VNC and Security
Bruce A. Mah
bmah "at" CA.Sandia.GOV
Tue, 08 Feb 2000 16:52:21 +0000
--==_Exmh_1968478075P
Content-Type: text/plain; charset=us-ascii
If memory serves me right, Phil Webster wrote:
> The systems at the non-profit organization are all vulnerable to a
> dictionary attack: user names and passwords are alpha (not numeric), and
> generally names: Mary, Tim, Ron.
>
> The system administrator claims that VNC is a security risk in this
> environment. Your comment?
My comment is that if your passwords are all vulnerable to dictionary
attacks, you already have the potential for some serious security
problems with or without VNC.
Bruce.
--==_Exmh_1968478075P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.0i for non-commercial use
MessageID: 5m5ruba1JBlSG4MSV3tub/b5zrsfowNX
iQA/AwUBOKBI29jKMXFboFLDEQKIvwCg6YtoJiic6miM4goLoMfExmyxUMYAoI6I
zIhU6cDFda3kGfVNQf7pBAip
=JyTJ
-----END PGP SIGNATURE-----
--==_Exmh_1968478075P--
---------------------------------------------------------------------
To unsubscribe, send a message with the line: unsubscribe vnc-list
to majordomo "at" uk.research.att.com
See also: http://www.uk.research.att.com/vnc/intouch.html
---------------------------------------------------------------------