VNC-List digest, Vol 1 #642 - 7 msgs
Thu Sep 11 16:45:01 2003
> Message: 2
> From: "Femina S. Jaffer" <email@example.com>
> To: "VNC Distribution List" <firstname.lastname@example.org>
> Subject: Cannot establish connection or setup
> Date: Wed, 10 Sep 2003 10:04:07 -0600
> I have installed the vnc server and viewer on my host machine at work (WIN
> 2K), I have also installed both server and viewer on my desktop at work.
> However, when I try to launch the viewer from work to connect to my host
> home, I get the message "failed connection". I have the server running at
> home too. Please help as I am a novice to all this?
Probably a firewall.. Does your company have a firewall setup that only
web and email through? Maybe you can get VNC server to run on a web port
at home and connect to it that way.. Also you could try tunneling through
which would require a SSH server on your home machine.. I don't know if
this is possible with
windows, I've done it with linux though.. The basics of tunneling are:
You setup a SSH server on your home machine, or maybe this can be done with
a SSH client?
Setup login and password on home machine..
Login from work with a SSH client (like putty.exe)..
Create a tunnel:
Under Putty.exe under Forwarded ports Put in something like
L5901 myhomecomputer.someisp.com 5902
Where on your local machine (at work) port 5901 is assigned to port 5902 on
remote machine (your home machine).. When you login with putty.exe to your
with putty.exe it will automatically setup the tunnel when you login, and
aim your VNC client at work at port 5901 (I think in VNC it is a address,
like "188.8.131.52:1" = 184.108.40.206:5901, or "localhost:5901" ),
it will connect to the VNC server on yoru home machine at port 5902.. Of
course you must run the VNC server and the SSH
server on the same machine.. And at home you would run zonealarm to block
all ports except for the
one SSH uses, as acting as a server, so that only hackers can try to hack
the SSH port..
You should be able to get your sysadmins at work to allow you to connect
out over SSH.. They probably
already have ti setup that way anyhow.. The more open ports the more likely
hackers can get in, that's
why there are firewalls.. TCP/IP has about 2^16 or abotu 65536 ports for
every IP address (imagine if
everyone in your company had installed software from the net, some software
might have backdoors
through which hackers can get through, spyware is capable of this.. Then if
there was no firewall, they
could hack into your colleagues machines by doing port scans to find
use a program that hacks through the vulnerabilities or finds the
backdoors.. All because your colleagues
installed something like a screenblanker..
That would be the best way to connect out, and the most secure..
Anyone know of a way to get an SSH server on Windows?
> Message: 3
> From: "Debbie Davis" <email@example.com>
> To: <VNC-List@realvnc.com>
> Subject: IP problem
> Date: Wed, 10 Sep 2003 13:09:55 -0500
> I am wanting to vnc to my pc at work, but I don't know how this would
> Since we only have one external IP address on our server and then all the
> other machines in the office have internal #s assigned by dhcp. My
> is how do I get to one of the machines with an internal ip? Do you vnc to
> the server and somehow hop over to another machine or what?
DHCP as I've used it, from DSL they assign temporary IP addresses to
the connections, which you drop connection the IP address goes back to a
pool of addresses.. I've run a web server from a DSL line with DHCP.
What some peopel do, or can do, is get some software that everytime your
drops from the ISP, reconnects and establishes a new IP, then posts this IP
address to a webserver somewhere on the net.. Then you would just
find this web address at home and connect to your machine from home..
The address would hop about because with every connect you get a differnt
address.. I know software exists for this.. I've never used it.. But I have
from a machine with DHCP.. I figure you could have a program that just
registers with a
web page every minute to update the current IP address, coul probably be
hacked in Perl..
And run a webserver localhost on your work machine, and try connecting to
that server once you
find the IP address..
I mentioned previously a way to tunnel through SSH.. This would be done the
if you were wanting to connect from home to work, but the last guy wanted
it in the reverse
direction.. Check the VNC websites about tunneling..
> Message: 5
> From: Beau.Haefke@fedgroup.com
> Date: Wed, 10 Sep 2003 16:58:52 -0500
> To: firstname.lastname@example.org
> Subject: OnTarget 1.1
> Anybody know anything about the Trojan OnTarget (OnTarget 1.1)? One of
the computers on our network just detected it attached to the TightVNC.exe
file and I'm trying to figure out if it was a false positive or if we
really have an intruder. As best as I can determine, the program uses some
sort of MSN Messenger exploit to install a program which includes the VNC
program. After tightvnc.exe was detected a number of times on the system,
I did a complete scan of the computer using our Antivirus software and now
it's coming up with nothing, so I don't know if it was our Antivirus
misreading the VNC program or not. The program seems to be originating
> from a Spanish site and I can't read Spanish. Any help appreciated.
Sounds evil.. Probably as part of a rootkit.. Rootkits are packages that
contain programs that replace some of your existing system commands
with commands that hide the existence of the hacker in yoru computer and of
their rootkits.. You probably just found one of their tools??
Virus killers only kill viruses not reliable programs that can be used to
hack with.. I wonder if virus killers guarad against rootkits?
Maybe there is software to guarad against this, if there are I would like
to get some.. I've been suspicious of my own machine..
It went down the other day because it claimed my RPC subsystem had failed
for no reason (and I did have zonealarm off, yow!!)..
DISCLAIMER: I haven't used VNC for about 4 months, so take my words with a
grain of salt and check the VNC website
for more information.. Especially the part on tunneling.. I came on this
list because of an idea had had about using VNC to
create flash based tutorials by implementing VNC2SWF into the VNC
client/server system.. I am not knowledgable
about this software to do this, so I'm asking for others to consider to
implement this.. You can find the source code for the
sofwtare on google.