 |
 |
What's the most secure configuration for Remote Access from a PC to OS X ?
|
|
|
|
|
Fresh-Faced Recruit
Join Date: Sep 2000
Status:
Offline
|
|
Hi all,
I am hoping to set up my Mac and AirPort Extreme so I can connect to it from my office that is running a Windows machine. Currently the AirPort network is closed and I have set it up with WEP passwords. I can connect between my iMac and iBook using VNC which works fairly well although a bit slow at times; but, hey, it's free.
What would you all recommend as the best way and most secure method to set up my Network so I can remotely access it from a Windows machine at my office?
Thanks for any help.
Ed
|
|
|
| |
|
|
|
|
|
|
|
Professional Poster
Join Date: Mar 2002
Location: Smallish town in Ohio
Status:
Offline
|
|
Just use VNC and a good alpha-numerical password. It's a tried and true protocol. Open up the necessary port on the Airport firewall to let traffic pass through to your VNC Mac.
|
|
|
| |
|
|
|
|
|
|
|
Mac Elite
Join Date: May 2001
Location: Vancouver
Status:
Offline
|
|
If you really are concerned about security, tunnel VNC over SSH to properly encrypt the traffic.
|
|
|
| |
|
|
|
|
|
|
|
Fresh-Faced Recruit
Join Date: Sep 2000
Status:
Offline
|
|
Thanks all.
I assume I would need to use Port Forwarding since the Airport is currently acting as a firewall and the IP Address of my Macs are using 10.0.1.0?
Regarding using the tunnel, what would be the best way to configure VNC through the tunnel?
Thanks for everyone's help.
Ed
|
|
|
| |
|
|
|
|
|
|
|
Administrator  Join Date: Apr 2001
Location: San Antonio TX USA
Status:
Offline
|
|
Honestly, if you're interested in security, ditch WEP and go with WPA first!
|
|
Glenn -----
OTR/L, MOT, Tx
|
| |
|
|
|
|
|
|
|
Senior User
Join Date: Jul 2003
Location: Asia
Status:
Offline
|
|
|
|
|
|
| |
|
|
|
|
|
|
|
Clinically Insane
Join Date: Mar 2001
Location: yes
Status:
Offline
|
|
Originally Posted by eyost 
Thanks all.
I assume I would need to use Port Forwarding since the Airport is currently acting as a firewall and the IP Address of my Macs are using 10.0.1.0?
Regarding using the tunnel, what would be the best way to configure VNC through the tunnel?
Thanks for everyone's help.
Ed
I don't agree with the advice that suggested tunneling the entire connection. Once you have authenticated, the information transmitted is simply "move the mouse pointer here and click" - there is nothing to secure, your data is not being transferred over the connection, just screenshots basically, and it would be extremely difficult to pick apart the useful screenshots out of the entire data stream. VNC passwords are hashed, so your password is not sent in the clear.
If you really want security, what I'd recommend doing is setting up public/private SSH keys with a passphrase. You can use SSH Keychain (which is a GUI for ssh-agent) so that you don't have to type in your passphrase each time you connect. Once you are able to SSH to your machine, I would manually startup your VNC server whenever you want to connect, and then close it down when you are done. However, most people just leave their VNC server running, which is probably fine.
You should probably learn a lot of command line tricks so that you don't have to use VNC though, because it can be slow over a WAN, and many times not even necessary.
What sorts of things do you need to be able to do remotely?
|
|
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
 
|
|
|
Forum Rules
|
|
|
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
|
HTML code is Off
|
|
|
|
|
|
|
|
|
|
|
|
|
Top
