Can someone give me an analysis/comparison of password authentication on RealVNC (Free Edition) as compared to Windows NT/2K/XP/3K in terms of what level of security and protection is afforded?
I know that this depends upon the LMCompatibilityLevel setting on Windows, but I'm not sure in what form the password is stored or externally transmitted and how it's protected for any of these settings. >From what I've read of RealVNC Free Edition, it seems that its password is stored in "obfuscated" form (not encrypted). Presumably, restrictive permissions are automatically set on these registry keys. How is the password transmitted, between VNC client and server, though? I understand there is a challenge/response mechanism used in RealVNC Free Edition, but is this authentication session encrypted? What safeguards are in place and how do they compare with a default setup of Windows 2K/3K, for example? Thanks! --Cal Webster _______________________________________________ VNC-List mailing list [email protected] To remove yourself from the list visit: http://www.realvnc.com/mailman/listinfo/vnc-list
