RE: pc anywhere is safe?

["Garbrecht, Frederick" <FGarbrecht () ecogchair org>]

This topic seems to come up alot; check out the archives for a number of
discussions regarding the security of remote access tools.  In general, VNC
can be used relatively safely if run through an encrypted tunnel such as
SSH.  Default encryption on PC Anywhere is not considered robust and should
not be used.  I can't comment on Terminal Services except to say that
discussions I've seen here in the past suggest that TS is not secure enough
to be used through a firewall into your internal LAN.  Tunnelled VNC works,
but always seemed slow to me; I only use it for internal remote control
sessions, never through a firewall.  I've used Remotely Anywhere with
success; it is a little different from the other solutions that require
both server and client components.  RA only sets up a server session which
you attach to through a browser over an https connection.  It supports a
number of methods of authentication and allows ip address restriction.
I've looked in the past for published exploits of RA and have never seen
any.

Fred

-----Original Message-----
From: SB CH [mailto:chulmin2 () hotmail com]
Sent: Tuesday, November 05, 2002 1:47 AM
To: security-basics () securityfocus com
Subject: pc anywhere is safe?


Hello, all

I use VNC, PC ANYWHERE and Terminal Service to remote control.
I would like to which tool is the most safeful?
As I know that the VNC is not safe as it transfers the ID/PW into plain 
text.
and Terminal Service is best safe.
and how about 'pc anywhere'?


Thanks in advance.



_________________________________________________________________
보다 빠르고 보기 편한 뉴스. 오늘의 화제는 MSN 뉴스에서 확인하세요.  
http://www.msn.co.kr/news/