Encrypt VNC Traffic from Proxy Host to Compute Node
Bug #1248742 reported by
Solly Ross
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Compute (nova) |
Opinion
|
Wishlist
|
Unassigned |
Bug Description
Description of problem:
If we break the novnc connections into three parts as below:
client browser (1) -----> novnc proxy (2) ------> compute node (3)
Then the present status is: connection from browser to proxy is encrypted, while the nonvnc proxy(on controller nodes) to compute nodes are NOT.
We would like the novnc traffic from controller node to compute nodes be encrypted as wel.
tags: | added: libvirt novncproxy |
Changed in nova: | |
status: | New → Confirmed |
importance: | Undecided → Wishlist |
tags: |
added: console removed: novncproxy |
Changed in nova: | |
assignee: | nobody → Solly Ross (sross-7) |
Changed in nova: | |
status: | Confirmed → In Progress |
To post a comment you must log in.
I believe the free and open source versions of VNC servers do not natively support encryption of communication. But the common setup is to tunnel VNC over an SSH connection. So maybe paramiko could be used in some way.