VNC Viewer and Server, and port numbers/display numbers
Wed Dec 11 18:44:01 2002
Thanks for reply. I had looked at the link to using SSH but thought that only had to do with encrypting the traffic during VNC session, and not with making it harder for someone to hack a VNC server that's listening on the internet?
Having the SSH encryption is not a bad idea, though, I'll look further into it. But will it add a layer to stop someone with a VNC Viewer getting a response from my machine's VNC server? That's really what I want to block. I want the viewer to have to know more than just the display number in order to get a crack at my password.
Again, thank you for your reply and hint about SSH.
----- Original Message -----
From: "Bruce Douglas bedouglas-at-earthlink.net |realvnc.com vnc-list|" Cc: <firstname.lastname@example.org>
Sent: Wednesday, December 11, 2002 10:04 AM
Subject: RE: VNC Viewer and Server, and port numbers/display numbers
> new to vnc.. so bear with me....
> isn't this what SSH is supposed to address...
> -----Original Message-----
> From: email@example.com [mailto:firstname.lastname@example.org]
> Sent: Wednesday, December 11, 2002 9:53 AM
> To: email@example.com
> Subject: VNC Viewer and Server, and port numbers/display numbers
> I run PCAnywhere in something of a 'stealth' configuration, with encryptions
> and cryptic passwords, etc. to make it as difficult a possible for someone
> to hack my home PC while it is listening on the internet for my connection.
> Once in awhile PCAnywhere hangs and I can't get back in. That's where VNC
> is handy, because I can usually get in to my PC and fix whatever is wrong
> with the PCAnywhere host.
> I have VNC server listening on a non-standard and high port number, and also
> have a large display number configured. I have a very cryptic password as
> I feel like this is still a very insecure setup exposed to the net, because
> VNCViewer only needs to be told the display number, it doesn't have to be
> told the port number to connect to. The display numbers aren't very big
> numbers, so it wouldn't take a hacker long to loop through them all and find
> the one I'm using. Then crack my password and he is into my PC.
> Are there any plans to be able to configure VNCServer such that VNCViewer
> must also know the port number, in addition to the display number, before it
> can connect? That would help the security quite a bit I think.
> If there is a way to do this now, I would like to know. I've looked through
> the online documentation but did not see anything to prevent VNCViewer from
> connecting unless it knows the port number too.
> Sorry for a long email, thank you for your time.
> Sue Morton