Insecure VNC through corporate firewalls

John Roland Elliott John_Roland_Elliott "at" hotmail.com
Tue, 15 Jan 2002 15:50:34 +0000


According to Dave's original post, there's a web site
(http://people.we.mediaone.net/ddyer/znc/zvnc.html).
According to that web site, "Known bugs and deficiencies: vnc's -listen mode
is not supported "

----- Original Message -----
From: "Chuck Renner" <chuck "at" dataoncd.com>
To: <vnc-list "at" uk.research.att.com>
Sent: Tuesday, January 15, 2002 9:57 AM
Subject: RE: Insecure VNC through corporate firewalls


> Dave -
>
> Does your version of VNC support changing the outgoing port of WinVNC for
an
> "add new client" connection from 5500 to something else?
>
> - Chuck Renner
>
> -----Original Message-----
> From: owner-vnc-list "at" uk.research.att.com
> [mailto:owner-vnc-list "at" uk.research.att.com]On Behalf Of Andrew van der
> Stock
> Sent: Monday, January 14, 2002 9:59 PM
> To: vnc-list "at" uk.research.att.com
> Subject: RE: Insecure VNC through corporate firewalls
>
>
> Dave,
>
> Do you make it harder for the NT users to retrieve or set the password
> key from the registry? The password key should be System:FullControl,
> Administrators:Full Control (and that's it).
>
> Lots of boxes do not have local or remote registry permissions, allowing
> VNC to be hijacked from the local LAN.
>
> Andrew
>
> -----Original Message-----
> From: owner-vnc-list "at" uk.research.att.com
> [mailto:owner-vnc-list "at" uk.research.att.com] On Behalf Of Dave Dyer
> Sent: Tuesday, 15 January 2002 1:49 PM
> To: vnc-list "at" uk.research.att.com
> Subject: Insecure VNC through corporate firewalls
>
>
>   Just a reminder to those concerned about the inherent insecurity of
> VNC protocols ( and those who would recommend tunneling with SSH ) I've
> produced a version of VNCViewer and WinVNC which automatically
> use a secure connection.  I've got lots of users and no complaints:
>
>  http://people.we.mediaone.net/ddyer/znc/zvnc.html
> ---------------------------------------------------------------------
> To unsubscribe, mail majordomo "at" uk.research.att.com with the line:
> 'unsubscribe vnc-list' in the message BODY See also:
> http://www.uk.research.att.com/vnc/intouch.html
> ---------------------------------------------------------------------
> ---------------------------------------------------------------------
> To unsubscribe, mail majordomo "at" uk.research.att.com with the line:
> 'unsubscribe vnc-list' in the message BODY
> See also: http://www.uk.research.att.com/vnc/intouch.html
> ---------------------------------------------------------------------
> ---------------------------------------------------------------------
> To unsubscribe, mail majordomo "at" uk.research.att.com with the line:
> 'unsubscribe vnc-list' in the message BODY
> See also: http://www.uk.research.att.com/vnc/intouch.html
> ---------------------------------------------------------------------
---------------------------------------------------------------------
To unsubscribe, mail majordomo "at" uk.research.att.com with the line:
'unsubscribe vnc-list' in the message BODY
See also: http://www.uk.research.att.com/vnc/intouch.html
---------------------------------------------------------------------