[Tigervnc-devel] Security types on server
Is there a good reason why only VncAuth and TLSVnc are enabled on the server by default? Would it be reasonable to enable the other secure types as well? DRC -- Free Software Download: Index, Search Analyze Logs and other IT data in Real-Time with Splunk. Collect, index and harness all the fast moving IT data generated by your applications, servers and devices whether physical, virtual or in the cloud. Deliver compliance at lower cost and gain new business insights. http://p.sf.net/sfu/splunk-dev2dev ___ Tigervnc-devel mailing list Tigervnc-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/tigervnc-devel
Re: [Tigervnc-devel] Security types on server
On Tue, Mar 01, 2011 at 08:53:27PM -0600, DRC wrote: Is there a good reason why only VncAuth and TLSVnc are enabled on the server by default? Would it be reasonable to enable the other secure types as well? X509* make no sense without specifing certificates. *None and Plain should not be enable by default because of security issues. *Plain require some additional configuration, as most users probably only want to authentificate as themself. Regards, Martin Kögler -- Free Software Download: Index, Search Analyze Logs and other IT data in Real-Time with Splunk. Collect, index and harness all the fast moving IT data generated by your applications, servers and devices whether physical, virtual or in the cloud. Deliver compliance at lower cost and gain new business insights. http://p.sf.net/sfu/splunk-dev2dev ___ Tigervnc-devel mailing list Tigervnc-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/tigervnc-devel
Re: [Tigervnc-devel] Security types on server
OK, that makes sense. Thanks. On 3/2/11 4:41 PM, Martin Koegler wrote: On Tue, Mar 01, 2011 at 08:53:27PM -0600, DRC wrote: Is there a good reason why only VncAuth and TLSVnc are enabled on the server by default? Would it be reasonable to enable the other secure types as well? X509* make no sense without specifing certificates. *None and Plain should not be enable by default because of security issues. *Plain require some additional configuration, as most users probably only want to authentificate as themself. -- Free Software Download: Index, Search Analyze Logs and other IT data in Real-Time with Splunk. Collect, index and harness all the fast moving IT data generated by your applications, servers and devices whether physical, virtual or in the cloud. Deliver compliance at lower cost and gain new business insights. http://p.sf.net/sfu/splunk-dev2dev ___ Tigervnc-devel mailing list Tigervnc-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/tigervnc-devel
