[12237] in bugtraq
Re: Security of "Virtual Network Computer"
daemon@ATHENA.MIT.EDU (Dan Foster)
Wed Oct 13 20:48:37 1999
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Message-Id: <199910130321.XAA15690@frontiernet.net>
Date: Tue, 12 Oct 1999 23:21:47 -0400
Reply-To: Dan Foster <dsf@FRONTIERNET.NET>
From: Dan Foster <dsf@FRONTIERNET.NET>
X-To: mikael.olsson@ENTERNET.SE
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <3802E898.47D1A7F3@enternet.se> from Mikael Olsson at "Oct 12,
99 09:51:52 am"
Hot Diggety! On a bright and sunny day, Mikael Olsson was rumored to have said..
>
> "How secure is VNC?" or
[...snip...]
> If you need to run VNC over an untrusted network: tunnel it through
> something More Secure(tm) such as SSH or IPSec.
There is already a SSH-ified VNC client available.
http://www.mindbright.com/english/technology/products/mindvnc.html
This (and its companion products, MindTunnel and MindTerm) is really more of a
proof of concept example... but is there, along with source code under the
GNU General Public License (GPL). (Side note: it uses RSA algorithms without
a corresponding RSA license, so you might want to avoid it if this would
cause you problems.)
-Dan Foster
Frontier Internet Administration Team
Frontier Corporation, A Global Crossing Company
