> -----Message d'origine-----
> De : Barn Owl [mailto:[EMAIL PROTECTED]
> Envoyi : mercredi 25 fivrier 2004 23:19
> @ : [EMAIL PROTECTED]
> Objet : RE: !!!DANGER!!!! Acute security risk! WAKE UP!!!!
>
> >> Talking about security, there's one severe bug that
> >> needs to be corrected. Months ago, someone reported that
> >> even though we could define a long password, but the
> >> effective number of letters is only 8 (eight)!
> >
> As already noted this is not a bug.
Granted. It's a "feature" :)
> A second point,Most users do _NOT_ use even
> an 8 digit password.
And so? We're supposed to do like them? Or we should be deprived of it? I
feel like hearing Bill Gates saying, in the mid 80's: "640KB should be enough for
everybody" (disclaimer: I don't know the exact words -- so leave me alone) The
result, DOS was limited to that.
> Third, important point about VNC in general is that the
> base version (realVNC) was not designed to be used on unsecured networks.
Exact. While we're on the discussion, I hope SSH isn't limited to 8-letters
password!
> For
> those needing solid security in a VNC session there is TighVNC and UltraVNC
> both of which are design to use in a more hostile enviroment. On both Linux
> and Windows, and I am guessing most other *nix versions, VNC can be set up to
> use the OS's native graphic login.
>
> Evan
> "Sent by UR*ONRAMP's WebMail - http://webmail.uronramp.net";
_______________________________________________
VNC-List mailing list
[EMAIL PROTECTED]
To remove yourself from the list visit:
http://www.realvnc.com/mailman/listinfo/vnc-list
