On Fri, Dec 02, 2011 at 10:35:31AM -0500, Brian Hinz wrote: > The missing parameters is an easy fix, I'll commit those changes for the > java viewer tonight (FYI, the Fltk viewer does not currently have those > parameters so if you need that functionality you should submit a feature > request to get them added). > > As for password-less authentication, you know that X509none just uses X509 > certificates to check the validity of the endpoints, right? It does not > prevent a user with a valid (ie: non-revoked) certificate from accessing > another user's session. Although I guess you could probably do something > like use a different CA to generate each user (or group of users) > certificate and thus limit access, but for anything other than a small > number of users this is likely to become difficult to manage...
As far as I know, our X509 code does only support the verification of the server identity. The code required for client certificates is missing. Regards, Martin ------------------------------------------------------------------------------ All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-novd2d _______________________________________________ Tigervnc-devel mailing list Tigervnc-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/tigervnc-devel
