What about tight vnc its supposed to be more secure. http://www.tightvnc.com
-----Original Message----- From: Tom Stowell [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July 23, 2002 12:47 AM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: PCanywhere: security of it and operation over DSL/cable modems I use PC Anywhere 10.5 to control a WIN2k pro client over broadband (usually cable modem, but I've tried it over DSL); Its performance has been very good---vastly preferable to VNC over SSH or an stunnel SSL link---both in terms of refresh-latency and overall quality of display. Given the $$$, I would use it over VNC on all of my production Windows systems. The only problem I have with it is that DirectDraw applications will often not display properly---JVMs often use DirectDraw (including the one used to execute ConsoleOne for NetWare :-( ). [All remote-control apps are affected by this... and anyway, ConsoleOne runs under X on Linux now.) I found an entry in Symantec's KB which might help explain the security features further: http://service2.symantec.com/SUPPORT/pca.nsf/docid/2001013114592612 So far as security is concerned, PCAW seems to have a pretty good track record. Version 9.0 had an unchecked buffer (I'm presuming "arbitrary code"), which is about the only serious issue with it that came up in a brief search. My remote-controlled system is behind a firewall, on a non-routable IP. PCAW connections are port-forwarded from a system in the network DMZ, through a special exception rule in the firewall config, to the remote-controlled workstation. (PCAnywhere 10.5 uses ports 5631 and 5632.) best of luck, Tom Stowell >>> <[EMAIL PROTECTED]> 07/22/02 03:34PM >>> We have a workstation at the office that needs to allow a user remote access for running software on the workstation. I don't think a VPN will work because the user MUST run the software on this machine, as if he was seated at it. I'm looking at gotomypc.com and pcanywhere. I don't feel comfortable using gotomypc.com as this is proprietary company information and I don't trust someone else having the access information for the workstation that has the info on it. My questions are as follows: 1. Has anyone got experience with the security of PCanywhere running over a DSL/cable modem connection? What should I watch out for? From what I understand, I can use HTTPS as one of the options for the connection. Anyone know the encryption level? Are all parts of the transactions secured with encryption? 2. How does the software work if it's over a broadband connection? My internal IPs aren't valid for routing. How does the software know a connection is being initiated? 3. Any better solutions come to mind? I'd rather have a PITA setup that's secure than a simple one that's not. 4. What security measures should I implement on the users PC to make sure that it's secure as well? I won't have physical access to it but for the initial setup. I'll be interested in seeing if this gets posted at all due to the recent acquisition of securityfocus by Symantec. Can't bite the hand that feeds you, I guess. Many thanks for any help. Long time reader (well, several months at least), first time poster.
