Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: RealVNC / Windows 2000 Security

from [Jonathan Glass] Network Security [Permanent Link]
Subject: Re: RealVNC / Windows 2000 Security
Date: Thu, 17 Feb 2005 23:52:03 -0500 
You may want to consider using UltraVNC, which has better security
features than RealVNC.  Another option is to use SSH (cygwin) on the
Windows hosts, bind VNC to LOCALHOST only, and use ssh port forwarding
to get to the VNC server.

Either of these methods would make your remote access more secure.

Unfortunately, I don't have the original email, so if I'm answering
the wrong question, I apologize.

Jonathan G.


On Wed, 16 Feb 2005 10:31:05 -0700, Jordan Dohms
<jordan.dohms@net-linx.com> wrote:

Hi Adam,


My software company currently uses two specific machines
(both running Windows 2000 Pro) as "VNC" machines.
The purpose for these machines is to display two of our software
products, and allow remote login to


Maybe it's not feasible in your situation, and it also may not solve the
entire problem, but an option you could look at is, disabling outbound
Internet access (on your firewall) from that machine's IP, to all ports
except VNC.  That should prevent much of the downloading of adware and such.

Just a thought.

Jordan





-- 
Jonathan Glass
678-768-1445
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Simple Scan, Brandon Enright
Next by Date:  Re: Windows 2003 SBS for web server?, Jonathan Glass
Previous by Thread:  Re: RealVNC / Windows 2000 Security, Jordan Dohms
Next by Thread:  Upcomming test with CSE (Canadain Security Establishment)... Has anybody ever done the Computer Analyst test before?, marcus peddle
Indexes:  [Date] [Thread] [Top] [All Lists]