Hello again, Let me attempt to clarify some details here:
1) All gotomypc sessions are 128bit AES encrypted, from end to end. 2) A remote machine can be accessed only after you specify two distinct passwords. The first is your account password which gives you a list of all the computers you have in the account. This password is stored and authenticated by us. However accessing a machine requires a unique challange response password which is stored ONLY on the remote machine and is never seen by us. Of course all password exchanges are SSL encrypted as well. Even as a sysadmin for gotomypc, I CANNOT capture or replay any information shared between your PC and the remote viewer! Couple this with the highly compressed and encoded image data that is actually a part of the stream, and 3rd paty hacks become almost impossible. Also, a comparison with loudpc is unfair and utterly useless especially from a system administration point of view. LoudPC as opposed to gotomypc does NOT allow you to work on your desktop. It only makes available things like "email, contacts, calendar and files" through the web. Imagine a sysadmin wanting to run ssh to somewhere or a scp or maybe launch a control panel on a Win machine ... you cannot do that with loudpc. Both products offer a free trial period. Try them for yourself. ;) Regards, Ansh Kanwar Unix SysAdmin Expertcity Inc. -----Original Message----- From: PT-Sheik Abdulla [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July 23, 2002 6:14 PM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED]; Anshuman Kanwar Subject: Re: PCanywhere: security of it and operation over DSL/cable modem s Hi, I have used GoToMyPC around two years back for personal use. I appreciate the flexibility it gives, meanwhile, when it comes to corporate information, I dare to give access to my intranet to some third party, after I am putting lot of money and effort in protecting it. Another site offering similar services is www.loudpc.com Regards, Sheik ----- Original Message ----- From: "Anshuman Kanwar" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Wednesday, July 24, 2002 12:59 AM Subject: RE: PCanywhere: security of it and operation over DSL/cable modems > > Hello, > > I don't think I understand your concern about not using GoToMyPC for remote > administration. We ourselves use this product to manage a large number of > our machines internally. > > I agree that you are worried about access information being available to > others, but is that not the case with any other remote access product as > well? IMHO gotomypc has one of the best encryption and security schemes of > the lot, access control itself is double password protected. I urge you to > discuss your concerns offline with us before making a choice. > > Regards, > Ansh Kanwar > Unix SysAdmin > Expertcity Inc. > > > -----Original Message----- > From: Johan De Meersman [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, July 23, 2002 1:54 AM > To: [EMAIL PROTECTED] > Subject: Re: PCanywhere: security of it and operation over DSL/cable > modems > > > If I understand correctly, the workstation that needs to be accessed is > in an internal network. Hmm... You could probably forward ports through > your firewall, but I'm no wizard on that. Another solution is to use > VNC, by ssh-ing into your internal network, somewhere on a *nix box, and > then x-forwarding the *nix version of VNC that connects to the windows > VNC host. This solution requires that the remote controller isn't behind > a NAT, too, though. Another option is to use a web-based (java-applet) > VNC client on a webserver that has access to the internal net, but > that's less secure again. > > Google for VNC, it's some or other open license, it's got loads of > platforms, and I believe there are even a few secure implementations out > there. > > [EMAIL PROTECTED] wrote: > > > We have a workstation at the office that needs to allow a user remote > > access for running software on the workstation. I don't think a VPN > > will work because the user MUST run the software on this machine, as > > if he was seated at it. I'm looking at gotomypc.com and pcanywhere. > > I don't feel comfortable using gotomypc.com as this is proprietary > > company information and I don't trust someone else having the access > > information for the workstation that has the info on it. > > > > My questions are as follows: > > 1. Has anyone got experience with the security of PCanywhere running > > over a DSL/cable modem connection? What should I watch out for? From > > what I understand, I can use HTTPS as one of the options for the > > connection. Anyone know the encryption level? Are all parts of the > > transactions secured with encryption? > > 2. How does the software work if it's over a broadband connection? > > My internal IPs aren't valid for routing. How does the software know > > a connection is being initiated? > > 3. Any better solutions come to mind? I'd rather have a PITA setup > > that's secure than a simple one that's not. > > 4. What security measures should I implement on the users PC to make > > sure that it's secure as well? I won't have physical access to it but > > for the initial setup. > > > > I'll be interested in seeing if this gets posted at all due to the > > recent acquisition of securityfocus by Symantec. Can't bite the hand > > that feeds you, I guess. > > > > Many thanks for any help. Long time reader (well, several months at > > least), first time poster. > > IMPORTANT NOTICE: The Information contained and transmitted by this E-MAIL is proprietary to PACIFIC TECHNOLOGY PTE LTD and is intended for use only by the individual or entity to which it is addressed, and may contain information that is privileged, confidential or exempt from disclosure under applicable law. If you are not the intended recipient, or an agent of the intended recipient or it appears that this mail has been forwarded to you without proper authority you are notified that any use, distribution, printing, copying or dissemination of this information in any way or in any manner is strictly prohibited. Any views or opinions presented shall be solely those of the author and do not necessarily represent those of the Pacific Technology Pte Ltd, unless written by an authorized representative. If you have received this communication in error, please delete this mail & notify us immediately at [EMAIL PROTECTED]
