Concerns w/ VNC Abuse
Rene Skudstrup
Rene.Skudstrup "at" Skolekom.dk
Wed, 08 Mar 2000 16:25:23 +0000
>I recently purchased a book titled Hacking Exposed,
>which I highly recommend, published by Osborne and in
>it describes how VNC without the systray icon is being
>used as a "hacker tool." This concerns me because VNC
>is a great tool that is being abused by a few
>low-lifes. I would really hate to see VNC lumped in
>with the likes of Back Orifice, Sub-Seven and other
>hacker trojan programs. I understand that there is
>really nothing that can be done to curtail such
>abuses, but I just needed to rant. 'nuff said.
You're right.. It could be used as a hacker tool.
Only dffference I see about the programs mentioned here and VNC is
that VNC must be installed (as the others), and I see no way of this
happening without user intervention (You would have to run the entire setup
program on the remote computer to "hack" it.
Question is, maybe the best intervention for theese kind of attack would be
user education, to prevent users from blindly trust everyting they recieve
in email
regards
rene
---------------------------------------------------------------------
To unsubscribe, send a message with the line: unsubscribe vnc-list
to majordomo "at" uk.research.att.com
See also: http://www.uk.research.att.com/vnc/intouch.html
---------------------------------------------------------------------