VNC Registry Question

Wed Jan 8 13:40:01 2003

> when on one is logged on or Admin is logged on. Is there a work around
> for security issues like this? Mike

I've tried CACLing the registry section, but without read permissions - you =
can't 
log into the remote box. I think this is as the user read the password when =
you 
attempt to log in remotely.  On another note, I don't know how this affects =
a 
user sending their screen to you (as no password is involved then).

Ideally, you'd want the System account to make the check rather than via a 
user account. That way you could deny all users read on the password section=
, 
but still use VNC.

This is where NTLM authentication would be very useful, however not all VNC =

flavours support it. I can think of Tridia Pro (which is paid for), an old V=
NC 3.3.2 
NTLM release and Ultra (although Ultra is in beta and 1.4 - I think - always=
 has 
to have a VNC password set even if you plan to use NTLM).

Any developers listening?? :-)

Out of curiosity - how does linux handle authentication? Is it just an ini f=
ile 
buried somewhere or can you use PAM too?

Later,
Richard

---------------------------------
Richard Harris
Environment IT, NCC
Ext 4509
---------------------------------

"Service, price , quality: pick any two."

This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the system manager via NCC Help Desk (0115) 9772010.

This footnote also confirms that this email message has been swept
for the presence of computer viruses.

Nottinghamshire County Council Legal Disclaimer