Daniel P. Berrange wrote: > > What about the VNC password? > > That's per-VM, isn't it? > > That is true by I don't really consider VNC password to be useful. It is > utterly insecure. ... Garry Dolley wrote: > With KVM/QEMU, you can set a VNC password per VM. > > But I think it is either/or though; you can use VNC with passwords > (no encryption), or use VNC with TLS, which is encrypted, but anyone > with a valid certificate can connect (to any VM). Ok, makes sense. In my own case, where VNC only listens on 127.0.0.1 and all remote connections are tunneled through SSH anyway, I think that plaintext passwords and the lack of VNC encryption would be OK. Thanks for the clearifications. -jim -- Libvir-list mailing list Libvir-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/libvir-list