Re: [H] Remote access VNC suggestions

2008-10-21 Thread Joe User
Hello Soren, If you are trying to get a rise out of me you have failed. Troll somewhere else. -- Regards, joeuser - Still looking for the 'any' key... "...now these points of data make a beautiful line..."

Re: [H] Remote access VNC suggestions

2008-10-21 Thread Soren
Hey Joe, Joe User wrote: Hello Soren, Friday, October 3, 2008, 2:19:48 AM, you wrote: Why are you addressing yourself? I usually trim that out when i reply to my own post. Forgot. Oh.. Why are you at all worrying about that? I guess the same reason you might be asking me about it. -

Re: [H] Remote access VNC suggestions

2008-10-18 Thread Soren
Hey Scott, Watch below... Scott Sipe wrote: On Oct 3, 2008, at 1:00 AM, Soren wrote: Scott Sipe wrote: On Oct 2, 2008, at 10:10 PM, Soren wrote: In your shoes, I would not bet my dimes on VNC alone. If a security breach happens because of VNC (it does from time to time, and VNC scans/ex

Re: [H] Remote access VNC suggestions

2008-10-18 Thread Soren
Hi Thane, Yup, Open VPN, even it still freezes every now and then (mostly insufficient hardware resources). Else, a proven, closed source (ouch! ;) solution. Thane Sherrington wrote: Hi Soren, If Hamachi isn't secure, is there a similar service which you would recommend? T

Re: [H] Remote access VNC suggestions

2008-10-07 Thread Scott Sipe
On Oct 7, 2008, at 1:12 PM, Thane Sherrington wrote: Hi Soren, If Hamachi isn't secure, is there a similar service which you would recommend? T Having never used Hamachi, I've no idea if it is secure or not... But I will mention OpenVPN -- http://openvpn.net/ I think it's pretty much th

Re: [H] Remote access VNC suggestions

2008-10-07 Thread Thane Sherrington
Hi Soren, If Hamachi isn't secure, is there a similar service which you would recommend? T

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Scott Sipe
Hello, I know nothing about Hamachi (though it looks interesting), so I can't comment about it specifically. I have used OpenVPN which is kind of a b*tch to setup (though better than many alternatives!) and it works well. I do fully agree that using a VPN to connect to a work network is i

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Scott Sipe
On Oct 3, 2008, at 1:00 AM, Soren wrote: Scott Sipe wrote: On Oct 2, 2008, at 10:10 PM, Soren wrote: In your shoes, I would not bet my dimes on VNC alone. If a security breach happens because of VNC (it does from time to time, and VNC scans/exploits are automatic!), your client might bec

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Greg Sevart
> To: Greg Sevart > Subject: Re: [H] Remote access VNC suggestions > > Hello Greg, > > Thursday, October 2, 2008, 8:31:41 PM, you wrote: > > > Your time does look wrong. From the headers: > > > Date: Thu, 2 Oct 2008 19:52:34 -0600 > > > I received it

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Joe User
Hello DHSinclair, Thursday, October 2, 2008, 11:02:57 PM, you wrote: > Yes, JoeUser, I do here in NW GA on the ATT dsl network. > I use Eudora. > It has been sorta chronic for some months. > Not a bother until you start a big thread like this one. > Duncan Yeah my apologies on this guys, I think

Re: [H] Remote access VNC suggestions

2008-10-02 Thread DHSinclair
Yes, JoeUser, I do here in NW GA on the ATT dsl network. I use Eudora. It has been sorta chronic for some months. Not a bother until you start a big thread like this one. Duncan At 17:57 10/02/2008 -0600, you wrote: snip snip Does anyone else see my msg's being received before they were sent?

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Joe User
Hello Soren, Friday, October 3, 2008, 2:19:48 AM, you wrote: > Why are you addressing yourself? I usually trim that out when i reply to my own post. Forgot. > Why are you at all worrying about that? I guess the same reason you might be asking me about it. > -- To be honest, why don't you come

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Joe User
Hello Greg, Thursday, October 2, 2008, 8:31:41 PM, you wrote: > Your time does look wrong. From the headers: > Date: Thu, 2 Oct 2008 19:52:34 -0600 > I received it at 19:51 my time (Central, which is still in daylight saving > time, so presently -0500). > Your client is timestamping it at 19:5

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Joe User
Hello Brian, Thursday, October 2, 2008, 5:59:13 PM, you wrote: > Timestamp on that message you just sent was ahead by an hour for me. Testing on this... 10:48:53 PM -- Regards, joeuser - Still looking for the 'any' key... "...now these points of data make a beautiful line..."

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Soren
Brian Weeden wrote: Hamachi IS proven to be secure ??? (documentation missing) and there are no issues with the mediation server. ??? (documentation missing) But if you doubt what I said and won't listen to the podcast nor check out the GRC forums to discover for yourself then I guess the

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Soren
Joe User wrote: Hello Joe, Well, hello, 'Joe'. Or should I instead call you by your real name, George A. Moore? Why are you addressing yourself? Does anyone else see my msg's being received before they were sent? Why are you at all worrying about that? -- To be honest, why don't you com

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Greg Sevart
o: Brian Weeden > Subject: Re: [H] Remote access VNC suggestions > > Hello Brian, > > Thursday, October 2, 2008, 4:59:13 PM, you wrote: > > > Timestamp on that message you just sent was ahead by an hour for me. > > Weird, I'm not sure what's going on. I t

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Joe User
Hello Brian, Thursday, October 2, 2008, 4:59:13 PM, you wrote: > Timestamp on that message you just sent was ahead by an hour for me. Weird, I'm not sure what's going on. I tried logging into the HWG list site but I don't see a place to do that - I see view list members only and the un/subscribe

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Brian Weeden
Hamachi IS proven to be secure and there are no issues with the mediation server. But if you doubt what I said and won't listen to the podcast nor check out the GRC forums to discover for yourself then I guess there's nothing I can say that would change your mind. Choose something else then. ---

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Soren
Brian Weeden wrote: Hamachi was open source and then got bought by a company which turned it into a commercial product. ...and then developed further on the proto... man! Wake up, you are really disappointing me on this subject, only to defend a potential spyware that is going to be used by a

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Soren
Come on, Brian... Brian Weeden wrote: You're not exposing your information at all. Well, that you really don't know :) You're still running your data encrypted through the Hamachi network. Excactly... through the Hamachi network. The only third party is the Hamachi mediation server and t

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Brian Weeden
You're not exposing your information at all. You're still running your data encrypted through the Hamachi network. The only third party is the Hamachi mediation server and that only exists to establish the original connection. You can't do the connection from behind a NAT without it. You don't ha

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Soren
Brian Weeden wrote: Google VNC vulnerabilities, there have been a bunch in the past and still some open: http://www.realvnc.com/pipermail/vnc-list/2006-May/054854.html http://isc.sans.org/diary.html?storyid=1331 http://www.intelliadmin.com/blog/2006/05/vnc-flaw-proof-of-concept.html Yep, the r

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Brian Weeden
Hamachi was open source and then got bought by a company which turned it into a commercial product. Yes, there is a mediation server and yes it could log those things. But so what? All it knows it that you had a connection between machine X and machine Y for Z minutes. It can't listen in and th

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Soren
Hi Brian, Heh-he... big confusion here because of www.metasploit.com/users/hdm/tools/hamachi/hamachi.html Still, I'm not so sure how I can agree with you about Hamachi. First, it's a closed protocol. Second, according to http://en.wikipedia.org/wiki/Hamachi : "...For the product to work, a "

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Soren
Joe User wrote: I think he may be saying... VNC is open source and/or popular - lots of little proggys made to find and break into it - brute force, etc? Nope, I'm saying systematic, automated exploits aimed directly towards VNC, due to e.g. poor coding, etc. Not sure on RDP, but myself I

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Soren
...down below Scott Sipe wrote: On Oct 2, 2008, at 10:10 PM, Soren wrote: In your shoes, I would not bet my dimes on VNC alone. If a security breach happens because of VNC (it does from time to time, and VNC scans/exploits are automatic!), your client might become 'slightly upset'. But,

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Brian Weeden
Timestamp on that message you just sent was ahead by an hour for me. --- Brian Weeden Technical Consultant Secure World Foundation +1 (514) 466-2756 Canada +1 (202) 683-8534 US On Thu, Oct 2, 2008 at 7:57 PM, Joe User <[EMAIL PROTECTE

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Joe User
Hello Joe, Thursday, October 2, 2008, 12:00:08 PM, you wrote: > Hello, > I have a client that has a multi million dollar company but they don't > spend a lot on the IT side. They are now going to a vacation home > within the states pretty regular and want remote access to the desktop > in the of

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Brian Weeden
Google VNC vulnerabilities, there have been a bunch in the past and still some open: http://www.realvnc.com/pipermail/vnc-list/2006-May/054854.html http://isc.sans.org/diary.html?storyid=1331 http://www.intelliadmin.com/blog/2006/05/vnc-flaw-proof-of-concept.html There are two different types of

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Joe User
Hello Scott, Thursday, October 2, 2008, 3:11:19 PM, you wrote: > Could you expand on any of this? I've had VNC ports open for years and > no security issues. I do use UltraVNC and encryption plugins, along > with password authenticated domain login. What kind of security breach > are you fores

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Joe User
Hello Scott, Thursday, October 2, 2008, 11:09:52 AM, you wrote: > If it's XP, easy (and cheap!) answer is to use the builtin Remote > Desktop--XP Pro supports 1 RDP client at a time. Clients available for > Mac/PC/Linux. What I do is forward a random port on the outside (like > 38201) to port 3

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Joe User
Hello Brian, Thursday, October 2, 2008, 2:46:55 PM, you wrote: > That's why I like the VNC through Hamachi option. Not only is it using a > secure VPN tunnel, but when you log into Hamachi it gives you a 5.x.x ip > address which is in the same class as 192.x.x.x or 10.x.x.x - they aren't > routa

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Joe User
Hello Soren, Thursday, October 2, 2008, 8:10:02 PM, you wrote: > IMHO, I think the key words for your considerations may be 'there > will be sensitive data accessed', and precautions taken according to that. > Of course, there's a lot of ways this can be done, and you say that > you already have

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Joe User
Hello Rick, Thursday, October 2, 2008, 12:04:55 PM, you wrote: > Two questions, Is your clock wrong? Two answers came in BEFORE your > question that way I sort messages here. > (Might be a time zone thing too/instead??) > Have you tried TeamViewer? > http://www.teamviewer.com/index.aspx My lo

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Joe User
Hello Scott, Thursday, October 2, 2008, 12:19:44 PM, you wrote: > Couldn't tell if message went through, apology if this is a dup. I got both of these. -- Regards, joeuser - Still looking for the 'any' key... "...now these points of data make a beautiful line..."

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Joe User
Hello Brian, Thursday, October 2, 2008, 11:12:08 AM, you wrote: > VNC over Hamachi works very well for me and it's secure: > http://lifehacker.com/software/vnc/geek-to-live--secure-vnc-with-hamachi-228862.php > Best part is it's multi-platform as clients for both VNC and Hamachi exist > on wind

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Scott Sipe
On Oct 2, 2008, at 10:10 PM, Soren wrote: In your shoes, I would not bet my dimes on VNC alone. If a security breach happens because of VNC (it does from time to time, and VNC scans/exploits are automatic!), your client might become 'slightly upset'. But, hey, it's your nuts ;) I'd go

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Brian Weeden
That's why I like the VNC through Hamachi option. Not only is it using a secure VPN tunnel, but when you log into Hamachi it gives you a 5.x.x ip address which is in the same class as 192.x.x.x or 10.x.x.x - they aren't routable on the larger internet. Combine that with confiuring VNC to only acc

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Soren
IMHO, I think the key words for your considerations may be 'there will be sensitive data accessed', and precautions taken according to that. Of course, there's a lot of ways this can be done, and you say that you already have an aplliance to take care of the matter - but here are my thoughts.

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Scott Sipe
Couldn't tell if message went through, apology if this is a dup. If it's XP, easy (and cheap!) answer is to use the builtin Remote Desktop--XP Pro supports 1 RDP client at a time. Clients available for Mac/PC/Linux. What I do is forward a random port on the outside (like 38201) to port 3389

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Rick Glazier
Two questions, Is your clock wrong? Two answers came in BEFORE your question that way I sort messages here. (Might be a time zone thing too/instead??) Have you tried TeamViewer? http://www.teamviewer.com/index.aspx (They might have to pay if they have too much activity.)

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Brian Weeden
VNC over Hamachi works very well for me and it's secure: http://lifehacker.com/software/vnc/geek-to-live--secure-vnc-with-hamachi-228862.php Best part is it's multi-platform as clients for both VNC and Hamachi exist on windows, linux, and OSX. Brian On Thu, Oct 2, 2008 at 2:00 PM, Joe User

Re: [H] Remote access VNC suggestions

2008-10-02 Thread Scott Sipe
If it's XP, easy (and cheap!) answer is to use the builtin Remote Desktop--XP Pro supports 1 RDP client at a time. Clients available for Mac/PC/Linux. What I do is forward a random port on the outside (like 38201) to port 3389 (Microsoft RDP protocol) on the computer on the inside. Then the

[H] Remote access VNC suggestions

2008-10-02 Thread Joe User
Hello, I have a client that has a multi million dollar company but they don't spend a lot on the IT side. They are now going to a vacation home within the states pretty regular and want remote access to the desktop in the office. I have an appliance in place that I will set up to allow access with