Re: VNC is hackable (was VPN and VNC)

2002-08-30 Thread Jonathan Morton
Unless you have added encryption to it, the passwords are not encrypted. Please explain the discrepancy between the claim above and FAQ #55: I will freely admit that I have not studied the source code thoroughly. I can think of three possible explanations for the discrepancy. There may be

Re: [despammed] Re: VNC is hackable (was VPN and VNC)

2002-08-30 Thread Wes Groleau
3. Several people on VNC mailing lists don't know as much as they seem to know. I think most of the old timers know enough - VNC is a simple enough system that it's hard to forget. My comment was a sneaky way of admitting that I made the mistake of hearing people who sounded like they

Re: [despammed] VNC is hackable (was VPN and VNC)

2002-08-29 Thread W. Brian Blevins
PROTECTED] To: [EMAIL PROTECTED] Subject: Re: [despammed] VNC is hackable (was VPN and VNC) Reply-To: [EMAIL PROTECTED] On Wed, 28 Aug 2002, Wes Groleau wrote: Mike Miller wrote: difficult for someone to get into my box by a VNC exploit. Am I wrong? Wouldn't they have to sniff packets

Re: VNC is hackable

2002-08-29 Thread Richard Harris
Am I wrong? Wouldn't they have to sniff packets and decrypt to get the password? suppose it can be done, but I don't know that anyone is doing it. I don't know about packet sniffing, but the password can be comprised. You can read the WinVNC password from the registry and there is a

Re: VNC is hackable

2002-08-29 Thread Shing-Fat Fred Ma
Date: Wed, 28 Aug 2002 22:53:06 -0500 From: Wes Groleau Subject: Re: [despammed] VNC is hackable (was VPN and VNC) Unless you have added encryption to it, the passwords are not encrypted. But what the heck, neither are 90+% of the passwords on other services. Wes, I've read on various

RE: VNC is hackable

2002-08-29 Thread Steve Bostedor
[mailto:[EMAIL PROTECTED]] Sent: Thursday, August 29, 2002 8:18 AM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: VNC is hackable Am I wrong? Wouldn't they have to sniff packets and decrypt to get the password? suppose it can be done, but I don't know that anyone is doing it. I don't

Re: VNC is hackable (was VPN and VNC)

2002-08-29 Thread Wes Groleau
Unless you have added encryption to it, the passwords are not encrypted. Please explain the discrepancy between the claim above and FAQ #55: I will freely admit that I have not studied the source code thoroughly. I can think of three possible explanations for the discrepancy. There may be

Re: [despammed] VNC is hackable (was VPN and VNC)

2002-08-28 Thread Wes Groleau
difficult for someone to get into my box by a VNC exploit. Am I wrong? Wouldn't they have to sniff packets and decrypt to get the password? I suppose it can be done, but I don't know that anyone is doing it. Unless you have added encryption to it, the passwords are not encrypted. But what

Re: [despammed] VNC is hackable (was VPN and VNC)

2002-08-28 Thread Mike Miller
On Wed, 28 Aug 2002, Wes Groleau wrote: Mike Miller wrote: difficult for someone to get into my box by a VNC exploit. Am I wrong? Wouldn't they have to sniff packets and decrypt to get the password? I suppose it can be done, but I don't know that anyone is doing it. Unless you have