At our help desk we have implemented security for privacy concerns in two ways.
#1 - the user must accept the connection, so if the user does not hit "Accept", the VNC session will not occur. #2 - to prevent unauthorized users from initiating sessions we have a password that the Help Desk must enter once the user has authorized the connection. These are all minor registry hacks that we automatically install whenever we install VNC - we also have our password built into the registry hack. The best way to get the password out of the registry is to build a prototype station, put in the password and then do a registry export. Here's what I dumped from the registry when I built our VNC install: [HKEY_LOCAL_MACHINE\Software\ORL\WinVNC3\Default] "SocketConnect"=dword:00000001 "AutoPortSelect"=dword:00000001 "InputsEnabled"=dword:00000001 "LocalInputsDisabled"=dword:00000000 "IdleTimeout"=dword:00000000 "QuerySetting"=dword:00000003 "QueryTimeout"=dword:0000000a "Password"=hex: **PASSWORD HERE IN COMMA SEPERATED HEX VALUES** "PollUnderCursor"=dword:00000000 "PollForeground"=dword:00000001 "PollFullScreen"=dword:00000000 "OnlyPollConsole"=dword:00000001 "OnlyPollOnEvent"=dword:00000000 "AllowProperties"=dword:00000000 "AllowShutdown"=dword:00000000 Hope this helps. Roger Pray PC Systems Analyst MIBH - Cooperstown NY "Chris Chafunya [AST DTS]" wrote: > > Please help, > > I would like to know if it possible to prompt the host to enter a > password when a guest takes or tries to takeover the session. This > became an issue when some people expressed privacy concerns. > > The scenario is that we would not like to give the users the ability to > initiate VNC, but they should be able to authenticate the taking over of > the session with a password. > > Is it possible?? > > We are the helpdesk people... > > Chris > > ______________________________________________ > > "This information is intended only for the person or entity to which it is addressed >and > may contain private, confidential, proprietary and/or privileged material and may be >subject > to confidentiality agreements. > > Any review, retransmission, dissemination, or any other use of or taking of any >action in > reliance upon this information, by persons or entities other than the intended >recipient, > is prohibited. > > If you received this in error, please contact the sender and delete the material >from all > storage media. > > The company is neither liable for proper, complete transmission of the information >contained > in this communication, any delay in its receipt or that the mail is virus-free" > _______________________________________________ > VNC-List mailing list > [EMAIL PROTECTED] > http://www.realvnc.com/mailman/listinfo/vnc-list _______________________________________________ VNC-List mailing list [EMAIL PROTECTED] http://www.realvnc.com/mailman/listinfo/vnc-list
