> -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]] On Behalf Of Andrew S. McKeon > Sent: Tuesday, December 10, 2002 1:13 PM > To: [EMAIL PROTECTED] > Subject: IIS and SSL > > I am sure this question has been answered (perhaps a few > times already). > However, since I am new to VNC (and can't find documentation > on this), > here goes... > > I just installed VNC Server on a Web Server. The Web Server > is a Windows > 2000 box. My web server is obviously listening for requests > on port 80. > Problem I have, is that my remote location will not allow any traffic > over the web, unless it is port 80. So, I wanted to put the > VNC server > under my web server (so I can access it from a normal web address... > without having to specify the port number). The machine I am > running it > on, also has an SSL certificate, so I would like to run VNC under SSL. > > My questions to anyone are: > 1. Is it possible to run the VNC server as a "sub-web" of a > Windows 2000 > IIS 5.0 server? And, how to go about doing it. > 2. Are there problems with running the VNC server under SSL? > > Thank you in advance for your help, > Andrew
I'm not sure I understand the question, but here it goes: 1) No, because VNC isn't a web page. It is RFB protocol, not HTTP. Are you refering to the web page that serves the Java applet? If so... 2) You need to set up an SSL tunnel for it to work. You can server the Java applet over SSL, but that doesn't protect the RFB back to the server in any way. In short the Java viewer isn't any different than the rest of the viewers. Serving the Java applet over SSL provides zero security. You need to get another port open through the firewall. If you want to do it securely, don't open the VNC port directly, but open up a port for some kind of secure tunneling (VPN, SSH, SSL, etc.) and forward the VNC traffic over it. -- William Hooper _______________________________________________ VNC-List mailing list [EMAIL PROTECTED] http://www.realvnc.com/mailman/listinfo/vnc-list
