how do i use Tight VNC in my network so that its password is not easily sniffed by anyone using cain(or any other sniffer) on the network???
Printable View
how do i use Tight VNC in my network so that its password is not easily sniffed by anyone using cain(or any other sniffer) on the network???
By tunneling VNC over SSH?
Is this a linix box, if so you can use freenx instead of vnc. This is a terminal server that uses port 22 over ssh. It is fast and from what I see is secure.
@sidice
how do i tunnel vnc??? can ya plz describe it? or prob write a tutorial :-D
@gogli apparatus(wonder y u kept that name)
m usin a windowz box
heres one link that shows you how to use vnc over an ssh tunnel.
http://pigtail.net/LRP/vnc/
Numberous tutorials already exist.Quote:
how do i tunnel vnc??? can ya plz describe it? or prob write a tutorial :-D
Seriously... learn to use a search engine. nobody is going to spoon feed you. Nobody wants to help anyone who doesn't want to help themselves. You're just being lazy by not searching.
If you have a specific question or concern with the setup or you're confused... then ask. But, at least try for yourself first.
One word: UltraVNC
@phishphreek
chill dude... and gand mara
You were given several suggestions that will work so instead of trying them and saying thank you (in English), you give phissy are hard time?Quote:
Bad manners.
:rolleyes:
Greeting's
For all those who want to know "gand mara" is a slang in Hindi, and I', sure the looser must have laughed his @ss off after writting it but he doesnt know that you can abuse him in more then a billion ways in English and he will never even come to know.
Looser.
Greeting's
I'm posting this in a new post and not editing the old one because I want moderator to take notice of this (ill PM if so required), this person should be banned (not to mention he's already close to it) because of openly abusing a member (senior) for no reason at all (except proving that his existence is worthless).
I know... I looked it up. I sent him/her a PM that they ignored...
Whatever... Not like I really care about someone who can't help themselves?Quote:
...
Seriously. Grow up. You think your insults hurt/bother me? At least do it in my own language.
I know I'm a better person in the end because I can help myself.
I say, ByTeWrangler old chap,
I think that you might have inadvertently achieved your objective? I may well be mistaken, but I think that the language is Punjabi? Now, to suggest to a Sikh that he is a Hindu would not be the most complimentary thing I could think of :D
Now, back to the topic........................I know nothing about this area so am naturally interested.
Elfguy specifically mentioned "Cain" which is a password cracker, as far as I know? That implies that the password is encrypted in some shape or form?
Nobody has mentioned length and strength of password...............why not?............as I said I am totally ignorant in this area :)
If you "pack" a password by adding something like 1234567890 and ABCDEFGHIJKL at the front and back, you will make it pretty difficult to crack, even if the encryption algorithm is weak?
Couple that with changing the "core" password on a regular basis, and I would expect you to be safe from all but the best funded intelligence agencies.
Your comments will be much appreciated (preferably in English :D )
One more word: UltraVNC.
lol.
Take a look at this sourceforge project. They use an RC4 (reasonable stream cipher) shared key for encryption. Obviously, each person will need a copy of this key so before long scaling will become an issue.
The encryption module is easily added and thus far I have found only two issues with it.
a) With encryption enabled, a Nessus scan will kill a live remote control session. Once I narrow down the plugin that does it I will let you know.
b) For reasons unknown, the session bogs down then magically speeds back up again. This doesn't happen often but whenever iit does, I'm always in the middle of a rush job.
--TH13
PS
The dumdum will be banned shortly by the community. No mod action will be needed.