VNCrack (just so you know it exists)
Bruce A. Mah
bmah "at" cisco.com
Mon, 19 Jun 2000 13:05:52 +0000
If memory serves me right, "Matthew C. Grab" wrote:
> How may people know about this? I use VNC over the net w/o SSH. I'll
> have to start installing all those extensions that people have been
> writing for VNC. Or Zebedee or something. I'm apparently not a pro
> either. I had a client who wanted an internally secure network. I gave
> them a switch and a firewall. I didn't think a switch would allow
> sniffing. I guess I was wrong.
>
> I don't think we'll ever be able to keep out the wrong people.
It's commonly accepted in the security community that you'll *never* be
able to keep out the wrong people with absolute certainty. You can just
raise the bar higher.
Don't panic. With a switch on your client's network, you raised the bar
compared to a hub. Maybe that's fine for the resources they were
willing to expend on the problem.
Bruce.
---------------------------------------------------------------------
To unsubscribe, send a message with the line: unsubscribe vnc-list
to majordomo "at" uk.research.att.com
See also: http://www.uk.research.att.com/vnc/intouch.html
---------------------------------------------------------------------