Bug 638820

Summary: The default setup for guests via the gui leaves them vulnerable to other users accessing the vnc server
Product: [Community] Virtualization Tools Reporter: David <disclosure>
Component: libvirtAssignee: Libvirt Maintainers <libvirt-maint>
Status: CLOSED DUPLICATE QA Contact:
Severity: medium Docs Contact:
Priority: low    
Version: unspecifiedCC: crobinso, xen-maint
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2016-03-21 23:10:15 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description David 2010-09-30 03:23:13 UTC 
The default setup for guests via the gui leaves them vulnerable to other users accessing the vnc server.

IMHO THIS IS VERY BAD. I do not trust the other users on my system.
They should not be able to reach my vnc server for a guest.
As SDL will not even work for me with kvm ... 
"Error starting domain: operation failed: failed to retrieve chardev info in qemu with 'info chardev'"

This means I am forced to use vnc... 
The gui will also not save my password etc.
This is really not good...
Comment 1 Cole Robinson 2016-03-21 23:10:15 UTC 
Sorry this never received a response. I don't think we will change the default listen address any time soon, but there are several capabilities to lock it down further, and distros can always choose to change the default.

There's more discussion in bug 1043919

*** This bug has been marked as a duplicate of bug 1043919 ***