ssh and winvnc

Jerry Coker Sun, 28 Jan 2001 21:13:06 -0800
> Date: Thu, 25 Jan 2001 15:19:12 -0700
> From: "Joseph A. Knapka" <[EMAIL PROTECTED]>
> Subject: Re: Stream encryption - is it time?
> 
> SSH does its level best never to transmit any data in the clear.
> Even the initial authentication exchange is encrypted. The attack
> against VNC hinges on the fact that the server transmits the
> challenge string in the clear, which gives the man in the middle
> some data he can change without upsetting the client or server.
> 
> - -- Joe Knapka

I think using SSH is the best solution for feeling comfortable about
rolling out VNC.  My problem right now is understanding  precisely how to
do this within my dept. with the existing OS's we have/use.

I've read about CYGWIN and Zebedee, and I may very well go that route
since we're currently a Win9x shop going to Win2k Pro in the long term.
However, I'd prefer to use SSH on a Linux server that I am currently
running SSHD, for tunnelling VNC, *if* I could figure out how to do so.
I've been staring at the 'More advanced use' graphic at:
 
http://www.uk.research.att.com/vnc/sshvnc.html

and trying to figure out how I can do the following:

machine windows1:
Runs vncviewer connecting to linux1, actually sees display of windows2

->

machine linux1:
Runs SSHD

->

machine windows2:
Runs WinVNC server as display 0

Can the above be done?  If so, does it retain both a 'secure local' and
'secure remote' network?   My example above eliminates the linux machine
running ssh and forwarding a port to another linux machine (given in
the example at the url above).  So I suspect that *my* example can't be
done, thus I'd be forced to build another Linux box.

Sorry for the ignorance.  I currently tunnell ftp to my Linux box running
SSHD, from workstations running an ftp client, but that is just a 2 way
connection.  Trying to figure out how to run WinVNC servers on Win32
machines between a Linux box (running SSHD) and vncviewer clients on
Win32 machines is proving to be a bit more complicated than I expected :)
TIA.

***********
Jerry Coker
Computer Network Support
Career Services Center
University of Georgia
---------------------------------------------------------------------
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
---------------------------------------------------------------------
ssh and winvnc

Reply via email to
