Hans Ekbrand wrote:
>On Thu, Apr 25, 2002 at 10:54:49AM -0400, Anthony Dean wrote:
>
>>Hans Ekbrand wrote:
>>
>>>XDMCP is insecure by nature since it cannot be tunneled over
>>>SSH. As I understand it you could use VNC instead, which can be
>>>tunneled over SSH.
>>>
>>XDMCP is only used for querying possible hosts, which VNC just doesn't
>>do. There's no problem tunneling X, so I can't see what VNC would gain.
>>
>
>My experience with VNC is limited to running a VNC viewer on a Linux
>box to get a Windows98 (i.e. single-user OS) login prompt and desktop
>in a window in my X session. From what I have read on VNC, I think you
>are wrong.
>
>Consider a LTSP-terminal running an X server and a VNC viewer locally.
>That VNC viewer connects to XVNC server running at a LTSP server. That
>way the user gets a login prompt, but XDMCP is never used.
>
>XDMCP uses, AFAIK, passwords in clear text, while VNC does not send
>the password over the network. So that is one thing you gain with VNC.
>
I guess I wasn't clear. XDMCP is used for a lot more than just the
simpy authenticating with one remote host. XDMCP broadcasts allow for
pretty "Chooser" screen where you can select among multiple servers;
it's the broadcasts that are insecure (by nature), and they are a
feature that VNC doesn't support. When you invoke vnc you give it
exactly one server... it can't generate a list.
My point was that VNC just isn't comparable to XDMCP. They are designed
to do different things.
>
>
>To SSH-tunnel the VNC connection is not what I would do, since
>tunneling over SSH requires ssh running locally, and if you have that,
>you could just as well start the window-manager of choice over the SSH
>tunnel. There will be no fancy login prompt though.
>
Almost exactly my thoughts, only it is possible to get a pretty GUI
login over a ssh tunnel without using VNC.
Anthony
_____________________________________________________________________
Ltsp-discuss mailing list. To un-subscribe, or change prefs, goto:
https://lists.sourceforge.net/lists/listinfo/ltsp-discuss
For additional LTSP help, try #ltsp channel on irc.openprojects.net
