encrypted app inside encrypted tunnel.... why?

Wayne Bond wbond "at" cisco.com
Tue Apr 26 03:17:00 2005 

Erik Soderquist wrote:
> I've a question... isn't the point of connecting via a vpn so you don't
> have to be concerned about the security of individual apps since the vpn
> connection itself is supposed to be secure? I very often see references
> to using an encrypted app with a vpn link, and similarly so references
> to not caring about the security of the app until *after* it is going to
> be used in the encrypted vpn tunnel?
> 
> can someone please explain this seemingly backwards logic?
> 

It could be that the users/devices that share the VPN are untrustworthy 
amongst themselves  :-)   eg, you don't want your colleague that shares the 
same already-encrypted VPN, whereever they may reside on it, to eavesdrop 
on an internal unencrypted data stream.  Hence a secure VNC session within 
an encrypted VPN.  (does this make any sense?)

-W


> -----Original Message-----
> From: vnc-list-admin "at" realvnc.com [mailto:vnc-list-admin "at" realvnc.com] On
> Behalf Of geoff "at" 3lanes.freeserve.co.uk
> Sent: Sunday, April 03, 2005 05:33
> To: vnc-list "at" realvnc.com
> Subject: LocalHost
> 
> I'm having a few problems setting up RealVNC to work on a local network,
> strangely 
> TightVNC worked immediately but I prefer the security settings on
> RealVNC as I am 
> looking to eventually connect via a VPN connection.
> 
> Is there a way I can test the set up using localhost or 127.0.0.1, I did
> try it but just got 
> window after window after window appearing, which is understandable.
> 
> At the moment I have not got two computers on my adsl/router set up to
> test it with.
> 
> Geoff Lane
> Welwyn Hatfield Computer Club
> www.whcc.co.uk
> _______________________________________________
> VNC-List mailing list
> VNC-List "at" realvnc.com
> To remove yourself from the list visit:
> http://www.realvnc.com/mailman/listinfo/vnc-list
> _______________________________________________
> VNC-List mailing list
> VNC-List "at" realvnc.com
> To remove yourself from the list visit:
> http://www.realvnc.com/mailman/listinfo/vnc-list