> Message: 2 > From: "Femina S. Jaffer" <[EMAIL PROTECTED]> > To: "VNC Distribution List" <[EMAIL PROTECTED]> > Subject: Cannot establish connection or setup > Date: Wed, 10 Sep 2003 10:04:07 -0600 > > Hi. > > I have installed the vnc server and viewer on my host machine at work (WIN > 2K), I have also installed both server and viewer on my desktop at work. > However, when I try to launch the viewer from work to connect to my host pc at > home, I get the message "failed connection". I have the server running at > home too. Please help as I am a novice to all this? > > Thanks > fj >
Probably a firewall.. Does your company have a firewall setup that only lets web and email through? Maybe you can get VNC server to run on a web port (port 80) at home and connect to it that way.. Also you could try tunneling through SSH, which would require a SSH server on your home machine.. I don't know if this is possible with windows, I've done it with linux though.. The basics of tunneling are: You setup a SSH server on your home machine, or maybe this can be done with a SSH client? Setup login and password on home machine.. Login from work with a SSH client (like putty.exe).. Create a tunnel: Under Putty.exe under Forwarded ports Put in something like L5901 myhomecomputer.someisp.com 5902 Where on your local machine (at work) port 5901 is assigned to port 5902 on the remote machine (your home machine).. When you login with putty.exe to your home machine with putty.exe it will automatically setup the tunnel when you login, and if you aim your VNC client at work at port 5901 (I think in VNC it is a address, like "128.0.0.1:1" = 128.0.0.1:5901, or "localhost:5901" ), it will connect to the VNC server on yoru home machine at port 5902.. Of course you must run the VNC server and the SSH server on the same machine.. And at home you would run zonealarm to block all ports except for the one SSH uses, as acting as a server, so that only hackers can try to hack the SSH port.. You should be able to get your sysadmins at work to allow you to connect out over SSH.. They probably already have ti setup that way anyhow.. The more open ports the more likely hackers can get in, that's why there are firewalls.. TCP/IP has about 2^16 or abotu 65536 ports for every IP address (imagine if everyone in your company had installed software from the net, some software might have backdoors through which hackers can get through, spyware is capable of this.. Then if there was no firewall, they could hack into your colleagues machines by doing port scans to find vulnerabilities then use a program that hacks through the vulnerabilities or finds the backdoors.. All because your colleagues installed something like a screenblanker.. That would be the best way to connect out, and the most secure.. Anyone know of a way to get an SSH server on Windows? > Message: 3 > From: "Debbie Davis" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Subject: IP problem > Date: Wed, 10 Sep 2003 13:09:55 -0500 > > Hi, > > I am wanting to vnc to my pc at work, but I don't know how this would work. > Since we only have one external IP address on our server and then all the > other machines in the office have internal #s assigned by dhcp. My question > is how do I get to one of the machines with an internal ip? Do you vnc to > the server and somehow hop over to another machine or what? > DHCP as I've used it, from DSL they assign temporary IP addresses to the connections, which you drop connection the IP address goes back to a pool of addresses.. I've run a web server from a DSL line with DHCP. What some peopel do, or can do, is get some software that everytime your machine drops from the ISP, reconnects and establishes a new IP, then posts this IP address to a webserver somewhere on the net.. Then you would just find this web address at home and connect to your machine from home.. The address would hop about because with every connect you get a differnt IP address.. I know software exists for this.. I've never used it.. But I have run webservers from a machine with DHCP.. I figure you could have a program that just registers with a web page every minute to update the current IP address, coul probably be hacked in Perl.. And run a webserver localhost on your work machine, and try connecting to that server once you find the IP address.. I mentioned previously a way to tunnel through SSH.. This would be done the same way if you were wanting to connect from home to work, but the last guy wanted it in the reverse direction.. Check the VNC websites about tunneling.. > > Message: 5 > From: [EMAIL PROTECTED] > Date: Wed, 10 Sep 2003 16:58:52 -0500 > To: [EMAIL PROTECTED] > Subject: OnTarget 1.1 > > Anybody know anything about the Trojan OnTarget (OnTarget 1.1)? One of the computers on our network just detected it attached to the TightVNC.exe file and I'm trying to figure out if it was a false positive or if we really have an intruder. As best as I can determine, the program uses some sort of MSN Messenger exploit to install a program which includes the VNC program. After tightvnc.exe was detected a number of times on the system, I did a complete scan of the computer using our Antivirus software and now it's coming up with nothing, so I don't know if it was our Antivirus misreading the VNC program or not. The program seems to be originating > from a Spanish site and I can't read Spanish. Any help appreciated. Sounds evil.. Probably as part of a rootkit.. Rootkits are packages that contain programs that replace some of your existing system commands with commands that hide the existence of the hacker in yoru computer and of their rootkits.. You probably just found one of their tools?? Virus killers only kill viruses not reliable programs that can be used to hack with.. I wonder if virus killers guarad against rootkits? Maybe there is software to guarad against this, if there are I would like to get some.. I've been suspicious of my own machine.. It went down the other day because it claimed my RPC subsystem had failed for no reason (and I did have zonealarm off, yow!!).. DISCLAIMER: I haven't used VNC for about 4 months, so take my words with a grain of salt and check the VNC website for more information.. Especially the part on tunneling.. I came on this list because of an idea had had about using VNC to create flash based tutorials by implementing VNC2SWF into the VNC client/server system.. I am not knowledgable about this software to do this, so I'm asking for others to consider to implement this.. You can find the source code for the sofwtare on google. _______________________________________________ VNC-List mailing list [EMAIL PROTECTED] To remove yourself from the list visit: http://www.realvnc.com/mailman/listinfo/vnc-list
