|
|
| Applications |
| Mailing Lists |
| Miscellaneous |
| Operating Systems |
| Programming |
RE: Remote access solution
Date: Thu Feb 27 2003 - 07:32:36 EST
I had started to type up what I thought VNC does on login; then I decided to
simply post this link. It should answer any question about security around
the initial authentication:
http://www.uk.research.att.com/vnc/faq.html#q55
-----Original Message-----
From: Chris Berry [mailto:compjma@hotmail.com]
Sent: Wednesday, February 26, 2003 1:15 PM
To: security-basics@securityfocus.com
Subject: Re: Remote access solution
>From: "Mike Jensen" <jenseses@hotmail.com>
>your password is sent in the clear.
>
>I've always recommended tunneling the whole VNC session through some type
>of encryption method. (I prefer VPNs)
Actually, I don't think even the initial authentication is secure, you should definitely use some sort of encryption (ssh or vpn or both) Personally I'd say ssh is fine when you're connecting from one interior computer to another, but if you're going to connect from home or something I'd say tacking a vpn on top would be a good idea.
Chris Berry
compjma@hotmail.com
Systems Administrator
JM Associates
"Linux and I have a love/hate relationship. I hate its complexity until I figure out how something works, then I love its power."
Help STOP SPAM with the new MSN 8 and get 2 months FREE* http://join.msn.com/?page=features/junkmail
Blue Cross Blue Shield of Florida, Inc., and its subsidiary and affiliate companies are not responsible for errors or omissions in this e-mail message. Any personal comments made in this e-mail do not reflect the views of Blue Cross Blue Shield of Florida, Inc. Received on Thu Feb 27 12:28:55 2003
This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:03:50 EDT
|
Contact Us Legal Notices Order Services Online Pantek Home Privacy Policy IT news Site Map Pantek Library |