Hi,
I'm still in the process of developing an integrated remote desktop system
for a specialist user base, and am using TigerVNC to great effect so far.
I would like to enable client connections from standard Win/Mac/Lin
desktops (using the Tiger VncViewer) and ALSO client connections from
mobile devices such as iOS / Android etc.
The problem being, there are no free/open mobile (iOS/Android) VNC clients
which implement encryption - yet.
If I run the Xvnc server with SecurityType=None (which I would need to do
to allow these mobile clients to connect), HOW can I make it more secure?
Obviously, the password is still sent encrypted (I believe) but the RFB
communication is open and in the clear (albeit using TightVNC encoding).
Is this a big problem?
Can I make it better somehow, perhaps by creating a dynamic firewall rule
that only allows VNC client access from the IP address given during a
previous HTTPS authentication?
Any thoughts welcome.
Thanks,
Dan G
------------------------------------------------------------------------------
All the data continuously generated in your IT infrastructure
contains a definitive record of customers, application performance,
security threats, fraudulent activity, and more. Splunk takes this
data and makes sense of it. IT sense. And common sense.
http://p.sf.net/sfu/splunk-novd2d
_______________________________________________
Tigervnc-devel mailing list
Tigervnc-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/tigervnc-devel
