On Thu, Aug 10, 2000 at 06:20:51PM -0500, Bret Hughes wrote:
| > I just checked out vnc is seems to good to be true. So does it actually work as
| > well as the page makes it seem??
It's bloody marvellous.
| > One other question, the important one, how
| > secure is it??
| Not sure about the security. I wonder if you could pipe it through ssh? hmm.
| Bret
Yep. Inside the work intranet we use it in the clear. From home I pipe it
through ssh. I wrote this approach up in some detail at:
http://www.zip.com.au/~cs/answers/vnc-thru-firewall-via-ssh.txt
Read and enjoy.
In short:
The plain VNC protocol uses a simple password challenge (it passes
hashes over the wire, so the password doesn't leak that way). And
the protocol itself is in the clear. And thus sniffable.
It tunnels just fine over ssh, so you could make the VNC server
listen just to the local interface (i.e. not the network card)
and require ssh to get to the box for real security (and encrypted
transport of the protocol over the wire, thus unsniffable).
I do the latter routinely to get in from home.
Cheers,
--
Cameron Simpson, DoD#743 [EMAIL PROTECTED] http://www.zip.com.au/~cs/
I do not like this word 'bomb'. It is not a bomb. It is a device which
is exploding. - Jacques Le Blanc, French Ambassador to New Zealand,
on the tests of nuclear "exploding devices"
in French Polynesia.
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
