194639
Title:
Authenticate VNC Proxy-to-Host Connection
Status in OpenStack Compute (Nova):
Opinion
Bug description:
The VNC proxy to host link should be authenticated. As it currently
stands, if some malicious entity managed to get into an OpenStack
cloud's internal network, they could simply connect using their VNC
client of choice to any compute host node at ports 5900, 5901, etc an
get access to the VMs. This is not desirable. In situations where a
Kerberos installation is available, the link between the proxy and the
host should be protected by Kerberos.
To manage notifications about this bug go to:
https://bugs.launchpad.net/nova/+bug/1194639/+subscriptions
| Thread Previous • Date Previous • Date Next • Thread Next |
