Re: The server end of VNC and SSH?

From: Mike (mike_at_nomail.com)
Date: 01/21/04

• Next message: Pierre-Yves Lesage: "Re: The server end of VNC and SSH?"
• Previous message: Richard E. Silverman: "Re: The server end of VNC and SSH?"
• In reply to: Erik Squires: "The server end of VNC and SSH?"
• Next in thread: Pierre-Yves Lesage: "Re: The server end of VNC and SSH?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 21 Jan 2004 16:46:36 +0800

Erik Squires wrote:
> Hi!
>
> I've read the online documentation for using VNC with SSH. The
> documentation says you use ssh -L to redirect.
>
> However, it says nothing about how to set up the server end. What do I do
> so that the computer running the ssh server actually can decode the SSH
> stream?
>
> Thanks!
>
>
>
> Erik
>
>
I'll take a guess that you have not enabled loopback connections. From
the documentation http://www.realvnc.com/winvnc.html

>
> AllowLoopback
> By default, WinVNC servers disallow any vncviewer connections from the same machine. For testing purposes, or, potentially, when using multiple instances of WinVNC on Windows Terminal Server, this behaviour is undesirable. Setting this registry entry to 1 will cause local-loopback connections to be allowed. Setting it to zero will filter out such connections. Local machine-specific setting.
>

Modify the registry accordingly. You may want to look at "LoopbackOnly"
for security.

> LoopbackOnly
> By default, WinVNC servers accept incoming connections on any network adapter address, since this is the easiest way of coping with multihomed machines. In some cases, it is preferable to listen only for connections originating from the local machine and aimed at the "localhost" adapter - a particular example is the use of VNC over SSH to provide secure VNC. Setting this registry entry to 1 will cause WinVNC to only accept local connections - this overrides the AllowLoopback and AuthHosts settings. Setting this entry to zero causes WinVNC to accept connections on any adapter and is the default setting.Local machine-specific setting.

Could also be one of a number of other problems, but without telling us
the exact command being used, the debug messages and perhaps even
sshd.conf, it is to tell.

Mike

• Next message: Pierre-Yves Lesage: "Re: The server end of VNC and SSH?"
• Previous message: Richard E. Silverman: "Re: The server end of VNC and SSH?"
• In reply to: Erik Squires: "The server end of VNC and SSH?"
• Next in thread: Pierre-Yves Lesage: "Re: The server end of VNC and SSH?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages ssh and OpenSSH ... Subject: ssh and OpenSSH ... I want to configure ssh in Solaris 9 but the documentation i have ... Mail has the best spam protection around ... (SunManagers) Re: little more security ... We use SSH and SFTP. ... they described the installation of the openSSH-xxx-chrooted line-by-line and which files should go where. ... JailKit should have a slackware tgz -packet ... The documentation should be cleaned up. ... (alt.os.linux) IPv6 Link-Local SSH connections ... I have been researching link-local multicast IPv6 to work with ssh, ... I keep coming on documentation that states to execute ... (SSH) ssh_known_hosts - keytype? ... I'm writing a little software that deals with the keypairs of ssh. ... a question that wasn't covered in the documentation: ... (comp.security.ssh) ssh_known_hosts - keytype? ... I'm writing a little software that deals with the keypairs of ssh. ... a question that wasn't covered in the documentation: ... (comp.security.ssh)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint