It depends. Are the Linux box and the Windows box that you want to connect
to on the same network?
Let's look at it this way:
Machine Windows 1: 192.168.0.1
Machine Linux 1: 10.10.10.1
Machine Windows 2: 10.10.10.2
You run ssh like:
ssh -L 5902:10.10.10.2:5900 [EMAIL PROTECTED]
Then, connect VNC to localhost:2.
Make sure that you have the AllowLoopback setting (as referenced in the
documentation) set to 1 on Windows 2.
For more information, see http://mike.erdelynet.com/sshvnc.asp
-ME
----- Original Message -----
From: "Jerry Coker" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, January 29, 2001 12:15 AM
Subject: ssh and winvnc
> > Date: Thu, 25 Jan 2001 15:19:12 -0700
> > From: "Joseph A. Knapka" <[EMAIL PROTECTED]>
> > Subject: Re: Stream encryption - is it time?
> >
> > SSH does its level best never to transmit any data in the clear.
> > Even the initial authentication exchange is encrypted. The attack
> > against VNC hinges on the fact that the server transmits the
> > challenge string in the clear, which gives the man in the middle
> > some data he can change without upsetting the client or server.
> >
> > - -- Joe Knapka
>
> I think using SSH is the best solution for feeling comfortable about
> rolling out VNC. My problem right now is understanding precisely how to
> do this within my dept. with the existing OS's we have/use.
>
> I've read about CYGWIN and Zebedee, and I may very well go that route
> since we're currently a Win9x shop going to Win2k Pro in the long term.
> However, I'd prefer to use SSH on a Linux server that I am currently
> running SSHD, for tunnelling VNC, *if* I could figure out how to do so.
> I've been staring at the 'More advanced use' graphic at:
>
> http://www.uk.research.att.com/vnc/sshvnc.html
>
> and trying to figure out how I can do the following:
>
> machine windows1:
> Runs vncviewer connecting to linux1, actually sees display of windows2
>
> ->
>
> machine linux1:
> Runs SSHD
>
> ->
>
> machine windows2:
> Runs WinVNC server as display 0
>
> Can the above be done? If so, does it retain both a 'secure local' and
> 'secure remote' network? My example above eliminates the linux machine
> running ssh and forwarding a port to another linux machine (given in
> the example at the url above). So I suspect that *my* example can't be
> done, thus I'd be forced to build another Linux box.
>
> Sorry for the ignorance. I currently tunnell ftp to my Linux box running
> SSHD, from workstations running an ftp client, but that is just a 2 way
> connection. Trying to figure out how to run WinVNC servers on Win32
> machines between a Linux box (running SSHD) and vncviewer clients on
> Win32 machines is proving to be a bit more complicated than I expected :)
> TIA.
>
> ***********
> Jerry Coker
> Computer Network Support
> Career Services Center
> University of Georgia
> ---------------------------------------------------------------------
> To unsubscribe, send a message with the line: unsubscribe vnc-list
> to [EMAIL PROTECTED]
> See also: http://www.uk.research.att.com/vnc/intouch.html
> ---------------------------------------------------------------------
---------------------------------------------------------------------
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
---------------------------------------------------------------------
