RE: Remote access solution

From: James Butcher (bigjtb@blueyonder.co.uk)
Date: 02/26/03

  • Next message: David Moisan: "ntpasswd compatibility w/RAID systems" 
    From: "James Butcher" <bigjtb@blueyonder.co.uk>
To: <security-basics@securityfocus.com>
Date: Tue, 25 Feb 2003 23:31:12 -0000

    VNC can also be tunneled through ssh, theres plenty of how-tos around on
    google, and one its setup along with other mesures is as secure as other
    remote desktop programs.

    -----Original Message-----
    From: Chris Berry [mailto:compjma@hotmail.com]
    Sent: 25 February 2003 19:45
    To: security-basics@securityfocus.com
    Subject: Re: Remote access solution

    >From: "Nuzman" <nuzman@shreve.net>
    >Maybe I'm just not current on VNC, but the last version I saw had no way to
    >secure who can access the host. It was a simple connect to IP without any
    >authentication. Would you want anyone on the wire to be able to connect to
    >a
    >system running the host?

    That would certainly be bad if it were true, but VNC requires a password to
    log in. I'm using version 3.3.3r9 Under some older versions the password
    was stored in the registry on windows machines in clear text, which would be
    bad, but this isn't true with the version I'm using. If you're really
    worried about it, you can use tightVNC which has several security and
    performance enhancements. (although I haven't found them necessary)

    Chris Berry
    compjma@hotmail.com
    Systems Administrator
    JM Associates

    "Linux and I have a love/hate relationship. I hate its complexity until I
    figure out how something works, then I love its power."

    _________________________________________________________________
    MSN 8 helps eliminate e-mail viruses. Get 2 months FREE*.
    http://join.msn.com/?page=features/virus 

    ---
Incoming mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.458 / Virus Database: 257 - Release Date: 24/02/2003
---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.458 / Virus Database: 257 - Release Date: 24/02/2003

    Relevant Pages

    • Re: Internet Password
      ... spend time with them...not secure them.... ... Outgoing mail is certified Virus Free. ... Checked by AVG anti-virus system. ...
      (microsoft.public.windowsxp.security_admin)
    • RE: PCanywhere: security of it and operation over DSL/cable modem s
      ... I work for Expertcity, the company that makes GoToMyPC, so you might want to ... Subject: PCanywhere: security of it and operation over DSL/cable ... then x-forwarding the *nix version of VNC that connects to the windows ... that's less secure again. ...
      (Security-Basics)
    • Re: Have I been hacked Windows Server 2003?
      ... What I know is that VNC only encrypts password, ... The only really secure computer is one without a network. ... characters long password is not necessary secure. ... characters are automatically stored as NTLM Hash). ...
      (microsoft.public.windows.server.security)
    • Re: Remote access solution
      ... >I've always recommended tunneling the whole VNC session through some type ... Actually, I don't think even the initial authentication is secure, you ... I'd say tacking a vpn on top would be a good idea. ...
      (Security-Basics)
    • RE: SecureIIS
      ... When using VNC, I always setup an SSH daemon on the server. ... Then I use these registry settings to make VNC secure: ... This way, the client connects via SSH, then port forwards the VNC port ...
      (Focus-Microsoft)
    Loading