RE: PCanywhere: security of it and operation over DSL/cable modem s

• Previous message: Remington Winters: "Re: An alternative to ftp"
• Maybe in reply to: Klepinger, Aaron: "RE: PCanywhere: security of it and operation over DSL/cable modem s"
• Next in thread: Anshuman Kanwar: "RE: PCanywhere: security of it and operation over DSL/cable modem s"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: Anshuman Kanwar <Anshuman@expertcity.com>
To: "'securitybasics@plumlee.org'" <securitybasics@plumlee.org>, security-basics@securityfocus.com
Date: Tue, 23 Jul 2002 09:59:49 -0700

Disclaimer:
I work for Expertcity, the company that makes GoToMyPC, so you might want to
ignore this mail.

Hello,

I don't think I understand your concern about not using GoToMyPC for remote
administration. We ourselves use this product to manage a large number of
our machines internally.

I agree that you are worried about access information being available to
others, but is that not the case with any other remote access product as
well? IMHO gotomypc has one of the best encryption and security schemes of
the lot, access control itself is double password protected. I urge you to
discuss your concerns offline with us before making a choice.

Regards,
Ansh Kanwar
Unix SysAdmin
Expertcity Inc.

-----Original Message-----
From: Johan De Meersman [mailto:johan@ops.skynet.be]
Sent: Tuesday, July 23, 2002 1:54 AM
To: security-basics@securityfocus.com
Subject: Re: PCanywhere: security of it and operation over DSL/cable
modems

If I understand correctly, the workstation that needs to be accessed is
in an internal network. Hmm... You could probably forward ports through
your firewall, but I'm no wizard on that. Another solution is to use
VNC, by ssh-ing into your internal network, somewhere on a *nix box, and
then x-forwarding the *nix version of VNC that connects to the windows
VNC host. This solution requires that the remote controller isn't behind
a NAT, too, though. Another option is to use a web-based (java-applet)
VNC client on a webserver that has access to the internal net, but
that's less secure again.

Google for VNC, it's some or other open license, it's got loads of
platforms, and I believe there are even a few secure implementations out
there.

securitybasics@plumlee.org wrote:

> We have a workstation at the office that needs to allow a user remote
> access for running software on the workstation. I don't think a VPN
> will work because the user MUST run the software on this machine, as
> if he was seated at it. I'm looking at gotomypc.com and pcanywhere.
> I don't feel comfortable using gotomypc.com as this is proprietary
> company information and I don't trust someone else having the access
> information for the workstation that has the info on it.
>
> My questions are as follows:
> 1. Has anyone got experience with the security of PCanywhere running
> over a DSL/cable modem connection? What should I watch out for? From
> what I understand, I can use HTTPS as one of the options for the
> connection. Anyone know the encryption level? Are all parts of the
> transactions secured with encryption?
> 2. How does the software work if it's over a broadband connection?
> My internal IPs aren't valid for routing. How does the software know
> a connection is being initiated?
> 3. Any better solutions come to mind? I'd rather have a PITA setup
> that's secure than a simple one that's not.
> 4. What security measures should I implement on the users PC to make
> sure that it's secure as well? I won't have physical access to it but
> for the initial setup.
>
> I'll be interested in seeing if this gets posted at all due to the
> recent acquisition of securityfocus by Symantec. Can't bite the hand
> that feeds you, I guess.
>
> Many thanks for any help. Long time reader (well, several months at
> least), first time poster.

• Previous message: Remington Winters: "Re: An alternative to ftp"
• Maybe in reply to: Klepinger, Aaron: "RE: PCanywhere: security of it and operation over DSL/cable modem s"
• Next in thread: Anshuman Kanwar: "RE: PCanywhere: security of it and operation over DSL/cable modem s"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: PCanywhere: security of it and operation over DSL/cable modem s ... I have used GoToMyPC around two years back for personal use. ... Subject: PCanywhere: security of it and operation over DSL/cable modems ... > then x-forwarding the *nix version of VNC that connects to the windows ... > that's less secure again. ... (Security-Basics) Re: Ten least secure programs ... it's probably better you leave the topic alone ... I said I do not have security issues with the programs I code. ... I didn't realize you were a Linux user, ... > the most widely used and secure UNIX flavors? ... (Security-Basics) "An Asp.Net accident waiting to happen" - Draft article ... In a time where Security ... in shared hosting environments. ... technologies that allow the creation and deployment of secure ... IIS 6 web server and windows 2003 also provide some tools to deploy ... (microsoft.public.dotnet.framework.aspnet.security) RE: Why Easy To Use Software Is Putting You At Risk ... I do agree that the additions and changes to Solarius will make it more secure and that this is good. ... Why Easy To Use Software Is Putting You At Risk ... instead I would say that the view that security is ... Four Construction Workers Died after Crane Collapse in Toledo, ... (Security-Basics) Why Easy To Use Software Is Putting You At Risk ... Anyone who has been working with computers for a long time will have noticed ... because DNS does not configure properly or security permissions are relaxed ... Is It Also Secure ... guarantee that no one really knows for sure, not even Microsoft developers. ... (Security-Basics)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint