On Wed, 25 May 2011 16:33:13 -0400 Brian Hinz <bph...@users.sourceforge.net> wrote:
> Hi, > > I was going to submit a request to RealVNC for an official allocation for a > new security type, but I wanted to run past you guys first for some > feedback. Basically it's an extension that allows a server side daemon to > act as a manager that just redirects clients to the port where user's > session is running (possibly spawning a new server as part of the process). > This makes administration easier by removing the need to keep files (ie: > /etc/sysconfig/vncservers, /etc/xinetd.d/Xvnc) synchronized between hosts. > In my case the daemon is written in perl and also allows users to change > preferences like geometry and depth in a ~/.vncrc file that the daemon > parses before spawning a new Xvnc session. Please let me know if you have > any suggestions. > The basic idea is a good one, but I'm wondering if this approach is too limited. Some features that might be desired further down the road: - Authentication before the server starts a new session and/or reveals information about it to the client. There are possible information security and denial of service issues here. - Redirection to another host > +=================== =================== =================================== > +No. of bytes Type Description > +=================== =================== =================================== > +1 ``U8`` *length of username* 256 bytes probably covers most user names, but I'd bet it doesn't cover all. For example, we've seen some cases where a LDAP dn is used as a user name and that can often exceed 256 bytes. Perhaps a U16 instead? > +*username-length* ``U8`` array *username-string* Given the history of RFB, you should probably be explicit with the encoding used here (UTF-8 if there is no massive reason for something else). Rgds -- Pierre Ossman OpenSource-based Thin Client Technology System Developer Telephone: +46-13-21 46 00 Cendio AB Web: http://www.cendio.com A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing?
signature.asc
Description: PGP signature
------------------------------------------------------------------------------ vRanger cuts backup time in half-while increasing security. With the market-leading solution for virtual backup and recovery, you get blazing-fast, flexible, and affordable data protection. Download your free trial now. http://p.sf.net/sfu/quest-d2dcopy1
_______________________________________________ tigervnc-rfbproto mailing list tigervnc-rfbproto@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/tigervnc-rfbproto
