pipo opened a new issue #5834:
URL: https://github.com/apache/cloudstack/issues/5834
<!--
Verify first that your issue/request is not already reported on GitHub.
Also test if the latest release and main branch are affected too.
Always add information AFTER of these HTML comments, but no need to delete
the comments.
-->
##### ISSUE TYPE
<!-- Pick one below and delete the rest -->
* Documentation Report
##### COMPONENT NAME
<!--
Categorize the issue, e.g. API, VR, VPN, UI, etc.
-->
~~~
Documentation
~~~
##### SUMMARY
<!-- Explain the problem/feature briefly -->
The documentation at
https://docs.cloudstack.apache.org/en/latest/installguide/hypervisor/kvm.html#install-and-configure-libvirt
instructs users to setup libvirt with TCP connections with no authentication
enabled. This is an extremely dangerous setup. Anyone allowed to access
libvirt, which in this case is at least all local (unprivileged) users may use
libvirt to spawn privileged processes.
The documentation is also misleading because it claims that it's the only
way for migrations to work. Libvirt supports migrations using all protocols and
transports, it's just that the secure variants actually require a bit of setup.
Trading total insecurity for omitting a few setup steps is a very bad trade.
A suggested configuration is to use SSH keys for ssh transport or setup TLS
client and server certificates. Both then don't require any more user
interactions.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
