On Tue, Nov 22, 2011 at 05:39:54PM +0000, Dan Garton wrote: > I'm still in the process of developing an integrated remote desktop system > for a specialist user base, and am using TigerVNC to great effect so far. > > I would like to enable client connections from standard Win/Mac/Lin > desktops (using the Tiger VncViewer) and ALSO client connections from > mobile devices such as iOS / Android etc. > > The problem being, there are no free/open mobile (iOS/Android) VNC clients > which implement encryption - yet. > > If I run the Xvnc server with SecurityType=None (which I would need to do > to allow these mobile clients to connect), HOW can I make it more secure? > Obviously, the password is still sent encrypted (I believe) but the RFB > communication is open and in the clear (albeit using TightVNC encoding). > > Is this a big problem? > Can I make it better somehow, perhaps by creating a dynamic firewall rule > that only allows VNC client access from the IP address given during a > previous HTTPS authentication?
You will not get any security this way. Without encryption, all keyboard input is sent unencrypted. Please don't waste your time with such pseudo security solutions - you should better invest them into implementing encryption in mobile clients. Regards, Martin ------------------------------------------------------------------------------ All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-novd2d _______________________________________________ Tigervnc-devel mailing list Tigervnc-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/tigervnc-devel
