How to create a DBus server

Daniel P. Berrange dan at berrange.com
Wed Jan 25 03:10:03 PST 2006 

On Sat, Jan 21, 2006 at 01:47:55PM +0000, Jamie McCracken wrote:
> Daniel P. Berrange wrote:
> >On Sat, Jan 21, 2006 at 12:04:24PM +0000, Jamie McCracken wrote:
> >
> >>>>That's probably not really supported (it could be, but allowing p2p 
> >>>>communication is not the main goal). DBus is meant to be used with a 
> >>>>shared server (called message bus) which can be global to a machine or 
> >>>>local to the user's session.
> >>>
> >>>It is supported.  HAL uses p2p to avoid spamming the bus.  However it is
> >>>a bit more complicated than using the bus to communicate.  Tang, can you
> >>>describe how you want to use D-Bus?
> >>
> >>Just a quick question on DbusServer. Can it be used for remote machine 
> >>access via tcp/ip? Or is tcp/ip support disabled for security reasons?
> >
> >
> >Yes, there is a TCP transport implemented in the DBus libraries. The
> >caveat is, however, that there is no authentication protocol implemented
> >yet that is particularly suited to TCP. IIRC, the plan is to integrate 
> >cyrus sasl to provide strong authentication. Also note although its
> >a binary stream, the on the wire encoding is *not* encrypted in any
> >way so not suitable for any remotely sensitive data.
> 
> thanks - I dont strictly need authentication as such although it would 
> be nice to have as an option for the security conscious. That said, are 
> there any plans to support SSL to encrypt everything sent over the wire?

If you need on-the-wire encryption, then one other option is to have
the DBus server only bind to localhost, and then have your remote clients
connect over a secure SSH tunnel.

Regards,
Dan.
-- 
|=-            GPG key: http://www.berrange.com/~dan/gpgkey.txt       -=|
|=-       Perl modules: http://search.cpan.org/~danberr/              -=|
|=-           Projects: http://freshmeat.net/~danielpb/               -=|
|=-   berrange at redhat.com  -  Daniel Berrange  -  dan at berrange.com    -=|
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.freedesktop.org/archives/dbus/attachments/20060125/2493e4f4/attachment.pgp

More information about the dbus mailing list