vnc-list-digest V1 #764
Jared Smolens
jsmolens+ "at" andrew.cmu.edu
Wed, 21 Jun 2000 16:46:57 +0000
Excerpts from VNC: 21-Jun-100 Re: vnc-list-digest V1 #764 by Cybertime
Support "at" cybert
> > Has anyone seen a patch to VNC to make it authenticate against a NT domain
> > controller?
>
> Interesting idea, but would that be very safe? VNC gives very open access
> to the computer. If anyone inside an NT domain could log onto one of our
> servers, it would be a nightmare of a security hole.
I had written a patch to do so a while back (3.3.3r2, I believe). One
option that you could use is to make it only allow members of a domain
group named VNC_USERS to connect, so it doesn't have to be *that* wide
open. :) The drawback is that I haven't implemented any data
mangling/encryption, so your username/domain/password are sent to the
WinVNC server in cleartext.
The files (binaries and sources for a modified Win32 server and viewer -
native and Java) are available at:
http://www.andrew.cmu.edu/~jsmolens/vnc/vnc_ntauth/
If you find any problems or have suggestions for the patch, please let
me know. It's been a while since I've toyed around with it.
Cheers,
JCSmolens
@@@
(o o)
,.,.,.,.,.,.,.,.,.,.,.,.,.,oOOo ( ) oOOo,.,.,.,.,.,.,.,.,.,.,.,.,.,.,.,
-----------Jared-C-Smolens----------jsmolens+ "at" andrew.cmu.edu-----------
---------412-862-2154---------http://www.rabidpenguin.org--------------
---Electrical-and-Computer-Engineering----Carnegie-Mellon-University---
---------------------------------------------------------------------
To unsubscribe, send a message with the line: unsubscribe vnc-list
to majordomo "at" uk.research.att.com
See also: http://www.uk.research.att.com/vnc/intouch.html
---------------------------------------------------------------------