 |
 |
How safe/secure is a VNC connection?
|
|
|
|
|
Dedicated MacNNer
Join Date: Mar 2001
Status:
Offline
|
|
Hi,
I use Vine VNC Server a lot, along with Chicken of the Sea viewer, to remotely access my home Mac from work.
At the moment, if I think I'm going to need to access my home Mac I start Vine Server before I leave for work and when I've finished VNC'ing I remotely shut down the home Mac.
What I would ideally like to do is leave Vine's System Server running all the time that my Mac is on, so that I don't have to remember to launch it etc etc. But I'm worried about someone else being able to access my Mac, perhaps with their own VNC viewer or by more sinister methods. I have what I think is quite a strong password (it is random letters and numbers).
I have Leopards Firewall switched to Set access for specific applications and have also enabled Stealth Mode. I think the firewall in my D-Link 634 router is switched on (never been 100% certain). In the router set-up I've configured VNC in Virtual Server for Always access.
If anyone has any advice or guidance, it would be greatly appreciated.
As always, many thanks,
Matthew
|
|
Early 2008 Mac Pro (8 x 2.8), original Core Duo 2.0GHz MacBook Pro
|
| |
|
|
|
|
|
|
|
Posting Junkie
Join Date: Oct 2005
Location: Houston, TX
Status:
Offline
|
|
It's not. You should tunnel it over ssh.
|
|
|
| |
|
|
|
|
|
|
|
Mac Elite
Join Date: May 2001
Location: Vancouver
Status:
Offline
|
|
About to say the same thing; tunneled over an SSH connection, it's fine. Otherwise...
|
|
|
| |
|
|
|
|
|
|
|
Clinically Insane
Join Date: Jun 2001
Location: planning a comeback !
Status:
Offline
|
|
I stopped using VNC once LogMeIn became available for Macs. Encrypted, no firewall issues, far less hassles.
-t
|
|
|
| |
|
|
|
|
|
|
|
Dedicated MacNNer
Join Date: Mar 2001
Status:
Offline
|
|
Thanks for all the replies.
I'll have to check out LogMeIn.
But in the meantime, how do I make a SSH tunnel? I'm guessing not by using a SSHovel 
If anyone could take a moment to help with this, I'd really appreciate!
Thanks again,
Matthew
|
|
Early 2008 Mac Pro (8 x 2.8), original Core Duo 2.0GHz MacBook Pro
|
| |
|
|
|
|
|
|
|
Clinically Insane
Join Date: Jun 2001
Location: planning a comeback !
Status:
Offline
|
|
Matthew,
SSH tunnels ae not rocket science, but they are also not trivial.
After much time, I got them running back in the day, but I wouldn't know how to do it right of the bat.
I'd strongly urge you to check out LogMeIn. It will make your life so much easier, and it is cross-platform (Mac and PC).
-t
|
|
|
| |
|
|
|
|
|
|
|
Moderator  Join Date: Apr 2000
Location: Gothenburg, Sweden
Status:
Offline
|
|
To make a tunnel from the terminal, use the syntax:
ssh -L 1234:targethost.com:5678 user@tunnelhost.com
tunnelhost.com is the computer you log on to. You make the tunnel between your computer and that one. targethost.com is the computer you ultimately want to connect to. It can be the same as tunnelhost.com - if it is not, the connection is only encrypted between you and tunnelhost, but unencrypted between tunnelhost and targethost.
1234 is the portnumber to listen on on your computer - should be bigger than 1024. 5678 is the portnumber you connect to on targethost.com. For VNC, that number should be 5900. Once the tunnel is open, use your VNC client to connect to localhost:1234 and work as usual.
|
|
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
 
|
|
|
Forum Rules
|
|
|
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
|
HTML code is Off
|
|
|
|
|
|
|
|
|
|
|
|
|
Top
