From: "Mike Jensen" <[EMAIL PROTECTED]>
One thing to keep in mind when using VNC is that even though the inital authentication may be secure, anything you type while controlling the computer is sent in plain text. So, if you were to connect to a windows machine, for example, then login to or unlock the screen on that machine , that password you type is sent across the network in the clear.
Or, you type in your password to check your e-mail on that computer; again, your password is sent in the clear.
I've always recommended tunneling the whole VNC session through some type of encryption method. (I prefer VPNs)
Actually, I don't think even the initial authentication is secure, you should definitely use some sort of encryption (ssh or vpn or both) Personally I'd say ssh is fine when you're connecting from one interior computer to another, but if you're going to connect from home or something I'd say tacking a vpn on top would be a good idea.
Chris Berry [EMAIL PROTECTED] Systems Administrator JM Associates
"Linux and I have a love/hate relationship. I hate its complexity until I figure out how something works, then I love its power."
_________________________________________________________________
Help STOP SPAM with the new MSN 8 and get 2 months FREE* http://join.msn.com/?page=features/junkmail
