RE: Remote access solution

["James Butcher" <bigjtb () blueyonder co uk>]

VNC can also be tunneled through ssh, theres plenty of how-tos around on
google, and one its setup along with other mesures is as secure as other
remote desktop programs.

-----Original Message-----
From: Chris Berry [mailto:compjma () hotmail com]
Sent: 25 February 2003 19:45
To: security-basics () securityfocus com
Subject: Re: Remote access solution


> From: "Nuzman" <nuzman () shreve net>
> Maybe I'm just not current on VNC, but the last version I saw had no way to
> secure who can access the host. It was a simple connect to IP without any
> authentication. Would you want anyone on the wire to be able to connect to
> a
> system running the host?

That would certainly be bad if it were true, but VNC requires a password to
log in.  I'm using version 3.3.3r9  Under some older versions the password
was stored in the registry on windows machines in clear text, which would be
bad, but this isn't true with the version I'm using.  If you're really
worried about it, you can use tightVNC which has several security and
performance enhancements. (although I haven't found them necessary)

Chris Berry
compjma () hotmail com
Systems Administrator
JM Associates

"Linux and I have a love/hate relationship.  I hate its complexity until I
figure out how something works, then I love its power."

_________________________________________________________________
MSN 8 helps eliminate e-mail viruses. Get 2 months FREE*.
http://join.msn.com/?page=features/virus

---
Incoming mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.458 / Virus Database: 257 - Release Date: 24/02/2003

---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.458 / Virus Database: 257 - Release Date: 24/02/2003