On Mon, Jun 18, 2007 at 12:09:33PM +0100, Richard W.M. Jones wrote: > Daniel P. Berrange wrote: > >For the libvirtd we currently use two ports > > > > 16509 - TCP unencrypted stream > > 16514 - TLS encrypted stream > > > >My first thought is that we should really use consequetive port numbers > >eg 16510 and 16511. > > A few comments ... > > We don't need to use two ports if we either use a "STARTTLS"-style > upgrading of unencrypted to encrypted connections (which is the > recommended way to do things instead of using two ports), or more simply > we just ditch unencrypted connections. They're disabled by default > anyway and not in any way required unless we want libvirt to build > without GnuTLS. Well if we can implement the detection automatically, I'm all for reducing to a single port ! I still want to be able to build without the dependancy and optionally allow unencrypted connections. > No one got my ZX81 joke, obviously ... Ahum, I certainly didn't, my childhood memory includes an UNIVAC but no ZX81! Heh Daniel -- Red Hat Virtualization group http://redhat.com/virtualization/ Daniel Veillard | virtualization library http://libvirt.org/ veillard@xxxxxxxxxx | libxml GNOME XML XSLT toolkit http://xmlsoft.org/ http://veillard.com/ | Rpmfind RPM search engine http://rpmfind.net/