Unless you have added encryption to it, the passwords are not encrypted.
Please explain the discrepancy between the claim above and FAQ #55:
I will freely admit that I have not studied the source code
thoroughly. I can think of three possible explanations for
the discrepancy. There may be
3. Several people on VNC mailing lists don't know
as much as they seem to know.
I think most of the old timers know enough - VNC is a simple enough
system that it's hard to forget.
My comment was a sneaky way of admitting that I made
the mistake of hearing people who sounded like they
PROTECTED]
To: [EMAIL PROTECTED]
Subject: Re: [despammed] VNC is hackable (was VPN and VNC)
Reply-To: [EMAIL PROTECTED]
On Wed, 28 Aug 2002, Wes Groleau wrote:
Mike Miller wrote:
difficult for someone to get into my box by a VNC exploit. Am I
wrong? Wouldn't they have to sniff packets
Am I wrong?
Wouldn't they have to sniff packets and decrypt to get the password?
suppose it can be done, but I don't know that anyone is doing it.
I don't know about packet sniffing, but the password can be comprised. You
can read the WinVNC password from the registry and there is a
Date: Wed, 28 Aug 2002 22:53:06 -0500
From: Wes Groleau
Subject: Re: [despammed] VNC is hackable (was VPN and VNC)
Unless you have added encryption to it, the passwords
are not encrypted. But what the heck, neither are 90+%
of the passwords on other services.
Wes,
I've read on various
[mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 29, 2002 8:18 AM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: Re: VNC is hackable
Am I wrong?
Wouldn't they have to sniff packets and decrypt to get the password?
suppose it can be done, but I don't know that anyone is doing it.
I don't
Unless you have added encryption to it, the passwords are not encrypted.
Please explain the discrepancy between the claim above and FAQ #55:
I will freely admit that I have not studied the source code
thoroughly. I can think of three possible explanations for
the discrepancy. There may be
difficult for someone to get into my box by a VNC exploit. Am I wrong?
Wouldn't they have to sniff packets and decrypt to get the password? I
suppose it can be done, but I don't know that anyone is doing it.
Unless you have added encryption to it, the passwords
are not encrypted. But what
On Wed, 28 Aug 2002, Wes Groleau wrote:
Mike Miller wrote:
difficult for someone to get into my box by a VNC exploit. Am I
wrong? Wouldn't they have to sniff packets and decrypt to get the
password? I suppose it can be done, but I don't know that anyone is
doing it.
Unless you have