[12236] in bugtraq
Re: Security of "Virtual Network Computer"
daemon@ATHENA.MIT.EDU (Cameron Simpson)
Wed Oct 13 20:40:36 1999
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Message-Id: <19991013123919.D27903@green.research.canon.com.au>
Date: Wed, 13 Oct 1999 12:39:19 +1000
Reply-To: cs@zip.com.au
From: Cameron Simpson <cameron@RESEARCH.CANON.COM.AU>
X-To: Mikael Olsson <mikael.olsson@ENTERNET.SE>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <3802E898.47D1A7F3@enternet.se>
On Tue, Oct 12, 1999 at 09:51:52AM +0200, Mikael Olsson wrote:
| Originally a reply to a question on the firewalls list, I thought
| it wise to repost my message to the Bugtraq list to alert a
| wider audience - especially since many of the replies were
| "I've used it across the Internet for ages with no problems"
| "How secure is VNC?" or
| "Is it OK to run VNC over the Internet?"
[...]
| Executive summary:
| Would you allow vanilla telnet to your protected machines?
| Probably not.
| If you need to run VNC over an untrusted network: tunnel it through
| something More Secure(tm) such as SSH or IPSec.
For those interested, I wrote a detailed intro to setting vnc-over-ssh up
for a linux list, and archived it at:
http://www.zip.com.au/~cs/answers/vnc-thru-firewall-via-ssh.txt
You could add the URL to whatever FAQs you may want.
--
Cameron Simpson, DoD#743 cs@zip.com.au http://www.zip.com.au/~cs/
Is it true, Sen. Bedfellow, that your wife rides with bikers? - Milo Bloom
