Under the properties / user settings section make sure you put in a good password. VNC suffers some of the same security settings that other remote access applications suffer (PC Anywhere, Timbuktu, etc...). I guess the latest version (Windows 3.3.3r9/ UNIX 3.3.3r2) fixes alot of these issues. Also, under the same section you can set the display number that you use with the client. Changing this from the default of auto or :0 would be a good idea. If someone sniffs your network and they see port 5900 open they will not be able to access the server with the defualt display number. In the documentation on the site they tell you how to change to default port for web access from 5800 to another. Of course if you do not want to use web access and force yourself to use the client then you could just block out port 5800 on your firewall. For more information see the book Hacking Exposed and if you do a search on deja.com for VNC security it will point out a lot of useful information. I personally would prefer if it handled passwords more like Samba or PC Anywhere does. Stephen P.S. Foo, if properly secured, I do not think there is any reason not to use it. Foo Lim wrote: > Moved to vox-tech. > > What are the security settings for VNC? I looked for settings that would > suggest security, but I couldn't find anything, thus I stopped using it. > > On Fri, 8 Jun 2001, Stephen M. Helms wrote: > >> In regards to VNC it works pretty well. Just keep in mind security >> settings and maybe change the port number to other than the standard >> default. >
