On Fri, Aug 27, 2010 at 12:30:36PM -0500, DRC wrote: > Can you refresh my memory as to the fallback order of both the > encryption and auth options on the server end, as well as how a user > could configure the server to use only certain encrypt/auth options?
A server command line option determine the list of enabled security types. Using these, the admin can restrict to specific combinations (see below). Our current client preferes security types at the begining of the server parameter. > One other question-- does the user/password authentication use the Unix > Login Authentication security type from the TightVNC protocol? > (wondering specifically if it is cross-compatible with the Unix Login > Auth implementation in TurboVNC 1.0.) No. A VeNCrypt security type (which is negotiated between server and client) is a sequence of one or more "fundamental security types". "fundamental security types" are: * Do nothing * VNC Authentification * Plain (Send Username+Password as String with length information to the server) * Perform anonymous TLS handshake * Perform TLS handshake with ceritifcates So the fixed set of security types X509Plain, TLSNone, ...) are constructed. Regards, Martin Kögler ------------------------------------------------------------------------------ Sell apps to millions through the Intel(R) Atom(Tm) Developer Program Be part of this innovative community and reach millions of netbook users worldwide. Take advantage of special opportunities to increase revenue and speed time-to-market. Join now, and jumpstart your future. http://p.sf.net/sfu/intel-atom-d2d _______________________________________________ Tigervnc-devel mailing list Tigervnc-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/tigervnc-devel
