[Xen-API] dom0 console

To: "xen-api@xxxxxxxxxxxxxxxxxxx" <xen-api@xxxxxxxxxxxxxxxxxxx>
From: George Shuklin <shuklin@xxxxxxxxxxx>
Date: Wed, 22 Feb 2012 03:22:28 +0400
Authentication-results: mr.google.com; spf=pass (google.com: domain of shuklin@xxxxxxxxxxx designates 10.205.117.16 as permitted sender) smtp.mail=shuklin@xxxxxxxxxxx
Delivery-date: Tue, 21 Feb 2012 23:22:20 +0000
List-id: Discussion of API issues surrounding Xen <xen-api.lists.xen.org>

Good day.

Why dom0 is creating automatic login session with root privileges on itown console? (I mean /dev/xvc0?).

Any guy, who was able to get non-root access to dom0 will be ableeasily get root access to dom0 via 'xvncviewer localhost:5900'.

Is any REAL reason to have password-unprotected console, avaible toanyone on dom0?


_______________________________________________
xen-api mailing list
xen-api@xxxxxxxxxxxxx
http://lists.xen.org/cgi-bin/mailman/listinfo/xen-api

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.