tag:old.nabble.com,2006:forum-24109Nabble - TightVNC2009-12-23T05:53:51Z<a href="http://www.tightvnc.com/index.html" target="_top" rel="nofollow">TightVNC</a> is a free remote control software package derived from the popular VNC software. With TightVNC, you can see the desktop of a remote machine and control it with your local mouse and keyboard, just like you would do it sitting in the front of that computer.
<br><b>TightVNC</b> is:
<br> * free, GPL-licensed, with full source code available;
<br> * useful in remote administration, remote customer support, education, and for many other purposes;
<br> * cross-platform, available for Windows and Unix, compatible with other VNC software.tag:old.nabble.com,2006:post-26902552RE: Remote does not update2009-12-23T05:53:51Z2009-12-23T05:53:51ZBob McConnellFrom: Ook
<br><br>> I've been using TightVNC 1.3.9 on several machines for quite a while,
<br>and
<br>> for the most part it works well. However, when I connect to one
<br>specific
<br>> machine, the display will not automatically update once the original
<br>display
<br>> is drawn. If I click the request screen refresh button, then it will
<br>update
<br>> just fine, but this appears to be the only way to get it to refresh.
<br>The
<br>> machine specs are as follows:
<br>>
<br>> Windows XP64
<br>> Radeon 3870 with 9.11 drivers.
<br>> TightVNC 1.3.9 with default settings.
<br>>
<br>> I've tried playing with the settings, but nothing seems to help. I'd
<br>welcome
<br>> any troubleshooting ideas.
<br><br>In TightVNC Server properties, under the Hooks tab, there is a section
<br>on polling modes. Uncheck all boxes, then check 'Poll full screen' and
<br>set a reasonable period. I have mine set to 1200 ms. Then you probably
<br>want to install the mirror display driver. This mostly works for me,
<br>although I still have similar problems on one server in W2K after being
<br>connected for more than 96 hours.
<br><br>If you do this in the global settings, you have to restart the server
<br>for the changes to take effect. If you right click on the tray icon and
<br>select properties, you will only affect the current instance. Those
<br>changes may be lost the next time the server starts up.
<br><br>Bob McConnell
<br><br>------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a>
<br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26902552&i=0" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26894951Remote does not update2009-12-22T13:38:13Z2009-12-22T13:38:13ZOokI've been using TightVNC 1.3.9 on several machines for quite a while, and
<br>for the most part it works well. However, when I connect to one specific
<br>machine, the display will not automatically update once the original display
<br>is drawn. If I click the request screen refresh button, then it will update
<br>just fine, but this appears to be the only way to get it to refresh. The
<br>machine specs are as follows:
<br><br>Windows XP64
<br>Radeon 3870 with 9.11 drivers.
<br>TightVNC 1.3.9 with default settings.
<br><br>I've tried playing with the settings, but nothing seems to help. I'd welcome
<br>any troubleshooting ideas.
<br><br><br>------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a>
<br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26894951&i=0" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26894678Re: Problem: Socket error while writing2009-12-22T13:28:12Z2009-12-22T13:28:12ZMartin ValleyPlease see comments in-line...
<br><br>----- Original Message -----
<br>From: "R" <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26894678&i=0" target="_top" rel="nofollow">tightvnc@...</a>>
<br>To: "Martin Valley" <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26894678&i=1" target="_top" rel="nofollow">martinv@...</a>>
<br>Cc: <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26894678&i=2" target="_top" rel="nofollow">vnc-tight-list@...</a>>
<br>Sent: Tuesday, December 22, 2009 8:13 AM
<br>Subject: Re: Problem: Socket error while writing
<br><br><div class='shrinkable-quote'><br>> On Mon, Dec 21, 2009 at 10:35:34AM -0700, Martin Valley wrote:
<br>>> I have an installation of TightVNC (version 1.3.9 - running on Windows
<br>>> XPPro) which is generating an error when any client tries to use it.
<br>>>
<br>>> The error is: "Write Exact: Socket error while writing".
<br>>
<br>> I think a little more information might be required to diagnose this,
<br>> such as, at what point in the process do you get this error?
<br>>
<br>> Initial connection - do you even get a password prompt?
</div>Yes, I get prompted for the password
<br><br>> Do you enter password and then get it?
<br>Yes, I enter the password. When I hit <Enter>, the password prompt
<br>disappears and I instantly get a pop-up displaying the error message.
<br><br>> Are you using it ok for a while and then you get it?
<br><br>> Where do you see this error - on the server or on the client that
<br>> connects?
<br>The error message is displayed on the client-side.
<br><br>> How do you see the error? Pop up box presumably?
<br>Yes - a pop-up box
<br><br>> What flavour are the clients? TightVNC 1.3.9 on Windows XPPro?
<br>The original situation was TightVNC 1.3.6 on both the server-side and the
<br>client-side.
<br>When trying to fix this, we installed 1.3.10 on the server-side and accessed
<br>it with
<br>both 1.3.6 and 1.3.10 from different clients. We had the same problem in all
<br>cases.
<br>In all cases, the OS is Win XPPro.
<br><br>> Are all the machines on the same LAN or are you having to traverse
<br>> firewalls / routers using port forwards etc?
<br>All 3 units we've worked with are on a LAN. No firewalls or routers
<br>involved.
<br><br><br><br>------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a>
<br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26894678&i=3" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26894744AUTO: Gail Cain is out of the office (returning 01/05/2010)2009-12-22T13:01:41Z2009-12-22T13:01:41ZGail_Cain<br>I am out of the office until 01/05/2010.
<br><br>If you need immediate assistance, please call Systems 804-916-2708. Thank
<br>you.
<br><br><br>Note: This is an automated response to your message "Re: Problem: Socket
<br>error while writing" sent on 12/22/2009 10:13:33 AM.
<br><br>This is the only notification you will receive while this person is away.
<br><br><br>------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a>
<br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26894744&i=0" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26892409Re: TightVNC vs TeamViewer2009-12-22T10:36:45Z2009-12-22T10:36:45ZAllen-5Hi Robert,
<br><br>You are absolutely right about it being only 40 bit that was
<br>cracked. There is also a 56 bit version out there as well. 56 bit
<br>DES was cracked ages ago.
<br><br>So for the moment if an installation is actually 128 bit it is
<br>safe, more or less, from brute force, but the RSA part may be
<br>good for only a few years at most according to Lenstra back in
<br>2008 when they worked on the 307 bit prime factor.
<br><br>The site, Blue Crypt, <a href="http://www.keylength.com/en" target="_top" rel="nofollow">http://www.keylength.com/en</a> is worth poking
<br>around in to see what different people think is safe and for how
<br>long.
<br><br>Best,
<br><br>Allen
<br>Robert Kennedy wrote:
<div class='shrinkable-quote'><br>> You really have to take this article with a grain of salt.
<br>>
<br>> First, SSL is NOT only 128 bit, it could be 40 bit. (The key recovered
<br>> in 1995 was a 40 bit key)
<br>>
<br>> Second, the article talks about cracking 40 bit SSL. NOT the much more
<br>> common 128-bit SSL found today. And yes, brute force attacks on 40-bit
<br>> crypto is practical with today's computers.
<br>>
<br>> Third, to my knowledge it is NOT practical to crack 128 bit SSL even
<br>> for the NSA with their super computers.
<br>>
<br>> Forth, if is was easy to crack 128-bit SSL, you would have heard about
<br>> it all over the Net.
<br>>
<br>> If you want to make sure you are using 128 bit SSL (and not 40 bit SSL)
<br>> check the Certificate provided to your wen browser. All modern websites
<br>> use 128 bit SSL.
<br>>
<br>> I am not saying that one day it will be practical to crack SSL by brute
<br>> force (especially if you believe in Moore's law). But we are not there
<br>> yet. We are a long way to go.
<br>>
<br>> Rob
<br>>
<br>>
<br>>
<br>> Date: Mon, 21 Dec 2009 14:19:25 -0500
<br>> Subject: Re: TightVNC vs TeamViewer
<br>> From: <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=0" target="_top" rel="nofollow">johnswolter@...</a>
<br>> To: <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=1" target="_top" rel="nofollow">netsecurity@...</a>
<br>> CC: <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=2" target="_top" rel="nofollow">alex@...</a>; <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=3" target="_top" rel="nofollow">sbest@...</a>;
<br>> <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=4" target="_top" rel="nofollow">vnc-tight-list@...</a>
<br>>
<br>> Eeeeeekkkkkk!!!!!!!
<br>>
<br>> On Mon, Dec 21, 2009 at 12:24 PM, Allen <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=5" target="_top" rel="nofollow">netsecurity@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=6" target="_top" rel="nofollow">netsecurity@...</a>>> wrote:
<br>>
<br>> Hi John,
<br>>
<br>> (Picture very red face here!) Sorry to say it is even worse than I
<br>> said, alas. SSL was brute force cracked and the encryption key
<br>> recovered in 1995 by a bank of 112 ordinary desktops in 32 hours.
<br>>
<br>> Excellent article about this from 2004 at:
<br>>
<br>> <a href="http://www.marktaw.com/technology/HowlongdoesittaketocrackS.html" target="_top" rel="nofollow">http://www.marktaw.com/technology/HowlongdoesittaketocrackS.html</a><br>>
<br>> At that time the peak super computer speed was 70 teraflops and
<br>> could crack the SSL encryption key in 7 minutes by one computer
<br>> according to rough figures. Currently the peak is almost 3 petaflops
<br>> so about 40 times faster.
<br>>
<br>> One can assume that while NSA, etc., probably don't have the fastest
<br>> out there I'd bet they have a lot of capability. I'd guess that it
<br>> probably takes less than 1 minute for them to crack SSL.
<br>>
<br>> Since SSL is only 128 bits this could be done by even small
<br>> organizations because, after all, a couple of years ago $2500 would
<br>> buy almost 30 gigaflops and 6 months later, August 2007, it was down
<br>> to $1300 or < $50/gigaflop! (Let's see, Moore's Law, and it is 28
<br>> months since then, I'd guess < $20/gigaflop today.)
<br>>
<br>> There is another problem I wasn't aware of until I started looking
<br>> closer and that is not all servers may be set up with 128 bit SSL,
<br>> there are also 40 and 56 bit versions that might still be being
<br>> used. Given the security assessments I've done and how badly
<br>> organizations have done being up to date to current standards, I
<br>> would not be all surprised to find some of the older ones still in
<br>> place.
<br>>
<br>> So, for practical purposes SSL is *very* dead. Probably the only
<br>> thing protecting it in reality is the amount of SSL traffic to and
<br>> from banks, etc., that finding yours would be finding a needle in a
<br>> haystack.
<br>>
<br>> SSH anyone? Well, according to RFC4253 SSH only SHOULD use 128 bits
<br>> or more.
<br>>
<br>> <a href="http://www.ietf.org/rfc/rfc4253.txt" target="_top" rel="nofollow">http://www.ietf.org/rfc/rfc4253.txt</a><br>>
<br>> We are going to have to look very carefully at all of this as new
<br>> and better cracks are coming along every day.
<br>>
<br>> Happy Holidays to all,
<br>>
<br>>
<br>> Allen
<br>>
<br>>
<br>> john s wolter wrote:
<br>>
<br>> Allen,
<br>>
<br>> Oh rats.
<br>>
<br>>
<br>> On Sun, Dec 20, 2009 at 3:54 PM, Allen
<br>> <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=7" target="_top" rel="nofollow">netsecurity@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=8" target="_top" rel="nofollow">netsecurity@...</a>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=9" target="_top" rel="nofollow">netsecurity@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=10" target="_top" rel="nofollow">netsecurity@...</a>>>> wrote:
<br>>
<br>> Yes, SSL has been cracked but it is quite tricky to do as I
<br>> understand it. The real problem is that the data can be captured,
<br>> stored and the SSL crack applied. Basically it is not primarily a
<br>> crack of SSL but the creation of a rouge certificate
<br>> authority then
<br>> using a colliding certificates attack.
<br>>
<br>> "The vulnerability exploits a bug in the MD5 cryptographic
<br>> hashing
<br>> algorithm used to create some of the digital certificates
<br>> published
<br>> by certification authority (CA). The crack works because
<br>> hashes are
<br>> used to create a digital “fingerprint” that is supposed to
<br>> uniquely
<br>> identify a document and can easily be calculated to verify
<br>> that the
<br>> document hasn’t been modified in transit. But the flaw in the MD5
<br>> algorithm makes it possible to create two different documents
<br>> that
<br>> have the same numerical hash value."
<br>>
<br>> From:
<br>>
<br>>
<br>> <a href="http://www.mydigitallife.info/2009/01/01/researchers-crack-ssl-by-phishing-and-spoofing-digital-certification-authority-ca/" target="_top" rel="nofollow">http://www.mydigitallife.info/2009/01/01/researchers-crack-ssl-by-phishing-and-spoofing-digital-certification-authority-ca/</a><br>>
<br>> Pretty good overview.
<br>>
<br>> Well, we know that certificates can be forged and duplicate ones
<br>> created by bit fiddling an embedded PDF file. So the real
<br>> issue is
<br>> connecting and staying with SSL. This is the key problem with
<br>> something like echoServer. If SSL was used through an echoServer,
<br>> but then the server dropped out of the loop after the initial
<br>> connection was made to facilitate creating a direct machine to
<br>> machine connection - using another protocol for encryption
<br>> and key
<br>> sharing via a challenge-response (with an asymmetric
<br>> public/private
<br>> encryption was used) so that no actual password was on the
<br>> network -
<br>> then SSL would be good enough for the initialization, at
<br>> least for a
<br>> while longer.
<br>>
<br>> Doing the key exchange this way and creating an direct tunnel
<br>> avoids
<br>> most of the problems associated with certificates. Yeah, I know,
<br>> somebody will find a hole in this thinking big enough to
<br>> swallow the
<br>> Titanic sooner or later. ;->
<br>>
<br>> Best to All,
<br>>
<br>> Allen
<br>>
<br>> john s wolter wrote:
<br>>
<br>> Scott,
<br>>
<br>> One more unfortunate item is that I was just told by
<br>> colleague
<br>> under certain circumstances SSL can be cracked. Total
<br>> bummer. I have not cracked it myself yet but I'm going
<br>> to track down his
<br>> statements.
<br>> TLS appears to be beyond this problem but I wonder how widely
<br>> available and supported it is.
<br>>
<br>> More cheers in this case.
<br>>
<br>> On Sun, Dec 20, 2009 at 2:06 PM, john s wolter
<br>> <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=11" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=12" target="_top" rel="nofollow">johnswolter@...</a>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=13" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=14" target="_top" rel="nofollow">johnswolter@...</a>>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=15" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=16" target="_top" rel="nofollow">johnswolter@...</a>>
<br>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=17" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=18" target="_top" rel="nofollow">johnswolter@...</a>>>>> wrote:
<br>>
<br>> Scott,
<br>>
<br>> Thank you for responding, I'll take a look at it to
<br>> see how it
<br>> works. The only concern is the echoServer not being
<br>> GPL'd if I
<br>> understand what you had to say about it.
<br>>
<br>> Cheers.
<br>>
<br>>
<br>> On Sun, Dec 20, 2009 at 1:27 PM, Scott C. Best
<br>> <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=19" target="_top" rel="nofollow">sbest@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=20" target="_top" rel="nofollow">sbest@...</a>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=21" target="_top" rel="nofollow">sbest@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=22" target="_top" rel="nofollow">sbest@...</a>>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=23" target="_top" rel="nofollow">sbest@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=24" target="_top" rel="nofollow">sbest@...</a>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=25" target="_top" rel="nofollow">sbest@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=26" target="_top" rel="nofollow">sbest@...</a>>>>> wrote:
<br>>
<br>> John:
<br>>
<br>> Hello! I built a VNC-based system similar to
<br>> TeamViewer, that
<br>> can be configured to work directly with TightVNC.
<br>> It's called
<br>> EchoVNC,
<br>> and works like this:
<br>>
<br>> 1. Install EchoVNC on your TightVNC Server. EchoVNC by
<br>> default comes
<br>> with its own VNC service (we built our from the
<br>> UltraVNC distro),
<br>> but one of the configuration options lets you
<br>> work with
<br>> an already
<br>> running VNC service. We also have a "zero config"
<br>> version of the
<br>> VNC server called InstantVNC, in case you just
<br>> want to
<br>> email
<br>> something to a remote user that's not running
<br>> VNC yet.
<br>>
<br>> 2. Install EchoVNC on your TightVNC Viewer. Again,
<br>> EchoVNC has it's
<br>> own VNC Viewer application, but it can be
<br>> configured to
<br>> work with
<br>> another platform's viewer.
<br>>
<br>> 3. On both sides of the connection, login to the same
<br>> echoServer.
<br>> Think of that application as a "relay server"
<br>> similar
<br>> to what
<br>> the TeamViewer service provides. In this setup, the
<br>> echoServer is
<br>> the only piece that requires firewall or NAT
<br>> configuration. A
<br>> static IP address for the echoServer is useful,
<br>> but a
<br>> dynDNS
<br>> addrees also works. Once both sides (Viewer and
<br>> Server) can
<br>> connect and login, they can connect to each other.
<br>>
<br>> Once that's all setup, start the EchoVNC
<br>> Viewer,
<br>> and it will
<br>> display a "point and click" list of remote clients you
<br>> can kick off
<br>> a TightVNC Viewer session with. Also, the "tunnel"
<br>> created between
<br>> the Viewer and Server and the echoServer during
<br>> the VNC
<br>> session is
<br>> SSL-secured.
<br>>
<br>> Everything except the the echoServer (a
<br>> shareware
<br>> download
<br>> available for Linux and Windows) is VNC-based, so
<br>> all of
<br>> those
<br>> pieces
<br>> are GPL'd open-source. More details here:
<br>>
<br>> <a href="http://www.echogent.com/download_echovnc.htm" target="_top" rel="nofollow">http://www.echogent.com/download_echovnc.htm</a><br>>
<br>> Hope this helps, and I welcome any
<br>> suggestions for
<br>> improvement.
<br>>
<br>> cheers,
<br>> Scott
<br>>
<br>>
<br>>
<br>> john s wolter wrote:
<br>>
<br>> The main obstacle I have in using
<br>> TightVNC more
<br>> widely is the
<br>> setup with remote customers. It requires that
<br>> I make
<br>> a site
<br>> visit and
<br>> deal with all the routers and firewalls.
<br>> Wouldn't it
<br>> be nice
<br>> if combined
<br>> with SSL or TLS and other ToDo items if a
<br>> remote setup
<br>> facility could be
<br>> created for TightVNC.
<br>>
<br>> I've just used TeamViewer with a
<br>> customer and
<br>> was able to
<br>> install with the customer's help during a simple
<br>> telephone
<br>> conversation.
<br>>
<br>> TeamViewer is an VNC like package which
<br>> uses it
<br>> online servers
<br>> to setup and help conduct remote sessions.
<br>> TeamViewer has a
<br>> download
<br>> which installs its client-server software used
<br>> during a
<br>> remote session.
<br>> Their servers handle tasks like session
<br>> authentication and
<br>> access
<br>> control. It was a very straight forward process.
<br>>
<br>> Both parties in a remote session are
<br>> TeamVieiwer
<br>> members and
<br>> have loaded their software onto the users
<br>> computers.
<br>> Needed
<br>> passwords
<br>> are communicated via telephone or IM session
<br>> for remote
<br>> sign-on and are
<br>> different for every sign-on.
<br>>
<br>> TeamViewer does not have any need to
<br>> setup the
<br>> router
<br>> in a
<br>> NAT'ized network, i.e. no port forwarding setup is
<br>> required.
<br>> TeamViewer's software and online session
<br>> manager handles
<br>> everything
<br>> needed to start a remote connection. I do not
<br>> know but I
<br>> would guess
<br>> that after a remote connection is established
<br>> the online
<br>> session manager
<br>> is not needed.
<br>>
<br>> I image an online hosted session service to
<br>> perform
<br>> sessions
<br>> setups would be a possible approach. It
<br>> would help
<br>> do the
<br>> remote setup
<br>> and configure a route or port at the start of each
<br>> session.
<br>> This would
<br>> be a separate software piece of this puzzle.
<br>>
<br>> Any thoughts?
<br>>
<br>> Cheers.
<br>>
<br>>
<br>> ------------------------------------------------------------
<br>> John S. Wolter President
<br>> Wolter Works
<br>>
<br>>
<br>>
<br>>
<br>>
<br>> --
<br>> ------------------------------------------------------------
<br>> John S. Wolter President
<br>> Wolter Works
<br>> Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=27" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=28" target="_top" rel="nofollow">johnswolter@...</a>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=29" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=30" target="_top" rel="nofollow">johnswolter@...</a>>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=31" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=32" target="_top" rel="nofollow">johnswolter@...</a>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=33" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=34" target="_top" rel="nofollow">johnswolter@...</a>>>>
<br>>
<br>>
<br>> Desk;1-734-665-1263
<br>> Cell: 1-734-904-8433
<br>>
<br>> - Internet & IT Infrastructure Design & Build
<br>> - Innovation in Product Design, Tradeoffs, Business
<br>> consulting
<br>> - Internet Business, Marketing, Design, Virtualization
<br>> - Engineered Systems Integrations
<br>> - Software Development & Embedded Systems
<br>>
<br>> Introduce us to new customers and earn rewards
<br>>
<br>>
<br>>
<br>>
<br>> --
<br>> ------------------------------------------------------------
<br>> John S. Wolter President
<br>> Wolter Works
<br>> Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=35" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=36" target="_top" rel="nofollow">johnswolter@...</a>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=37" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=38" target="_top" rel="nofollow">johnswolter@...</a>>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=39" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=40" target="_top" rel="nofollow">johnswolter@...</a>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=41" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=42" target="_top" rel="nofollow">johnswolter@...</a>>>>
<br>>
<br>>
<br>> Desk;1-734-665-1263
<br>> Cell: 1-734-904-8433
<br>>
<br>> - Internet & IT Infrastructure Design & Build
<br>> - Innovation in Product Design, Tradeoffs, Business
<br>> consulting
<br>> - Internet Business, Marketing, Design, Virtualization
<br>> - Engineered Systems Integrations
<br>> - Software Development & Embedded Systems
<br>>
<br>> Introduce us to new customers and earn rewards
<br>>
<br>>
<br>>
<br>> ------------------------------------------------------------------------
<br>>
<br>>
<br>>
<br>> ------------------------------------------------------------------------------
<br>> This SF.Net email is sponsored by the Verizon Developer
<br>> Community
<br>> Take advantage of Verizon's best-in-class app development
<br>> support
<br>> A streamlined, 14 day to market process makes app
<br>> distribution
<br>> fast and easy
<br>> Join now and get one step closer to millions of Verizon
<br>> customers
<br>> <a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a><br>>
<br>>
<br>> ------------------------------------------------------------------------
<br>>
<br>> ___________________________________________________________
<br>> TightVNC mailing list,
<br>> <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=43" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=44" target="_top" rel="nofollow">VNC-Tight-list@...</a>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=45" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=46" target="_top" rel="nofollow">VNC-Tight-list@...</a>>>
<br>>
<br>> To change your subscription or to UNSUBSCRIBE, please visit
<br>> <a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br>>
<br>>
<br>>
<br>>
<br>> --
<br>> ------------------------------------------------------------
<br>> John S. Wolter President
<br>> Wolter Works
<br>> Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=47" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=48" target="_top" rel="nofollow">johnswolter@...</a>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=49" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=50" target="_top" rel="nofollow">johnswolter@...</a>>>
<br>>
<br>> Desk;1-734-665-1263
<br>> Cell: 1-734-904-8433
<br>>
<br>> - Internet & IT Infrastructure Design & Build
<br>> - Innovation in Product Design, Tradeoffs, Business consulting
<br>> - Internet Business, Marketing, Design, Virtualization
<br>> - Engineered Systems Integrations
<br>> - Software Development & Embedded Systems
<br>>
<br>> Introduce us to new customers and earn rewards
<br>>
<br>>
<br>>
<br>>
<br>> --
<br>> ------------------------------------------------------------
<br>> John S. Wolter President
<br>> Wolter Works
<br>> Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=51" target="_top" rel="nofollow">johnswolter@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=52" target="_top" rel="nofollow">johnswolter@...</a>>
<br>>
<br>> Desk;1-734-665-1263
<br>> Cell: 1-734-904-8433
<br>>
<br>> - Internet & IT Infrastructure Design & Build
<br>> - Innovation in Product Design, Tradeoffs, Business consulting
<br>> - Internet Business, Marketing, Design, Virtualization
<br>> - Engineered Systems Integrations
<br>> - Software Development & Embedded Systems
<br>>
<br>> Introduce us to new customers and earn rewards
<br>>
<br>>
<br>> Windows Live: Keep your friends up to date with what you do online.
<br>> <<a href="http://go.microsoft.com/?linkid=9691810" target="_top" rel="nofollow">http://go.microsoft.com/?linkid=9691810</a>>
</div><br>------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a>
<br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26892409&i=53" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26890570RE: TightVNC vs TeamViewer2009-12-22T08:06:00Z2009-12-22T08:06:00ZMaverick88<html>
<head>
</head>
<body class='hmmessage'>
You really have to take this article with a grain of salt.<br><br>First, SSL is NOT only 128 bit, it could be 40 bit. (The key recovered in 1995 was a 40 bit key)<br><br>Second, the article talks about cracking 40 bit SSL. NOT the much more common 128-bit SSL found today. And yes, brute force attacks on 40-bit crypto is practical with today's computers.<br><br>Third, to my knowledge it is NOT practical to crack 128 bit SSL even for the NSA with their super computers.<br><br>Forth, if is was easy to crack 128-bit SSL, you would have heard about it all over the Net.<br><br>If you want to make sure you are using 128 bit SSL (and not 40 bit SSL) check the Certificate provided to your wen browser. All modern websites use 128 bit SSL.<br><br>I am not saying that one day it will be practical to crack SSL by brute force (especially if you believe in Moore's law). But we are not there yet. We are a long way to go.<br><br>Rob<br><br><br><br><hr id="stopSpelling">Date: Mon, 21 Dec 2009 14:19:25 -0500<br>Subject: Re: TightVNC vs TeamViewer<br>From: <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=0" target="_top" rel="nofollow">johnswolter@...</a><br>To: <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=1" target="_top" rel="nofollow">netsecurity@...</a><br>CC: <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=2" target="_top" rel="nofollow">alex@...</a>; <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=3" target="_top" rel="nofollow">sbest@...</a>; <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=4" target="_top" rel="nofollow">vnc-tight-list@...</a><br><br>Eeeeeekkkkkk!!!!!!!<br><br><div class="ecxgmail_quote">On Mon, Dec 21, 2009 at 12:24 PM, Allen <span dir="ltr"><<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=5" target="_top" rel="nofollow">netsecurity@...</a>></span> wrote:<br><blockquote class="ecxgmail_quote" style="padding-left: 1ex;">
Hi John,<br>
<br>
(Picture very red face here!) Sorry to say it is even worse than I said, alas. SSL was brute force cracked and the encryption key recovered in 1995 by a bank of 112 ordinary desktops in 32 hours.<br>
<br>
Excellent article about this from 2004 at:<br>
<br>
<a href="http://www.marktaw.com/technology/HowlongdoesittaketocrackS.html" target="_top" rel="nofollow">http://www.marktaw.com/technology/HowlongdoesittaketocrackS.html</a><br>
<br>
At that time the peak super computer speed was 70 teraflops and could crack the SSL encryption key in 7 minutes by one computer according to rough figures. Currently the peak is almost 3 petaflops so about 40 times faster.<br>
<br>
One can assume that while NSA, etc., probably don't have the fastest out there I'd bet they have a lot of capability. I'd guess that it probably takes less than 1 minute for them to crack SSL.<br>
<br>
Since SSL is only 128 bits this could be done by even small organizations because, after all, a couple of years ago $2500 would buy almost 30 gigaflops and 6 months later, August 2007, it was down to $1300 or < $50/gigaflop! (Let's see, Moore's Law, and it is 28 months since then, I'd guess < $20/gigaflop today.)<br>
<br>
There is another problem I wasn't aware of until I started looking closer and that is not all servers may be set up with 128 bit SSL, there are also 40 and 56 bit versions that might still be being used. Given the security assessments I've done and how badly organizations have done being up to date to current standards, I would not be all surprised to find some of the older ones still in place.<br>
<br>
So, for practical purposes SSL is *very* dead. Probably the only thing protecting it in reality is the amount of SSL traffic to and from banks, etc., that finding yours would be finding a needle in a haystack.<br>
<br>
SSH anyone? Well, according to RFC4253 SSH only SHOULD use 128 bits or more.<br>
<br>
<a href="http://www.ietf.org/rfc/rfc4253.txt" target="_top" rel="nofollow">http://www.ietf.org/rfc/rfc4253.txt</a><br>
<br>
We are going to have to look very carefully at all of this as new and better cracks are coming along every day.<br>
<br>
Happy Holidays to all,<div class="ecxim"><br>
<br>
Allen<br>
<br>
<br>
john s wolter wrote:<br>
</div><blockquote class="ecxgmail_quote" style="padding-left: 1ex;">
Allen,<br>
<br>
Oh rats.<div><div></div><div class="h5"><br>
<br>
On Sun, Dec 20, 2009 at 3:54 PM, Allen <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=6" target="_top" rel="nofollow">netsecurity@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=7" target="_top" rel="nofollow">netsecurity@...</a>>> wrote:<br>
<br>
Yes, SSL has been cracked but it is quite tricky to do as I<br>
understand it. The real problem is that the data can be captured,<br>
stored and the SSL crack applied. Basically it is not primarily a<br>
crack of SSL but the creation of a rouge certificate authority then<br>
using a colliding certificates attack.<br>
<br>
"The vulnerability exploits a bug in the MD5 cryptographic hashing<br>
algorithm used to create some of the digital certificates published<br>
by certification authority (CA). The crack works because hashes are<br>
used to create a digital “fingerprint” that is supposed to uniquely<br>
identify a document and can easily be calculated to verify that the<br>
document hasn’t been modified in transit. But the flaw in the MD5<br>
algorithm makes it possible to create two different documents that<br>
have the same numerical hash value."<br>
<br>
From:<br>
<br>
<a href="http://www.mydigitallife.info/2009/01/01/researchers-crack-ssl-by-phishing-and-spoofing-digital-certification-authority-ca/" target="_top" rel="nofollow">http://www.mydigitallife.info/2009/01/01/researchers-crack-ssl-by-phishing-and-spoofing-digital-certification-authority-ca/</a><br>
<br>
Pretty good overview.<br>
<br>
Well, we know that certificates can be forged and duplicate ones<br>
created by bit fiddling an embedded PDF file. So the real issue is<br>
connecting and staying with SSL. This is the key problem with<br>
something like echoServer. If SSL was used through an echoServer,<br>
but then the server dropped out of the loop after the initial<br>
connection was made to facilitate creating a direct machine to<br>
machine connection - using another protocol for encryption and key<br>
sharing via a challenge-response (with an asymmetric public/private<br>
encryption was used) so that no actual password was on the network -<br>
then SSL would be good enough for the initialization, at least for a<br>
while longer.<br>
<br>
Doing the key exchange this way and creating an direct tunnel avoids<br>
most of the problems associated with certificates. Yeah, I know,<br>
somebody will find a hole in this thinking big enough to swallow the<br>
Titanic sooner or later. ;-><br>
<br>
Best to All,<br>
<br>
Allen<br>
<br>
john s wolter wrote:<br>
<br>
Scott,<br>
<br>
One more unfortunate item is that I was just told by colleague<br>
under certain circumstances SSL can be cracked. Total bummer. I have not cracked it myself yet but I'm going to track down his<br>
statements.<br>
TLS appears to be beyond this problem but I wonder how widely<br>
available and supported it is.<br>
<br>
More cheers in this case.<br>
<br>
On Sun, Dec 20, 2009 at 2:06 PM, john s wolter<br>
<<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=8" target="_top" rel="nofollow">johnswolter@...</a><br>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=9" target="_top" rel="nofollow">johnswolter@...</a>><br></div></div>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=10" target="_top" rel="nofollow">johnswolter@...</a><div class="ecxim"><br>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=11" target="_top" rel="nofollow">johnswolter@...</a>>>> wrote:<br>
<br>
Scott,<br>
<br>
Thank you for responding, I'll take a look at it to see how it<br>
works. The only concern is the echoServer not being GPL'd if I<br>
understand what you had to say about it.<br>
<br>
Cheers.<br>
<br>
<br>
On Sun, Dec 20, 2009 at 1:27 PM, Scott C. Best<br>
<<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=12" target="_top" rel="nofollow">sbest@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=13" target="_top" rel="nofollow">sbest@...</a>><br></div><div><div></div><div class="h5">
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=14" target="_top" rel="nofollow">sbest@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=15" target="_top" rel="nofollow">sbest@...</a>>>> wrote:<br>
<br>
John:<br>
<br>
Hello! I built a VNC-based system similar to<br>
TeamViewer, that<br>
can be configured to work directly with TightVNC. It's called<br>
EchoVNC,<br>
and works like this:<br>
<br>
1. Install EchoVNC on your TightVNC Server. EchoVNC by<br>
default comes<br>
with its own VNC service (we built our from the<br>
UltraVNC distro),<br>
but one of the configuration options lets you work with<br>
an already<br>
running VNC service. We also have a "zero config"<br>
version of the<br>
VNC server called InstantVNC, in case you just want to<br>
email<br>
something to a remote user that's not running VNC yet.<br>
<br>
2. Install EchoVNC on your TightVNC Viewer. Again,<br>
EchoVNC has it's<br>
own VNC Viewer application, but it can be configured to<br>
work with<br>
another platform's viewer.<br>
<br>
3. On both sides of the connection, login to the same<br>
echoServer.<br>
Think of that application as a "relay server" similar<br>
to what<br>
the TeamViewer service provides. In this setup, the<br>
echoServer is<br>
the only piece that requires firewall or NAT<br>
configuration. A<br>
static IP address for the echoServer is useful, but a<br>
dynDNS<br>
addrees also works. Once both sides (Viewer and Server) can<br>
connect and login, they can connect to each other.<br>
<br>
Once that's all setup, start the EchoVNC Viewer,<br>
and it will<br>
display a "point and click" list of remote clients you<br>
can kick off<br>
a TightVNC Viewer session with. Also, the "tunnel"<br>
created between<br>
the Viewer and Server and the echoServer during the VNC<br>
session is<br>
SSL-secured.<br>
<br>
Everything except the the echoServer (a shareware<br>
download<br>
available for Linux and Windows) is VNC-based, so all of<br>
those<br>
pieces<br>
are GPL'd open-source. More details here:<br>
<br>
<a href="http://www.echogent.com/download_echovnc.htm" target="_top" rel="nofollow">http://www.echogent.com/download_echovnc.htm</a><br>
<br>
Hope this helps, and I welcome any suggestions for<br>
improvement.<br>
<br>
cheers,<br>
Scott<br>
<br>
<br>
<br>
john s wolter wrote:<br>
<br>
The main obstacle I have in using TightVNC more<br>
widely is the<br>
setup with remote customers. It requires that I make<br>
a site<br>
visit and<br>
deal with all the routers and firewalls. Wouldn't it<br>
be nice<br>
if combined<br>
with SSL or TLS and other ToDo items if a remote setup<br>
facility could be<br>
created for TightVNC.<br>
<br>
I've just used TeamViewer with a customer and<br>
was able to<br>
install with the customer's help during a simple<br>
telephone<br>
conversation.<br>
<br>
TeamViewer is an VNC like package which uses it<br>
online servers<br>
to setup and help conduct remote sessions.<br>
TeamViewer has a<br>
download<br>
which installs its client-server software used during a<br>
remote session.<br>
Their servers handle tasks like session<br>
authentication and<br>
access<br>
control. It was a very straight forward process.<br>
<br>
Both parties in a remote session are TeamVieiwer<br>
members and<br>
have loaded their software onto the users computers.<br>
Needed<br>
passwords<br>
are communicated via telephone or IM session for remote<br>
sign-on and are<br>
different for every sign-on.<br>
<br>
TeamViewer does not have any need to setup the<br>
router<br>
in a<br>
NAT'ized network, i.e. no port forwarding setup is<br>
required.<br>
TeamViewer's software and online session manager handles<br>
everything<br>
needed to start a remote connection. I do not know but I<br>
would guess<br>
that after a remote connection is established the online<br>
session manager<br>
is not needed.<br>
<br>
I image an online hosted session service to<br>
perform<br>
sessions<br>
setups would be a possible approach. It would help<br>
do the<br>
remote setup<br>
and configure a route or port at the start of each<br>
session.<br>
This would<br>
be a separate software piece of this puzzle.<br>
<br>
Any thoughts?<br>
<br>
Cheers.<br>
<br>
------------------------------------------------------------<br>
John S. Wolter President<br>
Wolter Works<br>
<br>
<br>
<br>
<br>
<br>
-- ------------------------------------------------------------<br>
John S. Wolter President<br>
Wolter Works<br>
Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=16" target="_top" rel="nofollow">johnswolter@...</a><br>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=17" target="_top" rel="nofollow">johnswolter@...</a>><br>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=18" target="_top" rel="nofollow">johnswolter@...</a><br>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=19" target="_top" rel="nofollow">johnswolter@...</a>>><br>
<br>
<br>
Desk;1-734-665-1263<br>
Cell: 1-734-904-8433<br>
<br>
- Internet & IT Infrastructure Design & Build<br>
- Innovation in Product Design, Tradeoffs, Business consulting<br>
- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>
- Software Development & Embedded Systems<br>
<br>
Introduce us to new customers and earn rewards<br>
<br>
<br>
<br>
<br>
-- ------------------------------------------------------------<br>
John S. Wolter President<br>
Wolter Works<br>
Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=20" target="_top" rel="nofollow">johnswolter@...</a><br>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=21" target="_top" rel="nofollow">johnswolter@...</a>><br>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=22" target="_top" rel="nofollow">johnswolter@...</a><br>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=23" target="_top" rel="nofollow">johnswolter@...</a>>><br>
<br>
<br>
Desk;1-734-665-1263<br>
Cell: 1-734-904-8433<br>
<br>
- Internet & IT Infrastructure Design & Build<br>
- Innovation in Product Design, Tradeoffs, Business consulting<br>
- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>
- Software Development & Embedded Systems<br>
<br>
Introduce us to new customers and earn rewards<br>
<br>
<br>
------------------------------------------------------------------------<br>
<br>
<br>
------------------------------------------------------------------------------<br>
This SF.Net email is sponsored by the Verizon Developer Community<br>
Take advantage of Verizon's best-in-class app development support<br>
A streamlined, 14 day to market process makes app distribution<br>
fast and easy<br>
Join now and get one step closer to millions of Verizon customers<br>
<a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a><br>
<br>
------------------------------------------------------------------------<br>
<br>
___________________________________________________________<br>
TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=24" target="_top" rel="nofollow">VNC-Tight-list@...</a><br></div></div>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=25" target="_top" rel="nofollow">VNC-Tight-list@...</a>><div class="ecxim"><br>
To change your subscription or to UNSUBSCRIBE, please visit<br>
<a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br>
<br>
<br>
<br>
<br>
-- <br>
------------------------------------------------------------<br>
John S. Wolter President<br>
Wolter Works<br></div><div class="ecxim">
Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=26" target="_top" rel="nofollow">johnswolter@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=27" target="_top" rel="nofollow">johnswolter@...</a>><br>
<br>
Desk;1-734-665-1263<br>
Cell: 1-734-904-8433<br>
<br>
- Internet & IT Infrastructure Design & Build<br>
- Innovation in Product Design, Tradeoffs, Business consulting<br>
- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>
- Software Development & Embedded Systems<br>
<br>
Introduce us to new customers and earn rewards<br>
<br>
</div></blockquote>
</blockquote></div><br><br clear="all"><br>-- <br>------------------------------------------------------------<br>John S. Wolter President<br>Wolter Works<br>Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=28" target="_top" rel="nofollow">johnswolter@...</a><br>
<br>Desk;1-734-665-1263<br>Cell: 1-734-904-8433<br><br>- Internet & IT Infrastructure Design & Build<br>- Innovation in Product Design, Tradeoffs, Business consulting<br>- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>- Software Development & Embedded Systems<br><br>Introduce us to new customers and earn rewards<br><br> <br /><hr />Windows Live: Keep your friends up to date <a href='http://go.microsoft.com/?linkid=9691810' target='_new' rel="nofollow">with what you do online.</a></body>
</html><br />------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a> <br />___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26890570&i=29" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26880047Server not loaded sometimes2009-12-21T13:02:30Z2009-12-21T13:02:30ZHarry Benson-2Hi All,
<br><br>I have been using TightVNC for about 6 months and love it, thank you to all who develop it.
<br><br>I have two PCs at home running win2000-Pro SP4. I have TVNC set as a Server on both w2000 machines.
<br><br>My main machine is a Vista Home Premium and all are connected by 10/100 cable network.
<br><br>Sometimes when I switch on a remote machine the Vista TVNC Viewer will not find the remote TVNC server. The TVNC server appears not to be loaded at the Windows login page on the remote. I have to go to the remote PC and enter the Windows login password. Once the full OS is running then I can access it from the Vista TVNC Viewer.
<br><br>This happens about 40% of the times I try to hook to the remote. The other 60% of the times the process works fine and I can use the Vista TVNC Viewer to get to the Windows login of the remote and crank up the OS.
<br><br>Any suggestions please?
<br><br>Thanks
<br><br>Dave
<br><br><br><br>
<br><br>------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a>
<br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26880047&i=0" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26878757Re: TightVNC vs TeamViewer2009-12-21T11:19:25Z2009-12-21T11:19:25Zjohn s wolterEeeeeekkkkkk!!!!!!!<br><br><div class="gmail_quote">On Mon, Dec 21, 2009 at 12:24 PM, Allen <span dir="ltr"><<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=0" target="_top" rel="nofollow">netsecurity@...</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Hi John,<br>
<br>
(Picture very red face here!) Sorry to say it is even worse than I said, alas. SSL was brute force cracked and the encryption key recovered in 1995 by a bank of 112 ordinary desktops in 32 hours.<br>
<br>
Excellent article about this from 2004 at:<br>
<br>
<a href="http://www.marktaw.com/technology/HowlongdoesittaketocrackS.html" target="_blank" rel="nofollow">http://www.marktaw.com/technology/HowlongdoesittaketocrackS.html</a><br>
<br>
At that time the peak super computer speed was 70 teraflops and could crack the SSL encryption key in 7 minutes by one computer according to rough figures. Currently the peak is almost 3 petaflops so about 40 times faster.<br>
<br>
One can assume that while NSA, etc., probably don't have the fastest out there I'd bet they have a lot of capability. I'd guess that it probably takes less than 1 minute for them to crack SSL.<br>
<br>
Since SSL is only 128 bits this could be done by even small organizations because, after all, a couple of years ago $2500 would buy almost 30 gigaflops and 6 months later, August 2007, it was down to $1300 or < $50/gigaflop! (Let's see, Moore's Law, and it is 28 months since then, I'd guess < $20/gigaflop today.)<br>
<br>
There is another problem I wasn't aware of until I started looking closer and that is not all servers may be set up with 128 bit SSL, there are also 40 and 56 bit versions that might still be being used. Given the security assessments I've done and how badly organizations have done being up to date to current standards, I would not be all surprised to find some of the older ones still in place.<br>
<br>
So, for practical purposes SSL is *very* dead. Probably the only thing protecting it in reality is the amount of SSL traffic to and from banks, etc., that finding yours would be finding a needle in a haystack.<br>
<br>
SSH anyone? Well, according to RFC4253 SSH only SHOULD use 128 bits or more.<br>
<br>
<a href="http://www.ietf.org/rfc/rfc4253.txt" target="_blank" rel="nofollow">http://www.ietf.org/rfc/rfc4253.txt</a><br>
<br>
We are going to have to look very carefully at all of this as new and better cracks are coming along every day.<br>
<br>
Happy Holidays to all,<div class="im"><br>
<br>
Allen<br>
<br>
<br>
john s wolter wrote:<br>
</div><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Allen,<br>
<br>
Oh rats.<div><div></div><div class="h5"><br>
<br>
On Sun, Dec 20, 2009 at 3:54 PM, Allen <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=1" target="_top" rel="nofollow">netsecurity@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=2" target="_top" rel="nofollow">netsecurity@...</a>>> wrote:<br>
<br>
Yes, SSL has been cracked but it is quite tricky to do as I<br>
understand it. The real problem is that the data can be captured,<br>
stored and the SSL crack applied. Basically it is not primarily a<br>
crack of SSL but the creation of a rouge certificate authority then<br>
using a colliding certificates attack.<br>
<br>
"The vulnerability exploits a bug in the MD5 cryptographic hashing<br>
algorithm used to create some of the digital certificates published<br>
by certification authority (CA). The crack works because hashes are<br>
used to create a digital “fingerprint” that is supposed to uniquely<br>
identify a document and can easily be calculated to verify that the<br>
document hasn’t been modified in transit. But the flaw in the MD5<br>
algorithm makes it possible to create two different documents that<br>
have the same numerical hash value."<br>
<br>
From:<br>
<br>
<a href="http://www.mydigitallife.info/2009/01/01/researchers-crack-ssl-by-phishing-and-spoofing-digital-certification-authority-ca/" target="_blank" rel="nofollow">http://www.mydigitallife.info/2009/01/01/researchers-crack-ssl-by-phishing-and-spoofing-digital-certification-authority-ca/</a><br>
<br>
Pretty good overview.<br>
<br>
Well, we know that certificates can be forged and duplicate ones<br>
created by bit fiddling an embedded PDF file. So the real issue is<br>
connecting and staying with SSL. This is the key problem with<br>
something like echoServer. If SSL was used through an echoServer,<br>
but then the server dropped out of the loop after the initial<br>
connection was made to facilitate creating a direct machine to<br>
machine connection - using another protocol for encryption and key<br>
sharing via a challenge-response (with an asymmetric public/private<br>
encryption was used) so that no actual password was on the network -<br>
then SSL would be good enough for the initialization, at least for a<br>
while longer.<br>
<br>
Doing the key exchange this way and creating an direct tunnel avoids<br>
most of the problems associated with certificates. Yeah, I know,<br>
somebody will find a hole in this thinking big enough to swallow the<br>
Titanic sooner or later. ;-><br>
<br>
Best to All,<br>
<br>
Allen<br>
<br>
john s wolter wrote:<br>
<br>
Scott,<br>
<br>
One more unfortunate item is that I was just told by colleague<br>
under certain circumstances SSL can be cracked. Total bummer. I have not cracked it myself yet but I'm going to track down his<br>
statements.<br>
TLS appears to be beyond this problem but I wonder how widely<br>
available and supported it is.<br>
<br>
More cheers in this case.<br>
<br>
On Sun, Dec 20, 2009 at 2:06 PM, john s wolter<br>
<<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=3" target="_top" rel="nofollow">johnswolter@...</a><br>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=4" target="_top" rel="nofollow">johnswolter@...</a>><br></div></div>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=5" target="_top" rel="nofollow">johnswolter@...</a><div class="im"><br>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=6" target="_top" rel="nofollow">johnswolter@...</a>>>> wrote:<br>
<br>
Scott,<br>
<br>
Thank you for responding, I'll take a look at it to see how it<br>
works. The only concern is the echoServer not being GPL'd if I<br>
understand what you had to say about it.<br>
<br>
Cheers.<br>
<br>
<br>
On Sun, Dec 20, 2009 at 1:27 PM, Scott C. Best<br>
<<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=7" target="_top" rel="nofollow">sbest@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=8" target="_top" rel="nofollow">sbest@...</a>><br></div><div><div></div><div class="h5">
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=9" target="_top" rel="nofollow">sbest@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=10" target="_top" rel="nofollow">sbest@...</a>>>> wrote:<br>
<br>
John:<br>
<br>
Hello! I built a VNC-based system similar to<br>
TeamViewer, that<br>
can be configured to work directly with TightVNC. It's called<br>
EchoVNC,<br>
and works like this:<br>
<br>
1. Install EchoVNC on your TightVNC Server. EchoVNC by<br>
default comes<br>
with its own VNC service (we built our from the<br>
UltraVNC distro),<br>
but one of the configuration options lets you work with<br>
an already<br>
running VNC service. We also have a "zero config"<br>
version of the<br>
VNC server called InstantVNC, in case you just want to<br>
email<br>
something to a remote user that's not running VNC yet.<br>
<br>
2. Install EchoVNC on your TightVNC Viewer. Again,<br>
EchoVNC has it's<br>
own VNC Viewer application, but it can be configured to<br>
work with<br>
another platform's viewer.<br>
<br>
3. On both sides of the connection, login to the same<br>
echoServer.<br>
Think of that application as a "relay server" similar<br>
to what<br>
the TeamViewer service provides. In this setup, the<br>
echoServer is<br>
the only piece that requires firewall or NAT<br>
configuration. A<br>
static IP address for the echoServer is useful, but a<br>
dynDNS<br>
addrees also works. Once both sides (Viewer and Server) can<br>
connect and login, they can connect to each other.<br>
<br>
Once that's all setup, start the EchoVNC Viewer,<br>
and it will<br>
display a "point and click" list of remote clients you<br>
can kick off<br>
a TightVNC Viewer session with. Also, the "tunnel"<br>
created between<br>
the Viewer and Server and the echoServer during the VNC<br>
session is<br>
SSL-secured.<br>
<br>
Everything except the the echoServer (a shareware<br>
download<br>
available for Linux and Windows) is VNC-based, so all of<br>
those<br>
pieces<br>
are GPL'd open-source. More details here:<br>
<br>
<a href="http://www.echogent.com/download_echovnc.htm" target="_blank" rel="nofollow">http://www.echogent.com/download_echovnc.htm</a><br>
<br>
Hope this helps, and I welcome any suggestions for<br>
improvement.<br>
<br>
cheers,<br>
Scott<br>
<br>
<br>
<br>
john s wolter wrote:<br>
<br>
The main obstacle I have in using TightVNC more<br>
widely is the<br>
setup with remote customers. It requires that I make<br>
a site<br>
visit and<br>
deal with all the routers and firewalls. Wouldn't it<br>
be nice<br>
if combined<br>
with SSL or TLS and other ToDo items if a remote setup<br>
facility could be<br>
created for TightVNC.<br>
<br>
I've just used TeamViewer with a customer and<br>
was able to<br>
install with the customer's help during a simple<br>
telephone<br>
conversation.<br>
<br>
TeamViewer is an VNC like package which uses it<br>
online servers<br>
to setup and help conduct remote sessions.<br>
TeamViewer has a<br>
download<br>
which installs its client-server software used during a<br>
remote session.<br>
Their servers handle tasks like session<br>
authentication and<br>
access<br>
control. It was a very straight forward process.<br>
<br>
Both parties in a remote session are TeamVieiwer<br>
members and<br>
have loaded their software onto the users computers.<br>
Needed<br>
passwords<br>
are communicated via telephone or IM session for remote<br>
sign-on and are<br>
different for every sign-on.<br>
<br>
TeamViewer does not have any need to setup the<br>
router<br>
in a<br>
NAT'ized network, i.e. no port forwarding setup is<br>
required.<br>
TeamViewer's software and online session manager handles<br>
everything<br>
needed to start a remote connection. I do not know but I<br>
would guess<br>
that after a remote connection is established the online<br>
session manager<br>
is not needed.<br>
<br>
I image an online hosted session service to<br>
perform<br>
sessions<br>
setups would be a possible approach. It would help<br>
do the<br>
remote setup<br>
and configure a route or port at the start of each<br>
session.<br>
This would<br>
be a separate software piece of this puzzle.<br>
<br>
Any thoughts?<br>
<br>
Cheers.<br>
<br>
------------------------------------------------------------<br>
John S. Wolter President<br>
Wolter Works<br>
<br>
<br>
<br>
<br>
<br>
-- ------------------------------------------------------------<br>
John S. Wolter President<br>
Wolter Works<br>
Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=11" target="_top" rel="nofollow">johnswolter@...</a><br>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=12" target="_top" rel="nofollow">johnswolter@...</a>><br>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=13" target="_top" rel="nofollow">johnswolter@...</a><br>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=14" target="_top" rel="nofollow">johnswolter@...</a>>><br>
<br>
<br>
Desk;1-734-665-1263<br>
Cell: 1-734-904-8433<br>
<br>
- Internet & IT Infrastructure Design & Build<br>
- Innovation in Product Design, Tradeoffs, Business consulting<br>
- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>
- Software Development & Embedded Systems<br>
<br>
Introduce us to new customers and earn rewards<br>
<br>
<br>
<br>
<br>
-- ------------------------------------------------------------<br>
John S. Wolter President<br>
Wolter Works<br>
Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=15" target="_top" rel="nofollow">johnswolter@...</a><br>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=16" target="_top" rel="nofollow">johnswolter@...</a>><br>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=17" target="_top" rel="nofollow">johnswolter@...</a><br>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=18" target="_top" rel="nofollow">johnswolter@...</a>>><br>
<br>
<br>
Desk;1-734-665-1263<br>
Cell: 1-734-904-8433<br>
<br>
- Internet & IT Infrastructure Design & Build<br>
- Innovation in Product Design, Tradeoffs, Business consulting<br>
- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>
- Software Development & Embedded Systems<br>
<br>
Introduce us to new customers and earn rewards<br>
<br>
<br>
------------------------------------------------------------------------<br>
<br>
<br>
------------------------------------------------------------------------------<br>
This SF.Net email is sponsored by the Verizon Developer Community<br>
Take advantage of Verizon's best-in-class app development support<br>
A streamlined, 14 day to market process makes app distribution<br>
fast and easy<br>
Join now and get one step closer to millions of Verizon customers<br>
<a href="http://p.sf.net/sfu/verizon-dev2dev" target="_blank" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a><br>
<br>
------------------------------------------------------------------------<br>
<br>
___________________________________________________________<br>
TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=19" target="_top" rel="nofollow">VNC-Tight-list@...</a><br></div></div>
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=20" target="_top" rel="nofollow">VNC-Tight-list@...</a>><div class="im"><br>
To change your subscription or to UNSUBSCRIBE, please visit<br>
<a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_blank" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br>
<br>
<br>
<br>
<br>
-- <br>
------------------------------------------------------------<br>
John S. Wolter President<br>
Wolter Works<br></div><div class="im">
Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=21" target="_top" rel="nofollow">johnswolter@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=22" target="_top" rel="nofollow">johnswolter@...</a>><br>
<br>
Desk;1-734-665-1263<br>
Cell: 1-734-904-8433<br>
<br>
- Internet & IT Infrastructure Design & Build<br>
- Innovation in Product Design, Tradeoffs, Business consulting<br>
- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>
- Software Development & Embedded Systems<br>
<br>
Introduce us to new customers and earn rewards<br>
<br>
</div></blockquote>
</blockquote></div><br><br clear="all"><br>-- <br>------------------------------------------------------------<br>John S. Wolter President<br>Wolter Works<br>Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=23" target="_top" rel="nofollow">johnswolter@...</a><br>
<br>Desk;1-734-665-1263<br>Cell: 1-734-904-8433<br><br>- Internet & IT Infrastructure Design & Build<br>- Innovation in Product Design, Tradeoffs, Business consulting<br>- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>- Software Development & Embedded Systems<br><br>Introduce us to new customers and earn rewards<br><br>
<br />------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a> <br />___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26878757&i=24" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26877850RE: TightVNC vs TeamViewer2009-12-21T10:05:38Z2009-12-21T10:05:38ZMaverick88<html>
<head>
</head>
<body class='hmmessage'>
TLS is just the successor to SSL. It has been around since 1999.<br><br>See http://en.wikipedia.org/wiki/Transport_Layer_Security<br><br>It is VERY widespread.<br><br>Today, when people refer to SSL being used, they are really saying that TLS is being used,<br>You may also hear people say that "TLS is just the latest version of SSL". This statement is not totally accurate but for all intensive purposes it is.<br><br>Rob<br><br><hr id="stopSpelling">Date: Sun, 20 Dec 2009 14:10:08 -0500<br>Subject: Re: TightVNC vs TeamViewer<br>From: <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877850&i=0" target="_top" rel="nofollow">johnswolter@...</a><br>To: <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877850&i=1" target="_top" rel="nofollow">sbest@...</a><br>CC: <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877850&i=2" target="_top" rel="nofollow">vnc-tight-list@...</a><br><br>Scott,<br><br>One more unfortunate item is that I was just told by colleague under certain circumstances SSL can be cracked. Total bummer. I have not cracked it myself yet but I'm going to track down his statements. <br>
<br>TLS appears to be beyond this problem but I wonder how widely available and supported it is.<br><br>More cheers in this case.<br><br><div class="ecxgmail_quote">On Sun, Dec 20, 2009 at 2:06 PM, john s wolter <span dir="ltr"><<a target="_top"><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877850&i=3" target="_top" rel="nofollow">johnswolter@...</a></a>></span> wrote:<br>
<blockquote class="ecxgmail_quote" style="padding-left: 1ex;">Scott,<br><br>Thank you for responding, I'll take a look at it to see how it works. The only concern is the echoServer not being GPL'd if I understand what you had to say about it.<br>
<br>Cheers.<div><div></div><div class="h5"><br><br><div class="ecxgmail_quote">
On Sun, Dec 20, 2009 at 1:27 PM, Scott C. Best <span dir="ltr"><<a target="_top"><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877850&i=4" target="_top" rel="nofollow">sbest@...</a></a>></span> wrote:<br><blockquote class="ecxgmail_quote" style="padding-left: 1ex;">
John:<br>
<br>
Hello! I built a VNC-based system similar to TeamViewer, that<br>
can be configured to work directly with TightVNC. It's called EchoVNC,<br>
and works like this:<br>
<br>
1. Install EchoVNC on your TightVNC Server. EchoVNC by default comes<br>
with its own VNC service (we built our from the UltraVNC distro),<br>
but one of the configuration options lets you work with an already<br>
running VNC service. We also have a "zero config" version of the<br>
VNC server called InstantVNC, in case you just want to email<br>
something to a remote user that's not running VNC yet.<br>
<br>
2. Install EchoVNC on your TightVNC Viewer. Again, EchoVNC has it's<br>
own VNC Viewer application, but it can be configured to work with<br>
another platform's viewer.<br>
<br>
3. On both sides of the connection, login to the same echoServer.<br>
Think of that application as a "relay server" similar to what<br>
the TeamViewer service provides. In this setup, the echoServer is<br>
the only piece that requires firewall or NAT configuration. A<br>
static IP address for the echoServer is useful, but a dynDNS<br>
addrees also works. Once both sides (Viewer and Server) can<br>
connect and login, they can connect to each other.<br>
<br>
Once that's all setup, start the EchoVNC Viewer, and it will<br>
display a "point and click" list of remote clients you can kick off<br>
a TightVNC Viewer session with. Also, the "tunnel" created between<br>
the Viewer and Server and the echoServer during the VNC session is<br>
SSL-secured.<br>
<br>
Everything except the the echoServer (a shareware download<br>
available for Linux and Windows) is VNC-based, so all of those pieces<br>
are GPL'd open-source. More details here:<br>
<br>
<a target="_top">http://www.echogent.com/download_echovnc.htm</a><br>
<br>
Hope this helps, and I welcome any suggestions for improvement.<br>
<br>
cheers,<br><font color="#888888">
Scott</font><div><div></div><div><br>
<br>
<br>
<blockquote class="ecxgmail_quote" style="padding-left: 1ex;">
john s wolter wrote:<br>
<br>
The main obstacle I have in using TightVNC more widely is the<br>
setup with remote customers. It requires that I make a site visit and<br>
deal with all the routers and firewalls. Wouldn't it be nice if combined<br>
with SSL or TLS and other ToDo items if a remote setup facility could be<br>
created for TightVNC.<br>
<br>
I've just used TeamViewer with a customer and was able to<br>
install with the customer's help during a simple telephone conversation.<br>
<br>
TeamViewer is an VNC like package which uses it online servers<br>
to setup and help conduct remote sessions. TeamViewer has a download<br>
which installs its client-server software used during a remote session.<br>
Their servers handle tasks like session authentication and access<br>
control. It was a very straight forward process.<br>
<br>
Both parties in a remote session are TeamVieiwer members and<br>
have loaded their software onto the users computers. Needed passwords<br>
are communicated via telephone or IM session for remote sign-on and are<br>
different for every sign-on.<br>
<br>
TeamViewer does not have any need to setup the router in a<br>
NAT'ized network, i.e. no port forwarding setup is required.<br>
TeamViewer's software and online session manager handles everything<br>
needed to start a remote connection. I do not know but I would guess<br>
that after a remote connection is established the online session manager<br>
is not needed.<br>
<br>
I image an online hosted session service to perform sessions<br>
setups would be a possible approach. It would help do the remote setup<br>
and configure a route or port at the start of each session. This would<br>
be a separate software piece of this puzzle.<br>
<br>
Any thoughts?<br>
<br>
Cheers.<br>
<br>
------------------------------------------------------------<br>
John S. Wolter President<br>
Wolter Works<br>
</blockquote>
<br>
</div></div></blockquote></div><br><br clear="all"><br></div></div>-- <br><div class="ecxim">------------------------------------------------------------<br>John S. Wolter President<br>Wolter Works<br></div><div><div></div>
<div class="h5">Mailto:<a target="_top"><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877850&i=5" target="_top" rel="nofollow">johnswolter@...</a></a><br>
<br>Desk;1-734-665-1263<br>Cell: 1-734-904-8433<br><br>- Internet & IT Infrastructure Design & Build<br>- Innovation in Product Design, Tradeoffs, Business consulting<br>- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>- Software Development & Embedded Systems<br><br>Introduce us to new customers and earn rewards<br><br>
</div></div></blockquote></div><br><br clear="all"><br>-- <br>------------------------------------------------------------<br>John S. Wolter President<br>Wolter Works<br>Mailto:<a target="_top"><a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877850&i=6" target="_top" rel="nofollow">johnswolter@...</a></a><br>
<br>Desk;1-734-665-1263<br>Cell: 1-734-904-8433<br><br>- Internet & IT Infrastructure Design & Build<br>- Innovation in Product Design, Tradeoffs, Business consulting<br>- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>- Software Development & Embedded Systems<br><br>Introduce us to new customers and earn rewards<br><br> <br /><hr />Get a great deal on Windows 7 and see how it works the way you want. <a href='http://go.microsoft.com/?linkid=9691813' target='_new' rel="nofollow">See the Windows 7 offers now.</a></body>
</html><br />------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a> <br />___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877850&i=7" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26877803Problem: Socket error while writing2009-12-21T09:35:34Z2009-12-21T09:35:34ZMartin Valley<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.6000.16945" name=GENERATOR>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face=Arial>I have an installation of TightVNC (version 1.3.9 -
running on Windows XPPro) which is generating an error when any client tries to
use it.</FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT face=Arial>The error is: "Write Exact: Socket error while
writing".</FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT face=Arial>We have un-installed TightVNC, removed all references to
VNC from the registry and re-installed it - several times. Can't get past the
error.</FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT face=Arial>Can anyone tell me what's wrong and how do I fix
it?</FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT face=Arial>Thanks</FONT></DIV></BODY></HTML>
<br />------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a> <br />___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877803&i=0" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26877237Re: TightVNC vs TeamViewer2009-12-21T09:24:54Z2009-12-21T09:24:54ZAllen-5Hi John,
<br><br>(Picture very red face here!) Sorry to say it is even worse than
<br>I said, alas. SSL was brute force cracked and the encryption key
<br>recovered in 1995 by a bank of 112 ordinary desktops in 32 hours.
<br><br>Excellent article about this from 2004 at:
<br><br><a href="http://www.marktaw.com/technology/HowlongdoesittaketocrackS.html" target="_top" rel="nofollow">http://www.marktaw.com/technology/HowlongdoesittaketocrackS.html</a><br><br>At that time the peak super computer speed was 70 teraflops and
<br>could crack the SSL encryption key in 7 minutes by one computer
<br>according to rough figures. Currently the peak is almost 3
<br>petaflops so about 40 times faster.
<br><br>One can assume that while NSA, etc., probably don't have the
<br>fastest out there I'd bet they have a lot of capability. I'd
<br>guess that it probably takes less than 1 minute for them to crack
<br> SSL.
<br><br>Since SSL is only 128 bits this could be done by even small
<br>organizations because, after all, a couple of years ago $2500
<br>would buy almost 30 gigaflops and 6 months later, August 2007, it
<br>was down to $1300 or < $50/gigaflop! (Let's see, Moore's Law, and
<br>it is 28 months since then, I'd guess < $20/gigaflop today.)
<br><br>There is another problem I wasn't aware of until I started
<br>looking closer and that is not all servers may be set up with 128
<br>bit SSL, there are also 40 and 56 bit versions that might still
<br>be being used. Given the security assessments I've done and how
<br>badly organizations have done being up to date to current
<br>standards, I would not be all surprised to find some of the older
<br>ones still in place.
<br><br>So, for practical purposes SSL is *very* dead. Probably the only
<br>thing protecting it in reality is the amount of SSL traffic to
<br>and from banks, etc., that finding yours would be finding a
<br>needle in a haystack.
<br><br>SSH anyone? Well, according to RFC4253 SSH only SHOULD use 128
<br>bits or more.
<br><br><a href="http://www.ietf.org/rfc/rfc4253.txt" target="_top" rel="nofollow">http://www.ietf.org/rfc/rfc4253.txt</a><br><br>We are going to have to look very carefully at all of this as new
<br>and better cracks are coming along every day.
<br><br>Happy Holidays to all,
<br><br>Allen
<br><br><br>john s wolter wrote:
<div class='shrinkable-quote'><br>> Allen,
<br>>
<br>> Oh rats.
<br>>
<br>> On Sun, Dec 20, 2009 at 3:54 PM, Allen <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=0" target="_top" rel="nofollow">netsecurity@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=1" target="_top" rel="nofollow">netsecurity@...</a>>> wrote:
<br>>
<br>> Yes, SSL has been cracked but it is quite tricky to do as I
<br>> understand it. The real problem is that the data can be captured,
<br>> stored and the SSL crack applied. Basically it is not primarily a
<br>> crack of SSL but the creation of a rouge certificate authority then
<br>> using a colliding certificates attack.
<br>>
<br>> "The vulnerability exploits a bug in the MD5 cryptographic hashing
<br>> algorithm used to create some of the digital certificates published
<br>> by certification authority (CA). The crack works because hashes are
<br>> used to create a digital “fingerprint” that is supposed to uniquely
<br>> identify a document and can easily be calculated to verify that the
<br>> document hasn’t been modified in transit. But the flaw in the MD5
<br>> algorithm makes it possible to create two different documents that
<br>> have the same numerical hash value."
<br>>
<br>> From:
<br>>
<br>> <a href="http://www.mydigitallife.info/2009/01/01/researchers-crack-ssl-by-phishing-and-spoofing-digital-certification-authority-ca/" target="_top" rel="nofollow">http://www.mydigitallife.info/2009/01/01/researchers-crack-ssl-by-phishing-and-spoofing-digital-certification-authority-ca/</a><br>>
<br>> Pretty good overview.
<br>>
<br>> Well, we know that certificates can be forged and duplicate ones
<br>> created by bit fiddling an embedded PDF file. So the real issue is
<br>> connecting and staying with SSL. This is the key problem with
<br>> something like echoServer. If SSL was used through an echoServer,
<br>> but then the server dropped out of the loop after the initial
<br>> connection was made to facilitate creating a direct machine to
<br>> machine connection - using another protocol for encryption and key
<br>> sharing via a challenge-response (with an asymmetric public/private
<br>> encryption was used) so that no actual password was on the network -
<br>> then SSL would be good enough for the initialization, at least for a
<br>> while longer.
<br>>
<br>> Doing the key exchange this way and creating an direct tunnel avoids
<br>> most of the problems associated with certificates. Yeah, I know,
<br>> somebody will find a hole in this thinking big enough to swallow the
<br>> Titanic sooner or later. ;->
<br>>
<br>> Best to All,
<br>>
<br>> Allen
<br>>
<br>> john s wolter wrote:
<br>>
<br>> Scott,
<br>>
<br>> One more unfortunate item is that I was just told by colleague
<br>> under certain circumstances SSL can be cracked. Total bummer.
<br>> I have not cracked it myself yet but I'm going to track down his
<br>> statements.
<br>> TLS appears to be beyond this problem but I wonder how widely
<br>> available and supported it is.
<br>>
<br>> More cheers in this case.
<br>>
<br>> On Sun, Dec 20, 2009 at 2:06 PM, john s wolter
<br>> <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=2" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=3" target="_top" rel="nofollow">johnswolter@...</a>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=4" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=5" target="_top" rel="nofollow">johnswolter@...</a>>>> wrote:
<br>>
<br>> Scott,
<br>>
<br>> Thank you for responding, I'll take a look at it to see how it
<br>> works. The only concern is the echoServer not being GPL'd if I
<br>> understand what you had to say about it.
<br>>
<br>> Cheers.
<br>>
<br>>
<br>> On Sun, Dec 20, 2009 at 1:27 PM, Scott C. Best
<br>> <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=6" target="_top" rel="nofollow">sbest@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=7" target="_top" rel="nofollow">sbest@...</a>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=8" target="_top" rel="nofollow">sbest@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=9" target="_top" rel="nofollow">sbest@...</a>>>> wrote:
<br>>
<br>> John:
<br>>
<br>> Hello! I built a VNC-based system similar to
<br>> TeamViewer, that
<br>> can be configured to work directly with TightVNC. It's called
<br>> EchoVNC,
<br>> and works like this:
<br>>
<br>> 1. Install EchoVNC on your TightVNC Server. EchoVNC by
<br>> default comes
<br>> with its own VNC service (we built our from the
<br>> UltraVNC distro),
<br>> but one of the configuration options lets you work with
<br>> an already
<br>> running VNC service. We also have a "zero config"
<br>> version of the
<br>> VNC server called InstantVNC, in case you just want to
<br>> email
<br>> something to a remote user that's not running VNC yet.
<br>>
<br>> 2. Install EchoVNC on your TightVNC Viewer. Again,
<br>> EchoVNC has it's
<br>> own VNC Viewer application, but it can be configured to
<br>> work with
<br>> another platform's viewer.
<br>>
<br>> 3. On both sides of the connection, login to the same
<br>> echoServer.
<br>> Think of that application as a "relay server" similar
<br>> to what
<br>> the TeamViewer service provides. In this setup, the
<br>> echoServer is
<br>> the only piece that requires firewall or NAT
<br>> configuration. A
<br>> static IP address for the echoServer is useful, but a
<br>> dynDNS
<br>> addrees also works. Once both sides (Viewer and Server) can
<br>> connect and login, they can connect to each other.
<br>>
<br>> Once that's all setup, start the EchoVNC Viewer,
<br>> and it will
<br>> display a "point and click" list of remote clients you
<br>> can kick off
<br>> a TightVNC Viewer session with. Also, the "tunnel"
<br>> created between
<br>> the Viewer and Server and the echoServer during the VNC
<br>> session is
<br>> SSL-secured.
<br>>
<br>> Everything except the the echoServer (a shareware
<br>> download
<br>> available for Linux and Windows) is VNC-based, so all of
<br>> those
<br>> pieces
<br>> are GPL'd open-source. More details here:
<br>>
<br>> <a href="http://www.echogent.com/download_echovnc.htm" target="_top" rel="nofollow">http://www.echogent.com/download_echovnc.htm</a><br>>
<br>> Hope this helps, and I welcome any suggestions for
<br>> improvement.
<br>>
<br>> cheers,
<br>> Scott
<br>>
<br>>
<br>>
<br>> john s wolter wrote:
<br>>
<br>> The main obstacle I have in using TightVNC more
<br>> widely is the
<br>> setup with remote customers. It requires that I make
<br>> a site
<br>> visit and
<br>> deal with all the routers and firewalls. Wouldn't it
<br>> be nice
<br>> if combined
<br>> with SSL or TLS and other ToDo items if a remote setup
<br>> facility could be
<br>> created for TightVNC.
<br>>
<br>> I've just used TeamViewer with a customer and
<br>> was able to
<br>> install with the customer's help during a simple
<br>> telephone
<br>> conversation.
<br>>
<br>> TeamViewer is an VNC like package which uses it
<br>> online servers
<br>> to setup and help conduct remote sessions.
<br>> TeamViewer has a
<br>> download
<br>> which installs its client-server software used during a
<br>> remote session.
<br>> Their servers handle tasks like session
<br>> authentication and
<br>> access
<br>> control. It was a very straight forward process.
<br>>
<br>> Both parties in a remote session are TeamVieiwer
<br>> members and
<br>> have loaded their software onto the users computers.
<br>> Needed
<br>> passwords
<br>> are communicated via telephone or IM session for remote
<br>> sign-on and are
<br>> different for every sign-on.
<br>>
<br>> TeamViewer does not have any need to setup the
<br>> router
<br>> in a
<br>> NAT'ized network, i.e. no port forwarding setup is
<br>> required.
<br>> TeamViewer's software and online session manager handles
<br>> everything
<br>> needed to start a remote connection. I do not know but I
<br>> would guess
<br>> that after a remote connection is established the online
<br>> session manager
<br>> is not needed.
<br>>
<br>> I image an online hosted session service to
<br>> perform
<br>> sessions
<br>> setups would be a possible approach. It would help
<br>> do the
<br>> remote setup
<br>> and configure a route or port at the start of each
<br>> session.
<br>> This would
<br>> be a separate software piece of this puzzle.
<br>>
<br>> Any thoughts?
<br>>
<br>> Cheers.
<br>>
<br>>
<br>> ------------------------------------------------------------
<br>> John S. Wolter President
<br>> Wolter Works
<br>>
<br>>
<br>>
<br>>
<br>>
<br>> --
<br>> ------------------------------------------------------------
<br>> John S. Wolter President
<br>> Wolter Works
<br>> Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=10" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=11" target="_top" rel="nofollow">johnswolter@...</a>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=12" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=13" target="_top" rel="nofollow">johnswolter@...</a>>>
<br>>
<br>>
<br>> Desk;1-734-665-1263
<br>> Cell: 1-734-904-8433
<br>>
<br>> - Internet & IT Infrastructure Design & Build
<br>> - Innovation in Product Design, Tradeoffs, Business consulting
<br>> - Internet Business, Marketing, Design, Virtualization
<br>> - Engineered Systems Integrations
<br>> - Software Development & Embedded Systems
<br>>
<br>> Introduce us to new customers and earn rewards
<br>>
<br>>
<br>>
<br>>
<br>> --
<br>> ------------------------------------------------------------
<br>> John S. Wolter President
<br>> Wolter Works
<br>> Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=14" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=15" target="_top" rel="nofollow">johnswolter@...</a>>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=16" target="_top" rel="nofollow">johnswolter@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=17" target="_top" rel="nofollow">johnswolter@...</a>>>
<br>>
<br>>
<br>> Desk;1-734-665-1263
<br>> Cell: 1-734-904-8433
<br>>
<br>> - Internet & IT Infrastructure Design & Build
<br>> - Innovation in Product Design, Tradeoffs, Business consulting
<br>> - Internet Business, Marketing, Design, Virtualization
<br>> - Engineered Systems Integrations
<br>> - Software Development & Embedded Systems
<br>>
<br>> Introduce us to new customers and earn rewards
<br>>
<br>>
<br>> ------------------------------------------------------------------------
<br>>
<br>>
<br>> ------------------------------------------------------------------------------
<br>> This SF.Net email is sponsored by the Verizon Developer Community
<br>> Take advantage of Verizon's best-in-class app development support
<br>> A streamlined, 14 day to market process makes app distribution
<br>> fast and easy
<br>> Join now and get one step closer to millions of Verizon customers
<br>> <a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a><br>>
<br>> ------------------------------------------------------------------------
<br>>
<br>> ___________________________________________________________
<br>> TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=18" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=19" target="_top" rel="nofollow">VNC-Tight-list@...</a>>
<br>> To change your subscription or to UNSUBSCRIBE, please visit
<br>> <a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br>>
<br>>
<br>>
<br>>
<br>> --
<br>> ------------------------------------------------------------
<br>> John S. Wolter President
<br>> Wolter Works
<br>> Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=20" target="_top" rel="nofollow">johnswolter@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=21" target="_top" rel="nofollow">johnswolter@...</a>>
<br>>
<br>> Desk;1-734-665-1263
<br>> Cell: 1-734-904-8433
<br>>
<br>> - Internet & IT Infrastructure Design & Build
<br>> - Innovation in Product Design, Tradeoffs, Business consulting
<br>> - Internet Business, Marketing, Design, Virtualization
<br>> - Engineered Systems Integrations
<br>> - Software Development & Embedded Systems
<br>>
<br>> Introduce us to new customers and earn rewards
<br>>
</div><br>------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a>
<br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26877237&i=22" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26869352Re: TightVNC vs TeamViewer2009-12-20T18:31:11Z2009-12-20T18:31:11Zjohn s wolterAllen,<br><br>Oh rats.<br><br><div class="gmail_quote">On Sun, Dec 20, 2009 at 3:54 PM, Allen <span dir="ltr"><<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26869352&i=0" target="_top" rel="nofollow">netsecurity@...</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Yes, SSL has been cracked but it is quite tricky to do as I understand it. The real problem is that the data can be captured, stored and the SSL crack applied. Basically it is not primarily a crack of SSL but the creation of a rouge certificate authority then using a colliding certificates attack.<br>
<br>
"The vulnerability exploits a bug in the MD5 cryptographic hashing algorithm used to create some of the digital certificates published by certification authority (CA). The crack works because hashes are used to create a digital “fingerprint” that is supposed to uniquely identify a document and can easily be calculated to verify that the document hasn’t been modified in transit. But the flaw in the MD5 algorithm makes it possible to create two different documents that have the same numerical hash value."<br>
<br>
From:<br>
<br>
<a href="http://www.mydigitallife.info/2009/01/01/researchers-crack-ssl-by-phishing-and-spoofing-digital-certification-authority-ca/" target="_blank" rel="nofollow">http://www.mydigitallife.info/2009/01/01/researchers-crack-ssl-by-phishing-and-spoofing-digital-certification-authority-ca/</a><br>
<br>
Pretty good overview.<br>
<br>
Well, we know that certificates can be forged and duplicate ones created by bit fiddling an embedded PDF file. So the real issue is connecting and staying with SSL. This is the key problem with something like echoServer. If SSL was used through an echoServer, but then the server dropped out of the loop after the initial connection was made to facilitate creating a direct machine to machine connection - using another protocol for encryption and key sharing via a challenge-response (with an asymmetric public/private encryption was used) so that no actual password was on the network - then SSL would be good enough for the initialization, at least for a while longer.<br>
<br>
Doing the key exchange this way and creating an direct tunnel avoids most of the problems associated with certificates. Yeah, I know, somebody will find a hole in this thinking big enough to swallow the Titanic sooner or later. ;-><br>
<br>
Best to All,<br>
<br>
Allen<br>
<br>
john s wolter wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div class="im">
Scott,<br>
<br>
One more unfortunate item is that I was just told by colleague under certain circumstances SSL can be cracked. Total bummer. I have not cracked it myself yet but I'm going to track down his statements. <br>
TLS appears to be beyond this problem but I wonder how widely available and supported it is.<br>
<br>
More cheers in this case.<br>
<br></div><div class="im">
On Sun, Dec 20, 2009 at 2:06 PM, john s wolter <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26869352&i=1" target="_top" rel="nofollow">johnswolter@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26869352&i=2" target="_top" rel="nofollow">johnswolter@...</a>>> wrote:<br>
<br>
Scott,<br>
<br>
Thank you for responding, I'll take a look at it to see how it<br>
works. The only concern is the echoServer not being GPL'd if I<br>
understand what you had to say about it.<br>
<br>
Cheers.<br>
<br>
<br>
On Sun, Dec 20, 2009 at 1:27 PM, Scott C. Best <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26869352&i=3" target="_top" rel="nofollow">sbest@...</a><br></div><div><div></div><div class="h5">
<mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26869352&i=4" target="_top" rel="nofollow">sbest@...</a>>> wrote:<br>
<br>
John:<br>
<br>
Hello! I built a VNC-based system similar to TeamViewer, that<br>
can be configured to work directly with TightVNC. It's called<br>
EchoVNC,<br>
and works like this:<br>
<br>
1. Install EchoVNC on your TightVNC Server. EchoVNC by default comes<br>
with its own VNC service (we built our from the UltraVNC distro),<br>
but one of the configuration options lets you work with an already<br>
running VNC service. We also have a "zero config" version of the<br>
VNC server called InstantVNC, in case you just want to email<br>
something to a remote user that's not running VNC yet.<br>
<br>
2. Install EchoVNC on your TightVNC Viewer. Again, EchoVNC has it's<br>
own VNC Viewer application, but it can be configured to work with<br>
another platform's viewer.<br>
<br>
3. On both sides of the connection, login to the same echoServer.<br>
Think of that application as a "relay server" similar to what<br>
the TeamViewer service provides. In this setup, the echoServer is<br>
the only piece that requires firewall or NAT configuration. A<br>
static IP address for the echoServer is useful, but a dynDNS<br>
addrees also works. Once both sides (Viewer and Server) can<br>
connect and login, they can connect to each other.<br>
<br>
Once that's all setup, start the EchoVNC Viewer, and it will<br>
display a "point and click" list of remote clients you can kick off<br>
a TightVNC Viewer session with. Also, the "tunnel" created between<br>
the Viewer and Server and the echoServer during the VNC session is<br>
SSL-secured.<br>
<br>
Everything except the the echoServer (a shareware download<br>
available for Linux and Windows) is VNC-based, so all of those<br>
pieces<br>
are GPL'd open-source. More details here:<br>
<br>
<a href="http://www.echogent.com/download_echovnc.htm" target="_blank" rel="nofollow">http://www.echogent.com/download_echovnc.htm</a><br>
<br>
Hope this helps, and I welcome any suggestions for<br>
improvement.<br>
<br>
cheers,<br>
Scott<br>
<br>
<br>
<br>
john s wolter wrote:<br>
<br>
The main obstacle I have in using TightVNC more<br>
widely is the<br>
setup with remote customers. It requires that I make a site<br>
visit and<br>
deal with all the routers and firewalls. Wouldn't it be nice<br>
if combined<br>
with SSL or TLS and other ToDo items if a remote setup<br>
facility could be<br>
created for TightVNC.<br>
<br>
I've just used TeamViewer with a customer and was able to<br>
install with the customer's help during a simple telephone<br>
conversation.<br>
<br>
TeamViewer is an VNC like package which uses it<br>
online servers<br>
to setup and help conduct remote sessions. TeamViewer has a<br>
download<br>
which installs its client-server software used during a<br>
remote session.<br>
Their servers handle tasks like session authentication and<br>
access<br>
control. It was a very straight forward process.<br>
<br>
Both parties in a remote session are TeamVieiwer<br>
members and<br>
have loaded their software onto the users computers. Needed<br>
passwords<br>
are communicated via telephone or IM session for remote<br>
sign-on and are<br>
different for every sign-on.<br>
<br>
TeamViewer does not have any need to setup the router<br>
in a<br>
NAT'ized network, i.e. no port forwarding setup is required.<br>
TeamViewer's software and online session manager handles<br>
everything<br>
needed to start a remote connection. I do not know but I<br>
would guess<br>
that after a remote connection is established the online<br>
session manager<br>
is not needed.<br>
<br>
I image an online hosted session service to perform<br>
sessions<br>
setups would be a possible approach. It would help do the<br>
remote setup<br>
and configure a route or port at the start of each session.<br>
This would<br>
be a separate software piece of this puzzle.<br>
<br>
Any thoughts?<br>
<br>
Cheers.<br>
<br>
------------------------------------------------------------<br>
John S. Wolter President<br>
Wolter Works<br>
<br>
<br>
<br>
<br>
<br>
-- ------------------------------------------------------------<br>
John S. Wolter President<br>
Wolter Works<br></div></div>
Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26869352&i=5" target="_top" rel="nofollow">johnswolter@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26869352&i=6" target="_top" rel="nofollow">johnswolter@...</a>><div class="im">
<br>
<br>
Desk;1-734-665-1263<br>
Cell: 1-734-904-8433<br>
<br>
- Internet & IT Infrastructure Design & Build<br>
- Innovation in Product Design, Tradeoffs, Business consulting<br>
- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>
- Software Development & Embedded Systems<br>
<br>
Introduce us to new customers and earn rewards<br>
<br>
<br>
<br>
<br>
-- <br>
------------------------------------------------------------<br>
John S. Wolter President<br>
Wolter Works<br></div>
Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26869352&i=7" target="_top" rel="nofollow">johnswolter@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26869352&i=8" target="_top" rel="nofollow">johnswolter@...</a>><div class="im">
<br>
<br>
Desk;1-734-665-1263<br>
Cell: 1-734-904-8433<br>
<br>
- Internet & IT Infrastructure Design & Build<br>
- Innovation in Product Design, Tradeoffs, Business consulting<br>
- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>
- Software Development & Embedded Systems<br>
<br>
Introduce us to new customers and earn rewards<br>
<br>
<br></div>
------------------------------------------------------------------------<div class="im"><br>
<br>
------------------------------------------------------------------------------<br>
This SF.Net email is sponsored by the Verizon Developer Community<br>
Take advantage of Verizon's best-in-class app development support<br>
A streamlined, 14 day to market process makes app distribution fast and easy<br>
Join now and get one step closer to millions of Verizon customers<br>
<a href="http://p.sf.net/sfu/verizon-dev2dev" target="_blank" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a> <br>
<br>
------------------------------------------------------------------------<br>
<br>
___________________________________________________________<br>
TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26869352&i=9" target="_top" rel="nofollow">VNC-Tight-list@...</a><br>
To change your subscription or to UNSUBSCRIBE, please visit<br>
<a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_blank" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br>
</div></blockquote>
</blockquote></div><br><br clear="all"><br>-- <br>------------------------------------------------------------<br>John S. Wolter President<br>Wolter Works<br>Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26869352&i=10" target="_top" rel="nofollow">johnswolter@...</a><br>
<br>Desk;1-734-665-1263<br>Cell: 1-734-904-8433<br><br>- Internet & IT Infrastructure Design & Build<br>- Innovation in Product Design, Tradeoffs, Business consulting<br>- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>- Software Development & Embedded Systems<br><br>Introduce us to new customers and earn rewards<br><br>
<br />------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a> <br />___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26869352&i=11" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26869135Re: Tighet vnc java security issues2009-12-20T17:46:20Z2009-12-20T17:46:20ZConstantin KaplinskyHello Sherin,
<br><br>>>>>> sherin wrote:
<br><br>> Please help a little more with following doubts
<br>> 1) How to sign this java applet , do you have any urls
<br><br>There is a lot of information in the Internet. Start at Google:
<br><br><a href="http://www.google.com/search?hl=en&site=&q=how+to+sign+java+applets&btnG=Search" target="_top" rel="nofollow">http://www.google.com/search?hl=en&site=&q=how+to+sign+java+applets&btnG=Search</a><br><br>> 2) If I once signed this , can I use it in any server , I mean is it
<br>> possible to use the same jar file to other server
<br><br>Yes.
<br><br>--
<br>With Best Wishes,
<br>Constantin
<br><a href="http://www.tightvnc.com/" target="_top" rel="nofollow">http://www.tightvnc.com/</a><br><br>------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a>
<br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26869135&i=0" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26867302Re: TightVNC vs TeamViewer2009-12-20T13:02:47Z2009-12-20T13:02:47ZScott C. Best-2John:
<br><br> Hello! Yes, the echoServer itself is a "try before buy" commercial
<br>binary. It's pretty darn functional in its "unregistered" state, though
<br>actually registering it helps us keep the lights on. :)
<br><br>-Scott
<br><br>On Sun, 20 Dec 2009, john s wolter wrote:
<br><div class='shrinkable-quote'><br>> Scott,
<br>>
<br>> Thank you for responding, I'll take a look at it to see how it works. The
<br>> only concern is the echoServer not being GPL'd if I understand what you had
<br>> to say about it.
<br>>
<br>> Cheers.
<br>>
<br>> On Sun, Dec 20, 2009 at 1:27 PM, Scott C. Best <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26867302&i=0" target="_top" rel="nofollow">sbest@...</a>> wrote:
<br>>
<br>>> John:
<br>>>
<br>>> Hello! I built a VNC-based system similar to TeamViewer, that
<br>>> can be configured to work directly with TightVNC. It's called EchoVNC,
<br>>> and works like this:
<br>>>
<br>>> 1. Install EchoVNC on your TightVNC Server. EchoVNC by default comes
<br>>> with its own VNC service (we built our from the UltraVNC distro),
<br>>> but one of the configuration options lets you work with an already
<br>>> running VNC service. We also have a "zero config" version of the
<br>>> VNC server called InstantVNC, in case you just want to email
<br>>> something to a remote user that's not running VNC yet.
<br>>>
<br>>> 2. Install EchoVNC on your TightVNC Viewer. Again, EchoVNC has it's
<br>>> own VNC Viewer application, but it can be configured to work with
<br>>> another platform's viewer.
<br>>>
<br>>> 3. On both sides of the connection, login to the same echoServer.
<br>>> Think of that application as a "relay server" similar to what
<br>>> the TeamViewer service provides. In this setup, the echoServer is
<br>>> the only piece that requires firewall or NAT configuration. A
<br>>> static IP address for the echoServer is useful, but a dynDNS
<br>>> addrees also works. Once both sides (Viewer and Server) can
<br>>> connect and login, they can connect to each other.
<br>>>
<br>>> Once that's all setup, start the EchoVNC Viewer, and it will
<br>>> display a "point and click" list of remote clients you can kick off
<br>>> a TightVNC Viewer session with. Also, the "tunnel" created between
<br>>> the Viewer and Server and the echoServer during the VNC session is
<br>>> SSL-secured.
<br>>>
<br>>> Everything except the the echoServer (a shareware download
<br>>> available for Linux and Windows) is VNC-based, so all of those pieces
<br>>> are GPL'd open-source. More details here:
<br>>>
<br>>> <a href="http://www.echogent.com/download_echovnc.htm" target="_top" rel="nofollow">http://www.echogent.com/download_echovnc.htm</a><br>>>
<br>>> Hope this helps, and I welcome any suggestions for improvement.
<br>>>
<br>>> cheers,
<br>>> Scott
</div><snip>
<br><br><br>------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a>
<br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26867302&i=1" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26867719Re: TightVNC vs TeamViewer2009-12-20T12:54:05Z2009-12-20T12:54:05ZAllen-5Yes, SSL has been cracked but it is quite tricky to do as I
<br>understand it. The real problem is that the data can be captured,
<br>stored and the SSL crack applied. Basically it is not primarily a
<br>crack of SSL but the creation of a rouge certificate authority
<br>then using a colliding certificates attack.
<br><br>"The vulnerability exploits a bug in the MD5 cryptographic
<br>hashing algorithm used to create some of the digital certificates
<br>published by certification authority (CA). The crack works
<br>because hashes are used to create a digital “fingerprint” that is
<br>supposed to uniquely identify a document and can easily be
<br>calculated to verify that the document hasn’t been modified in
<br>transit. But the flaw in the MD5 algorithm makes it possible to
<br>create two different documents that have the same numerical hash
<br>value."
<br><br>From:
<br><br><a href="http://www.mydigitallife.info/2009/01/01/researchers-crack-ssl-by-phishing-and-spoofing-digital-certification-authority-ca/" target="_top" rel="nofollow">http://www.mydigitallife.info/2009/01/01/researchers-crack-ssl-by-phishing-and-spoofing-digital-certification-authority-ca/</a><br><br>Pretty good overview.
<br><br>Well, we know that certificates can be forged and duplicate ones
<br>created by bit fiddling an embedded PDF file. So the real issue
<br>is connecting and staying with SSL. This is the key problem with
<br>something like echoServer. If SSL was used through an echoServer,
<br>but then the server dropped out of the loop after the initial
<br>connection was made to facilitate creating a direct machine to
<br>machine connection - using another protocol for encryption and
<br>key sharing via a challenge-response (with an asymmetric
<br>public/private encryption was used) so that no actual password
<br>was on the network - then SSL would be good enough for the
<br>initialization, at least for a while longer.
<br><br>Doing the key exchange this way and creating an direct tunnel
<br>avoids most of the problems associated with certificates. Yeah, I
<br>know, somebody will find a hole in this thinking big enough to
<br>swallow the Titanic sooner or later. ;->
<br><br>Best to All,
<br><br>Allen
<br><br>john s wolter wrote:
<div class='shrinkable-quote'><br>> Scott,
<br>>
<br>> One more unfortunate item is that I was just told by colleague under
<br>> certain circumstances SSL can be cracked. Total bummer. I have not
<br>> cracked it myself yet but I'm going to track down his statements.
<br>>
<br>> TLS appears to be beyond this problem but I wonder how widely available
<br>> and supported it is.
<br>>
<br>> More cheers in this case.
<br>>
<br>> On Sun, Dec 20, 2009 at 2:06 PM, john s wolter
<br>> <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26867719&i=0" target="_top" rel="nofollow">johnswolter@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26867719&i=1" target="_top" rel="nofollow">johnswolter@...</a>>> wrote:
<br>>
<br>> Scott,
<br>>
<br>> Thank you for responding, I'll take a look at it to see how it
<br>> works. The only concern is the echoServer not being GPL'd if I
<br>> understand what you had to say about it.
<br>>
<br>> Cheers.
<br>>
<br>>
<br>> On Sun, Dec 20, 2009 at 1:27 PM, Scott C. Best <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26867719&i=2" target="_top" rel="nofollow">sbest@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26867719&i=3" target="_top" rel="nofollow">sbest@...</a>>> wrote:
<br>>
<br>> John:
<br>>
<br>> Hello! I built a VNC-based system similar to TeamViewer, that
<br>> can be configured to work directly with TightVNC. It's called
<br>> EchoVNC,
<br>> and works like this:
<br>>
<br>> 1. Install EchoVNC on your TightVNC Server. EchoVNC by default comes
<br>> with its own VNC service (we built our from the UltraVNC distro),
<br>> but one of the configuration options lets you work with an already
<br>> running VNC service. We also have a "zero config" version of the
<br>> VNC server called InstantVNC, in case you just want to email
<br>> something to a remote user that's not running VNC yet.
<br>>
<br>> 2. Install EchoVNC on your TightVNC Viewer. Again, EchoVNC has it's
<br>> own VNC Viewer application, but it can be configured to work with
<br>> another platform's viewer.
<br>>
<br>> 3. On both sides of the connection, login to the same echoServer.
<br>> Think of that application as a "relay server" similar to what
<br>> the TeamViewer service provides. In this setup, the echoServer is
<br>> the only piece that requires firewall or NAT configuration. A
<br>> static IP address for the echoServer is useful, but a dynDNS
<br>> addrees also works. Once both sides (Viewer and Server) can
<br>> connect and login, they can connect to each other.
<br>>
<br>> Once that's all setup, start the EchoVNC Viewer, and it will
<br>> display a "point and click" list of remote clients you can kick off
<br>> a TightVNC Viewer session with. Also, the "tunnel" created between
<br>> the Viewer and Server and the echoServer during the VNC session is
<br>> SSL-secured.
<br>>
<br>> Everything except the the echoServer (a shareware download
<br>> available for Linux and Windows) is VNC-based, so all of those
<br>> pieces
<br>> are GPL'd open-source. More details here:
<br>>
<br>> <a href="http://www.echogent.com/download_echovnc.htm" target="_top" rel="nofollow">http://www.echogent.com/download_echovnc.htm</a><br>>
<br>> Hope this helps, and I welcome any suggestions for
<br>> improvement.
<br>>
<br>> cheers,
<br>> Scott
<br>>
<br>>
<br>>
<br>> john s wolter wrote:
<br>>
<br>> The main obstacle I have in using TightVNC more
<br>> widely is the
<br>> setup with remote customers. It requires that I make a site
<br>> visit and
<br>> deal with all the routers and firewalls. Wouldn't it be nice
<br>> if combined
<br>> with SSL or TLS and other ToDo items if a remote setup
<br>> facility could be
<br>> created for TightVNC.
<br>>
<br>> I've just used TeamViewer with a customer and was able to
<br>> install with the customer's help during a simple telephone
<br>> conversation.
<br>>
<br>> TeamViewer is an VNC like package which uses it
<br>> online servers
<br>> to setup and help conduct remote sessions. TeamViewer has a
<br>> download
<br>> which installs its client-server software used during a
<br>> remote session.
<br>> Their servers handle tasks like session authentication and
<br>> access
<br>> control. It was a very straight forward process.
<br>>
<br>> Both parties in a remote session are TeamVieiwer
<br>> members and
<br>> have loaded their software onto the users computers. Needed
<br>> passwords
<br>> are communicated via telephone or IM session for remote
<br>> sign-on and are
<br>> different for every sign-on.
<br>>
<br>> TeamViewer does not have any need to setup the router
<br>> in a
<br>> NAT'ized network, i.e. no port forwarding setup is required.
<br>> TeamViewer's software and online session manager handles
<br>> everything
<br>> needed to start a remote connection. I do not know but I
<br>> would guess
<br>> that after a remote connection is established the online
<br>> session manager
<br>> is not needed.
<br>>
<br>> I image an online hosted session service to perform
<br>> sessions
<br>> setups would be a possible approach. It would help do the
<br>> remote setup
<br>> and configure a route or port at the start of each session.
<br>> This would
<br>> be a separate software piece of this puzzle.
<br>>
<br>> Any thoughts?
<br>>
<br>> Cheers.
<br>>
<br>>
<br>> ------------------------------------------------------------
<br>> John S. Wolter President
<br>> Wolter Works
<br>>
<br>>
<br>>
<br>>
<br>>
<br>> --
<br>> ------------------------------------------------------------
<br>> John S. Wolter President
<br>> Wolter Works
<br>> Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26867719&i=4" target="_top" rel="nofollow">johnswolter@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26867719&i=5" target="_top" rel="nofollow">johnswolter@...</a>>
<br>>
<br>> Desk;1-734-665-1263
<br>> Cell: 1-734-904-8433
<br>>
<br>> - Internet & IT Infrastructure Design & Build
<br>> - Innovation in Product Design, Tradeoffs, Business consulting
<br>> - Internet Business, Marketing, Design, Virtualization
<br>> - Engineered Systems Integrations
<br>> - Software Development & Embedded Systems
<br>>
<br>> Introduce us to new customers and earn rewards
<br>>
<br>>
<br>>
<br>>
<br>> --
<br>> ------------------------------------------------------------
<br>> John S. Wolter President
<br>> Wolter Works
<br>> Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26867719&i=6" target="_top" rel="nofollow">johnswolter@...</a> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26867719&i=7" target="_top" rel="nofollow">johnswolter@...</a>>
<br>>
<br>> Desk;1-734-665-1263
<br>> Cell: 1-734-904-8433
<br>>
<br>> - Internet & IT Infrastructure Design & Build
<br>> - Innovation in Product Design, Tradeoffs, Business consulting
<br>> - Internet Business, Marketing, Design, Virtualization
<br>> - Engineered Systems Integrations
<br>> - Software Development & Embedded Systems
<br>>
<br>> Introduce us to new customers and earn rewards
<br>>
<br>>
<br>> ------------------------------------------------------------------------
<br>>
<br>> ------------------------------------------------------------------------------
<br>> This SF.Net email is sponsored by the Verizon Developer Community
<br>> Take advantage of Verizon's best-in-class app development support
<br>> A streamlined, 14 day to market process makes app distribution fast and easy
<br>> Join now and get one step closer to millions of Verizon customers
<br>> <a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a>
<br>>
<br>>
<br>> ------------------------------------------------------------------------
<br>>
<br>> ___________________________________________________________
<br>> TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26867719&i=8" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>> To change your subscription or to UNSUBSCRIBE, please visit
<br>> <a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a></div><br>------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a>
<br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26867719&i=9" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26866365Re: TightVNC vs TeamViewer2009-12-20T11:10:08Z2009-12-20T11:10:08Zjohn s wolterScott,<br><br>One more unfortunate item is that I was just told by colleague under certain circumstances SSL can be cracked. Total bummer. I have not cracked it myself yet but I'm going to track down his statements. <br>
<br>TLS appears to be beyond this problem but I wonder how widely available and supported it is.<br><br>More cheers in this case.<br><br><div class="gmail_quote">On Sun, Dec 20, 2009 at 2:06 PM, john s wolter <span dir="ltr"><<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26866365&i=0" target="_top" rel="nofollow">johnswolter@...</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">Scott,<br><br>Thank you for responding, I'll take a look at it to see how it works. The only concern is the echoServer not being GPL'd if I understand what you had to say about it.<br>
<br>Cheers.<div><div></div><div class="h5"><br><br><div class="gmail_quote">
On Sun, Dec 20, 2009 at 1:27 PM, Scott C. Best <span dir="ltr"><<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26866365&i=1" target="_top" rel="nofollow">sbest@...</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
John:<br>
<br>
Hello! I built a VNC-based system similar to TeamViewer, that<br>
can be configured to work directly with TightVNC. It's called EchoVNC,<br>
and works like this:<br>
<br>
1. Install EchoVNC on your TightVNC Server. EchoVNC by default comes<br>
with its own VNC service (we built our from the UltraVNC distro),<br>
but one of the configuration options lets you work with an already<br>
running VNC service. We also have a "zero config" version of the<br>
VNC server called InstantVNC, in case you just want to email<br>
something to a remote user that's not running VNC yet.<br>
<br>
2. Install EchoVNC on your TightVNC Viewer. Again, EchoVNC has it's<br>
own VNC Viewer application, but it can be configured to work with<br>
another platform's viewer.<br>
<br>
3. On both sides of the connection, login to the same echoServer.<br>
Think of that application as a "relay server" similar to what<br>
the TeamViewer service provides. In this setup, the echoServer is<br>
the only piece that requires firewall or NAT configuration. A<br>
static IP address for the echoServer is useful, but a dynDNS<br>
addrees also works. Once both sides (Viewer and Server) can<br>
connect and login, they can connect to each other.<br>
<br>
Once that's all setup, start the EchoVNC Viewer, and it will<br>
display a "point and click" list of remote clients you can kick off<br>
a TightVNC Viewer session with. Also, the "tunnel" created between<br>
the Viewer and Server and the echoServer during the VNC session is<br>
SSL-secured.<br>
<br>
Everything except the the echoServer (a shareware download<br>
available for Linux and Windows) is VNC-based, so all of those pieces<br>
are GPL'd open-source. More details here:<br>
<br>
<a href="http://www.echogent.com/download_echovnc.htm" target="_blank" rel="nofollow">http://www.echogent.com/download_echovnc.htm</a><br>
<br>
Hope this helps, and I welcome any suggestions for improvement.<br>
<br>
cheers,<br><font color="#888888">
Scott</font><div><div></div><div><br>
<br>
<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
john s wolter wrote:<br>
<br>
The main obstacle I have in using TightVNC more widely is the<br>
setup with remote customers. It requires that I make a site visit and<br>
deal with all the routers and firewalls. Wouldn't it be nice if combined<br>
with SSL or TLS and other ToDo items if a remote setup facility could be<br>
created for TightVNC.<br>
<br>
I've just used TeamViewer with a customer and was able to<br>
install with the customer's help during a simple telephone conversation.<br>
<br>
TeamViewer is an VNC like package which uses it online servers<br>
to setup and help conduct remote sessions. TeamViewer has a download<br>
which installs its client-server software used during a remote session.<br>
Their servers handle tasks like session authentication and access<br>
control. It was a very straight forward process.<br>
<br>
Both parties in a remote session are TeamVieiwer members and<br>
have loaded their software onto the users computers. Needed passwords<br>
are communicated via telephone or IM session for remote sign-on and are<br>
different for every sign-on.<br>
<br>
TeamViewer does not have any need to setup the router in a<br>
NAT'ized network, i.e. no port forwarding setup is required.<br>
TeamViewer's software and online session manager handles everything<br>
needed to start a remote connection. I do not know but I would guess<br>
that after a remote connection is established the online session manager<br>
is not needed.<br>
<br>
I image an online hosted session service to perform sessions<br>
setups would be a possible approach. It would help do the remote setup<br>
and configure a route or port at the start of each session. This would<br>
be a separate software piece of this puzzle.<br>
<br>
Any thoughts?<br>
<br>
Cheers.<br>
<br>
------------------------------------------------------------<br>
John S. Wolter President<br>
Wolter Works<br>
</blockquote>
<br>
</div></div></blockquote></div><br><br clear="all"><br></div></div>-- <br><div class="im">------------------------------------------------------------<br>John S. Wolter President<br>Wolter Works<br></div><div><div></div>
<div class="h5">Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26866365&i=2" target="_top" rel="nofollow">johnswolter@...</a><br>
<br>Desk;1-734-665-1263<br>Cell: 1-734-904-8433<br><br>- Internet & IT Infrastructure Design & Build<br>- Innovation in Product Design, Tradeoffs, Business consulting<br>- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>- Software Development & Embedded Systems<br><br>Introduce us to new customers and earn rewards<br><br>
</div></div></blockquote></div><br><br clear="all"><br>-- <br>------------------------------------------------------------<br>John S. Wolter President<br>Wolter Works<br>Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26866365&i=3" target="_top" rel="nofollow">johnswolter@...</a><br>
<br>Desk;1-734-665-1263<br>Cell: 1-734-904-8433<br><br>- Internet & IT Infrastructure Design & Build<br>- Innovation in Product Design, Tradeoffs, Business consulting<br>- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>- Software Development & Embedded Systems<br><br>Introduce us to new customers and earn rewards<br><br>
<br />------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a> <br />___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26866365&i=4" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26866342Re: TightVNC vs TeamViewer2009-12-20T11:06:14Z2009-12-20T11:06:14Zjohn s wolterScott,<br><br>Thank you for responding, I'll take a look at it to see how it works. The only concern is the echoServer not being GPL'd if I understand what you had to say about it.<br><br>Cheers.<br><br><div class="gmail_quote">
On Sun, Dec 20, 2009 at 1:27 PM, Scott C. Best <span dir="ltr"><<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26866342&i=0" target="_top" rel="nofollow">sbest@...</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
John:<br>
<br>
Hello! I built a VNC-based system similar to TeamViewer, that<br>
can be configured to work directly with TightVNC. It's called EchoVNC,<br>
and works like this:<br>
<br>
1. Install EchoVNC on your TightVNC Server. EchoVNC by default comes<br>
with its own VNC service (we built our from the UltraVNC distro),<br>
but one of the configuration options lets you work with an already<br>
running VNC service. We also have a "zero config" version of the<br>
VNC server called InstantVNC, in case you just want to email<br>
something to a remote user that's not running VNC yet.<br>
<br>
2. Install EchoVNC on your TightVNC Viewer. Again, EchoVNC has it's<br>
own VNC Viewer application, but it can be configured to work with<br>
another platform's viewer.<br>
<br>
3. On both sides of the connection, login to the same echoServer.<br>
Think of that application as a "relay server" similar to what<br>
the TeamViewer service provides. In this setup, the echoServer is<br>
the only piece that requires firewall or NAT configuration. A<br>
static IP address for the echoServer is useful, but a dynDNS<br>
addrees also works. Once both sides (Viewer and Server) can<br>
connect and login, they can connect to each other.<br>
<br>
Once that's all setup, start the EchoVNC Viewer, and it will<br>
display a "point and click" list of remote clients you can kick off<br>
a TightVNC Viewer session with. Also, the "tunnel" created between<br>
the Viewer and Server and the echoServer during the VNC session is<br>
SSL-secured.<br>
<br>
Everything except the the echoServer (a shareware download<br>
available for Linux and Windows) is VNC-based, so all of those pieces<br>
are GPL'd open-source. More details here:<br>
<br>
<a href="http://www.echogent.com/download_echovnc.htm" target="_blank" rel="nofollow">http://www.echogent.com/download_echovnc.htm</a><br>
<br>
Hope this helps, and I welcome any suggestions for improvement.<br>
<br>
cheers,<br><font color="#888888">
Scott</font><div><div></div><div class="h5"><br>
<br>
<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
john s wolter wrote:<br>
<br>
The main obstacle I have in using TightVNC more widely is the<br>
setup with remote customers. It requires that I make a site visit and<br>
deal with all the routers and firewalls. Wouldn't it be nice if combined<br>
with SSL or TLS and other ToDo items if a remote setup facility could be<br>
created for TightVNC.<br>
<br>
I've just used TeamViewer with a customer and was able to<br>
install with the customer's help during a simple telephone conversation.<br>
<br>
TeamViewer is an VNC like package which uses it online servers<br>
to setup and help conduct remote sessions. TeamViewer has a download<br>
which installs its client-server software used during a remote session.<br>
Their servers handle tasks like session authentication and access<br>
control. It was a very straight forward process.<br>
<br>
Both parties in a remote session are TeamVieiwer members and<br>
have loaded their software onto the users computers. Needed passwords<br>
are communicated via telephone or IM session for remote sign-on and are<br>
different for every sign-on.<br>
<br>
TeamViewer does not have any need to setup the router in a<br>
NAT'ized network, i.e. no port forwarding setup is required.<br>
TeamViewer's software and online session manager handles everything<br>
needed to start a remote connection. I do not know but I would guess<br>
that after a remote connection is established the online session manager<br>
is not needed.<br>
<br>
I image an online hosted session service to perform sessions<br>
setups would be a possible approach. It would help do the remote setup<br>
and configure a route or port at the start of each session. This would<br>
be a separate software piece of this puzzle.<br>
<br>
Any thoughts?<br>
<br>
Cheers.<br>
<br>
------------------------------------------------------------<br>
John S. Wolter President<br>
Wolter Works<br>
</blockquote>
<br>
</div></div></blockquote></div><br><br clear="all"><br>-- <br>------------------------------------------------------------<br>John S. Wolter President<br>Wolter Works<br>Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26866342&i=1" target="_top" rel="nofollow">johnswolter@...</a><br>
<br>Desk;1-734-665-1263<br>Cell: 1-734-904-8433<br><br>- Internet & IT Infrastructure Design & Build<br>- Innovation in Product Design, Tradeoffs, Business consulting<br>- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>- Software Development & Embedded Systems<br><br>Introduce us to new customers and earn rewards<br><br>
<br />------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a> <br />___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26866342&i=2" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26866210Re: TightVNC vs TeamViewer2009-12-20T10:27:00Z2009-12-20T10:27:00ZScott C. Best-2John:
<br><br> Hello! I built a VNC-based system similar to TeamViewer, that
<br>can be configured to work directly with TightVNC. It's called EchoVNC,
<br>and works like this:
<br><br>1. Install EchoVNC on your TightVNC Server. EchoVNC by default comes
<br> with its own VNC service (we built our from the UltraVNC distro),
<br> but one of the configuration options lets you work with an already
<br> running VNC service. We also have a "zero config" version of the
<br> VNC server called InstantVNC, in case you just want to email
<br> something to a remote user that's not running VNC yet.
<br><br>2. Install EchoVNC on your TightVNC Viewer. Again, EchoVNC has it's
<br> own VNC Viewer application, but it can be configured to work with
<br> another platform's viewer.
<br><br>3. On both sides of the connection, login to the same echoServer.
<br> Think of that application as a "relay server" similar to what
<br> the TeamViewer service provides. In this setup, the echoServer is
<br> the only piece that requires firewall or NAT configuration. A
<br> static IP address for the echoServer is useful, but a dynDNS
<br> addrees also works. Once both sides (Viewer and Server) can
<br> connect and login, they can connect to each other.
<br><br> Once that's all setup, start the EchoVNC Viewer, and it will
<br>display a "point and click" list of remote clients you can kick off
<br>a TightVNC Viewer session with. Also, the "tunnel" created between
<br>the Viewer and Server and the echoServer during the VNC session is
<br>SSL-secured.
<br><br> Everything except the the echoServer (a shareware download
<br>available for Linux and Windows) is VNC-based, so all of those pieces
<br>are GPL'd open-source. More details here:
<br><br><a href="http://www.echogent.com/download_echovnc.htm" target="_top" rel="nofollow">http://www.echogent.com/download_echovnc.htm</a><br><br> Hope this helps, and I welcome any suggestions for improvement.
<br><br>cheers,
<br>Scott
<br><br><div class='shrinkable-quote'><br>> john s wolter wrote:
<br>>
<br>> The main obstacle I have in using TightVNC more widely is the
<br>> setup with remote customers. It requires that I make a site visit and
<br>> deal with all the routers and firewalls. Wouldn't it be nice if combined
<br>> with SSL or TLS and other ToDo items if a remote setup facility could be
<br>> created for TightVNC.
<br>>
<br>> I've just used TeamViewer with a customer and was able to
<br>> install with the customer's help during a simple telephone conversation.
<br>>
<br>> TeamViewer is an VNC like package which uses it online servers
<br>> to setup and help conduct remote sessions. TeamViewer has a download
<br>> which installs its client-server software used during a remote session.
<br>> Their servers handle tasks like session authentication and access
<br>> control. It was a very straight forward process.
<br>>
<br>> Both parties in a remote session are TeamVieiwer members and
<br>> have loaded their software onto the users computers. Needed passwords
<br>> are communicated via telephone or IM session for remote sign-on and are
<br>> different for every sign-on.
<br>>
<br>> TeamViewer does not have any need to setup the router in a
<br>> NAT'ized network, i.e. no port forwarding setup is required.
<br>> TeamViewer's software and online session manager handles everything
<br>> needed to start a remote connection. I do not know but I would guess
<br>> that after a remote connection is established the online session manager
<br>> is not needed.
<br>>
<br>> I image an online hosted session service to perform sessions
<br>> setups would be a possible approach. It would help do the remote setup
<br>> and configure a route or port at the start of each session. This would
<br>> be a separate software piece of this puzzle.
<br>>
<br>> Any thoughts?
<br>>
<br>> Cheers.
<br>>
<br>> ------------------------------------------------------------
<br>> John S. Wolter President
<br>> Wolter Works
</div><br><br>------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a>
<br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26866210&i=0" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26863912Re: Tighet vnc java security issues2009-12-20T06:16:23Z2009-12-20T06:16:23Zsherin-3Hello,
<br><br> Please help a little more with following doubts
<br> 1) How to sign this java applet , do you have any urls
<br> 2) If I once signed this , can I use it in any server , I mean is it
<br>possible to use the same jar file to other server
<br><br>Constantin Kaplinsky wrote:
<div class='shrinkable-quote'><br>> Hello Sherin,
<br>>
<br>>
<br>>>>>>> sherin wrote:
<br>>>>>>>
<br>>
<br>>
<br>>> I configured tighgtvnc java applet client and tried to connect to
<br>>> remote vnc server.
<br>>> My installation url is <a href="http://10.0.0.10/vnc.html" target="_top" rel="nofollow">http://10.0.0.10/vnc.html</a> and I am connecting
<br>>> to 10.0.0.20:5901 It is showing the following error.
<br>>> -------
<br>>> Error : access denied (java.net.Socketpermission...... )
<br>>> -------
<br>>> Any one know where to edit the code and how to do for fixing the above
<br>>> permission issue.
<br>>>
<br>>
<br>> That cannot be fixed by editing the code -- that's standard security
<br>> limitation for unsigned applets. The right way to solve the problem
<br>> would be signing the Java applet with some valid certificate.
<br>>
<br>>
</div><br>------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a>
<br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26863912&i=0" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26862749Re: Tighet vnc java security issues2009-12-20T03:50:58Z2009-12-20T03:50:58ZConstantin KaplinskyHello Sherin,
<br><br>>>>>> sherin wrote:
<br><br>> I configured tighgtvnc java applet client and tried to connect to
<br>> remote vnc server.
<br>> My installation url is <a href="http://10.0.0.10/vnc.html" target="_top" rel="nofollow">http://10.0.0.10/vnc.html</a> and I am connecting
<br>> to 10.0.0.20:5901 It is showing the following error.
<br>> -------
<br>> Error : access denied (java.net.Socketpermission...... )
<br>> -------
<br>> Any one know where to edit the code and how to do for fixing the above
<br>> permission issue.
<br><br>That cannot be fixed by editing the code -- that's standard security
<br>limitation for unsigned applets. The right way to solve the problem
<br>would be signing the Java applet with some valid certificate.
<br><br>--
<br>With Best Wishes,
<br>Constantin
<br><a href="http://www.tightvnc.com/" target="_top" rel="nofollow">http://www.tightvnc.com/</a><br><br>------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a>
<br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26862749&i=0" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26843107Tighet vnc java security issues2009-12-18T03:50:14Z2009-12-18T03:50:14Zsherin-3Hello ,
<br><br> I configured tighgtvnc java applet client and tried to connect to
<br>remote vnc server.
<br>My installation url is <a href="http://10.0.0.10/vnc.html" target="_top" rel="nofollow">http://10.0.0.10/vnc.html</a> and I am connecting
<br>to 10.0.0.20:5901 It is showing the following error.
<br>-------
<br>Error : access denied (java.net.Socketpermission...... )
<br>-------
<br>Any one know where to edit the code and how to do for fixing the above
<br>permission issue.
<br><br>Regards
<br>Sherin
<br><br>------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a>
<br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26843107&i=0" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26817837Re: TightVNC vs TeamViewer2009-12-16T12:18:14Z2009-12-16T12:18:14Zjohn s wolterIncentives, good idea. Imagine for a minute that a Dynamic DNS service like easynet in Canada adds a VNC connection service. They now earn money for DDNS. Why not Dynamic VNC? Someone will have to provide consulting to help them configure some open source software. This is standard way of using OSS for business.<br>
<br>That's an example of a business model. Another example might be a corporation that wants VNC service for its help desk but it must self deploy. They too may need help to set it up. These two examples show are typical ways open source software earns money. I'm sure other examples could be illustrated.<br>
<br>A connection service protocol in use now is SIP, Session Initiation Protocol. It's used to setup VoIP telephone call connections. RTP, Realtime Transport Protocol, is used for VoIP's voice packet transportation. Another is an IM protocol <a href="http://en.wikipedia.org/wiki/Xmpp" target="_top" rel="nofollow">XMPP</a> which originated with the open source Jabber project.<br>
<br>These are all a few examples to tweak the mind.<br><br>Cheers.<br><br><div class="gmail_quote">On Wed, Dec 16, 2009 at 2:56 PM, Bob McConnell <span dir="ltr"><<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26817837&i=0" target="_top" rel="nofollow">rvm@...</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">TightVNC is just a basic tool to access a remote computer. I assume that<br>
was the goal and it does that job very well. If you need more than that,<br>
it is probably not the right tool.<br>
<br>
In my case I use it over several VPN connections to allow me to reach<br>
desktops over the Internet. Those VPNs are provided by various firewalls<br>
and VNC is only one of the services they support. This allows me to work<br>
from home during inclement weather conditions or flu epidemics, as well<br>
as access computers at home while visiting my grandchildren.<br>
<br>
In addition to the tools mentioned below, we just finished a meeting<br>
were we used WebEx to share a desktop across several company locations<br>
between New York and California. In this case all of the remotes were<br>
all view only, but it is possible to hand off control of the desktop to<br>
another user at any time. We have also used PCAnywhere installed on<br>
customer computers for support of various products.<br>
<br>
There are a number of options, with a range of features in each. If this<br>
doesn't work for you, look around for something that will. Expecting the<br>
developers of TightVNC to make major changes to it just to meet your<br>
needs is somewhat unrealistic, unless you are prepared to provide them<br>
with some incentives to make it worth their while.<br>
<font color="#888888"><br>
Bob McConnell<br>
</font><div><div></div><div class="h5"><br>
-----Original Message-----<br>
From: Phil Tilson [mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26817837&i=1" target="_top" rel="nofollow">Phil@...</a>]<br>
Sent: Wednesday, December 16, 2009 11:56 AM<br>
To: <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26817837&i=2" target="_top" rel="nofollow">vnc-tight-list@...</a><br>
Subject: Re: TightVNC vs TeamViewer<br>
<br>
What you say is true, John, and also applies to LogMeIn.com which I use<br>
for external connections.<br>
<br>
The beauty of TightVNC (for me) is, however, that on my internal network<br>
I can access another PC just by double-clicking an icon on my desk. No<br>
browser, no connection time, no entering passwords and clicking multiple<br>
bits and pieces before I finally get through etc.<br>
<br>
I guess it's just 'horses for courses'!<br>
<br>
Phil<br>
<br>
<br>
<br>
john s wolter wrote:<br>
<br>
The main obstacle I have in using TightVNC more widely is the<br>
setup with remote customers. It requires that I make a site visit and<br>
deal with all the routers and firewalls. Wouldn't it be nice if combined<br>
with SSL or TLS and other ToDo items if a remote setup facility could be<br>
created for TightVNC.<br>
<br>
I've just used TeamViewer with a customer and was able to<br>
install with the customer's help during a simple telephone conversation.<br>
<br>
TeamViewer is an VNC like package which uses it online servers<br>
to setup and help conduct remote sessions. TeamViewer has a download<br>
which installs its client-server software used during a remote session.<br>
Their servers handle tasks like session authentication and access<br>
control. It was a very straight forward process.<br>
<br>
Both parties in a remote session are TeamVieiwer members and<br>
have loaded their software onto the users computers. Needed passwords<br>
are communicated via telephone or IM session for remote sign-on and are<br>
different for every sign-on.<br>
<br>
TeamViewer does not have any need to setup the router in a<br>
NAT'ized network, i.e. no port forwarding setup is required.<br>
TeamViewer's software and online session manager handles everything<br>
needed to start a remote connection. I do not know but I would guess<br>
that after a remote connection is established the online session manager<br>
is not needed.<br>
<br>
I image an online hosted session service to perform sessions<br>
setups would be a possible approach. It would help do the remote setup<br>
and configure a route or port at the start of each session. This would<br>
be a separate software piece of this puzzle.<br>
<br>
Any thoughts?<br>
<br>
Cheers.<br>
<br>
------------------------------------------------------------<br>
John S. Wolter President<br>
Wolter Works<br>
<br>
<br>
<br>
<br>
</div></div><div><div></div><div class="h5">------------------------------------------------------------------------------<br>
This SF.Net email is sponsored by the Verizon Developer Community<br>
Take advantage of Verizon's best-in-class app development support<br>
A streamlined, 14 day to market process makes app distribution fast and easy<br>
Join now and get one step closer to millions of Verizon customers<br>
<a href="http://p.sf.net/sfu/verizon-dev2dev" target="_blank" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a><br>
___________________________________________________________<br>
TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26817837&i=3" target="_top" rel="nofollow">VNC-Tight-list@...</a><br>
To change your subscription or to UNSUBSCRIBE, please visit<br>
<a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_blank" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br>
</div></div></blockquote></div><br><br clear="all"><br>-- <br>------------------------------------------------------------<br>John S. Wolter President<br>Wolter Works<br>Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26817837&i=4" target="_top" rel="nofollow">johnswolter@...</a><br>
<br>Desk;1-734-665-1263<br>Cell: 1-734-904-8433<br><br>- Internet & IT Infrastructure Design & Build<br>- Innovation in Product Design, Tradeoffs, Business consulting<br>- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>- Software Development & Embedded Systems<br><br>Introduce us to new customers and earn rewards<br><br>
<br />------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a> <br />___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26817837&i=5" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26817541RE: TightVNC vs TeamViewer2009-12-16T11:56:07Z2009-12-16T11:56:07ZBob McConnellTightVNC is just a basic tool to access a remote computer. I assume that
<br>was the goal and it does that job very well. If you need more than that,
<br>it is probably not the right tool.
<br><br>In my case I use it over several VPN connections to allow me to reach
<br>desktops over the Internet. Those VPNs are provided by various firewalls
<br>and VNC is only one of the services they support. This allows me to work
<br>from home during inclement weather conditions or flu epidemics, as well
<br>as access computers at home while visiting my grandchildren.
<br><br>In addition to the tools mentioned below, we just finished a meeting
<br>were we used WebEx to share a desktop across several company locations
<br>between New York and California. In this case all of the remotes were
<br>all view only, but it is possible to hand off control of the desktop to
<br>another user at any time. We have also used PCAnywhere installed on
<br>customer computers for support of various products.
<br><br>There are a number of options, with a range of features in each. If this
<br>doesn't work for you, look around for something that will. Expecting the
<br>developers of TightVNC to make major changes to it just to meet your
<br>needs is somewhat unrealistic, unless you are prepared to provide them
<br>with some incentives to make it worth their while.
<br><br>Bob McConnell
<br><br>-----Original Message-----
<br>From: Phil Tilson [mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26817541&i=0" target="_top" rel="nofollow">Phil@...</a>]
<br>Sent: Wednesday, December 16, 2009 11:56 AM
<br>To: <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26817541&i=1" target="_top" rel="nofollow">vnc-tight-list@...</a>
<br>Subject: Re: TightVNC vs TeamViewer
<br><br>What you say is true, John, and also applies to LogMeIn.com which I use
<br>for external connections.
<br><br>The beauty of TightVNC (for me) is, however, that on my internal network
<br>I can access another PC just by double-clicking an icon on my desk. No
<br>browser, no connection time, no entering passwords and clicking multiple
<br>bits and pieces before I finally get through etc.
<br><br>I guess it's just 'horses for courses'!
<br><br>Phil
<br><br><br><br>john s wolter wrote:
<br><br> The main obstacle I have in using TightVNC more widely is the
<br>setup with remote customers. It requires that I make a site visit and
<br>deal with all the routers and firewalls. Wouldn't it be nice if combined
<br>with SSL or TLS and other ToDo items if a remote setup facility could be
<br>created for TightVNC.
<br>
<br> I've just used TeamViewer with a customer and was able to
<br>install with the customer's help during a simple telephone conversation.
<br><br> TeamViewer is an VNC like package which uses it online servers
<br>to setup and help conduct remote sessions. TeamViewer has a download
<br>which installs its client-server software used during a remote session.
<br>Their servers handle tasks like session authentication and access
<br>control. It was a very straight forward process.
<br>
<br> Both parties in a remote session are TeamVieiwer members and
<br>have loaded their software onto the users computers. Needed passwords
<br>are communicated via telephone or IM session for remote sign-on and are
<br>different for every sign-on.
<br>
<br> TeamViewer does not have any need to setup the router in a
<br>NAT'ized network, i.e. no port forwarding setup is required.
<br>TeamViewer's software and online session manager handles everything
<br>needed to start a remote connection. I do not know but I would guess
<br>that after a remote connection is established the online session manager
<br>is not needed.
<br>
<br> I image an online hosted session service to perform sessions
<br>setups would be a possible approach. It would help do the remote setup
<br>and configure a route or port at the start of each session. This would
<br>be a separate software piece of this puzzle.
<br>
<br> Any thoughts?
<br>
<br> Cheers.
<br>
<br> ------------------------------------------------------------
<br> John S. Wolter President
<br> Wolter Works
<br>
<br><br><br><br>------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a>
<br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26817541&i=2" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26814887Re: TightVNC vs TeamViewer2009-12-16T08:55:53Z2009-12-16T08:55:53ZPhil Tilson<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
</head>
<body bgcolor="#ccffff" text="#000099">
What you say is true, John, and also applies to LogMeIn.com which I use
for external connections.<br>
<br>
The beauty of TightVNC (for me) is, however, that on my internal
network I can access another PC just by double-clicking an icon on my
desk. No browser, no connection time, no entering passwords and
clicking multiple bits and pieces before I finally get through etc.<br>
<br>
I guess it's just 'horses for courses'!<br>
<br>
Phil<br>
<br>
<br>
<br>
john s wolter wrote:
<blockquote cite="mid:24bcf1860912160830l4e60f552yb705d5a1c99c846@mail.gmail.com" type="cite">The main obstacle I have in using TightVNC more widely is
the setup
with remote customers. It requires that I make a site visit and deal
with all the routers and firewalls. Wouldn't it be nice if combined
with SSL or TLS and other ToDo items if a remote setup facility could
be created for TightVNC. <br>
<br>
I've just used TeamViewer with a customer and was able to install with
the customer's help during a simple telephone conversation. <br>
TeamViewer is an VNC like package which uses it online servers to setup
and help conduct remote sessions. TeamViewer has a download which
installs its client-server software used during a remote session.
Their servers handle tasks like session authentication and access
control. It was a very straight forward process.<br>
<br>
Both parties in a remote session are TeamVieiwer members and have
loaded their software onto the users computers. Needed passwords are
communicated via telephone or IM session for remote sign-on and are
different for every sign-on. <br>
<br>
TeamViewer does not have any need to setup the router in a NAT'ized
network, i.e. no port forwarding setup is required. TeamViewer's
software and online session manager handles everything needed to start
a remote connection. I do not know but I would guess that after a
remote connection is established the online session manager is not
needed.<br>
<br>
I image an online hosted session service to perform sessions setups
would be a possible approach. It would help do the remote setup and
configure a route or port at the start of each session. This would be
a separate software piece of this puzzle.<br>
<br>
Any thoughts?<br>
<br>
Cheers.<br clear="all">
<br>
------------------------------------------------------------<br>
John S. Wolter President<br>
Wolter Works<br>
</blockquote>
<br>
</body>
</html>
<br />------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a> <br />___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26814887&i=0" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26814132TightVNC vs TeamViewer2009-12-16T08:30:53Z2009-12-16T08:30:53Zjohn s wolterThe main obstacle I have in using TightVNC more widely is the setup
with remote customers. It requires that I make a site visit and deal
with all the routers and firewalls. Wouldn't it be nice if combined
with SSL or TLS and other ToDo items if a remote setup facility could
be created for TightVNC. <br>
<br>
I've just used TeamViewer with a customer and was able to install with the customer's help during a simple telephone conversation. <br>TeamViewer is an VNC like package which uses it online servers to setup and help conduct remote sessions. TeamViewer has a download which installs its client-server software used during a remote session. Their servers handle tasks like session authentication and access control. It was a very straight forward process.<br>
<br>Both parties in a remote session are TeamVieiwer members and have loaded their software onto the users computers. Needed passwords are communicated via telephone or IM session for remote sign-on and are different for every sign-on. <br>
<br>TeamViewer does not have any need to setup the router in a NAT'ized network, i.e. no port forwarding setup is required. TeamViewer's software and online session manager handles everything needed to start a remote connection. I do not know but I would guess that after a remote connection is established the online session manager is not needed.<br>
<br>I image an online hosted session service to perform sessions setups would be a possible approach. It would help do the remote setup and configure a route or port at the start of each session. This would be a separate software piece of this puzzle.<br>
<br>Any thoughts?<br><br>Cheers.<br clear="all"><br><br><br>-- <br>------------------------------------------------------------<br>John S. Wolter President<br>Wolter Works<br>Mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26814132&i=0" target="_top" rel="nofollow">johnswolter@...</a><br>
<br>Desk;1-734-665-1263<br>Cell: 1-734-904-8433<br><br>- Internet & IT Infrastructure Design & Build<br>- Innovation in Product Design, Tradeoffs, Business consulting<br>- Internet Business, Marketing, Design, Virtualization<br>
- Engineered Systems Integrations<br>- Software Development & Embedded Systems<br><br>Introduce us to new customers and earn rewards<br><br>
<br />------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a> <br />___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26814132&i=1" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26801063Re: Is it possible for a virus to spread through a TightVNC connection?2009-12-15T12:08:47Z2009-12-15T12:08:47Zadmin@tommazzo.comHi Constantin,
<br><br>Thank you for your help. That makes me feel safer.
<br><br>Best regards,
<br>Thomas
<br><br>-------- Original Message --------
<br>> From: "Constantin Kaplinsky" <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26801063&i=0" target="_top" rel="nofollow">const@...</a>>
<br>> Sent: Tuesday, December 15, 2009 6:07 AM
<br>> To: <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26801063&i=1" target="_top" rel="nofollow">admin@...</a>
<br>> Subject: Re: Is it possible for a virus to spread through a TightVNC
<br>connection?
<br>>
<br>> Hello Thomas,
<br>>
<br>> >>>>> <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26801063&i=2" target="_top" rel="nofollow">admin@...</a> wrote:
<br>>
<br>> > Both the server and the client are running Windows (the server Windows
<br><br>> > Vista and the client Windows 7). If the server has been infected with
<br>some
<br>> > kind of virus, worm or trojan, is there a way that the malware could
<br>spread
<div class='shrinkable-quote'><br>> > through the TightVNC connection to the client?
<br>>
<br>> That's very unlikely.
<br>>
<br>> I cannot say it's absolutely impossible though. Theoretically, the
<br>> viewer could have bugs which might be exploited that way. However, we
<br>> are not aware of any bugs or exploits of such kind.
<br>>
<br>> --
<br>> With Best Wishes,
<br>> Constantin
<br>> <a href="http://www.tightvnc.com/" target="_top" rel="nofollow">http://www.tightvnc.com/</a></div><br><br><br>------------------------------------------------------------------------------
<br>This SF.Net email is sponsored by the Verizon Developer Community
<br>Take advantage of Verizon's best-in-class app development support
<br>A streamlined, 14 day to market process makes app distribution fast and easy
<br>Join now and get one step closer to millions of Verizon customers
<br><a href="http://p.sf.net/sfu/verizon-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/verizon-dev2dev</a>
<br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26801063&i=3" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26789598Re: Is it possible for a virus to spread through a TightVNC connection?2009-12-14T21:07:56Z2009-12-14T21:07:56ZConstantin KaplinskyHello Thomas,
<br><br>>>>>> <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26789598&i=0" target="_top" rel="nofollow">admin@...</a> wrote:
<br><br>> Both the server and the client are running Windows (the server Windows
<br>> Vista and the client Windows 7). If the server has been infected with some
<br>> kind of virus, worm or trojan, is there a way that the malware could spread
<br>> through the TightVNC connection to the client?
<br><br>That's very unlikely.
<br><br>I cannot say it's absolutely impossible though. Theoretically, the
<br>viewer could have bugs which might be exploited that way. However, we
<br>are not aware of any bugs or exploits of such kind.
<br><br>--
<br>With Best Wishes,
<br>Constantin
<br><a href="http://www.tightvnc.com/" target="_top" rel="nofollow">http://www.tightvnc.com/</a><br><br>------------------------------------------------------------------------------
<br>Return on Information:
<br>Google Enterprise Search pays you back
<br>Get the facts.
<br><a href="http://p.sf.net/sfu/google-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/google-dev2dev</a><br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26789598&i=1" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26749245Re: VncServer on Linux. Must click for a window to open2009-12-11T10:22:10Z2009-12-11T10:22:10Zbrandon zeebI believe it's XFree86. I'll try firing up Gnome instead, that should be better for our purposes anyway, will let you know of my success.<div><br></div><div>Thanks a bunch for the tip!<br>~brandon<br><br><div class="gmail_quote">
On Fri, Dec 11, 2009 at 11:33 AM, Jim Redman <span dir="ltr"><<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26749245&i=0" target="_top" rel="nofollow">jredman@...</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
Brandon,<br>
<br>
I think that behavior is controlled by the window manager that you are<br>
using in Linux and doesn't have anything directly to do with VNC.<br>
<br>
That's controlled by one or more of the myriad X11 files. It probably<br>
all starts with the /etc/X11/xinit/xinitrc file, but branches out from<br>
there and depends on which distribution you are using.<br>
<br>
Jim<br>
<div><div></div><div class="h5"><br></div></div></blockquote></div></div>
<br />------------------------------------------------------------------------------
<br>Return on Information:
<br>Google Enterprise Search pays you back
<br>Get the facts.
<br><a href="http://p.sf.net/sfu/google-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/google-dev2dev</a><br><br />___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26749245&i=1" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26748220Re: VncServer on Linux. Must click for a window to open2009-12-11T08:33:15Z2009-12-11T08:33:15ZJim RedmanBrandon,
<br><br>I think that behavior is controlled by the window manager that you are
<br>using in Linux and doesn't have anything directly to do with VNC.
<br><br>That's controlled by one or more of the myriad X11 files. It probably
<br>all starts with the /etc/X11/xinit/xinitrc file, but branches out from
<br>there and depends on which distribution you are using.
<br><br>Jim
<br><br>brandon zeeb wrote:
<div class='shrinkable-quote'><br>> Good call. On Linux, the vncserver script wraps the call to Xvnc. I
<br>> can't find that option for Xvnc, maybe I'm overlooking something?
<br>>
<br>> use: X [:<display>] [option]
<br>> -a # mouse acceleration (pixels)
<br>> -ac disable access control restrictions
<br>> -audit int set audit trail level
<br>> -auth file select authorization file
<br>> bc enable bug compatibility
<br>> -br create root window with black background
<br>> +bs enable any backing store support
<br>> -bs disable any backing store support
<br>> -c turns off key-click
<br>> c # key-click volume (0-100)
<br>> -cc int default color visual class
<br>> -co file color database file
<br>> -core generate core dump on fatal error
<br>> -dpi int screen resolution in dots per inch
<br>> dpms enables VESA DPMS monitor control
<br>> -dpms disables VESA DPMS monitor control
<br>> -deferglyphs [none|all|16] defer loading of [no|all|16-bit] glyphs
<br>> -f # bell base (0-100)
<br>> -fc string cursor font
<br>> -fn string default font name
<br>> -fp string default font path
<br>> -help prints message with these options
<br>> -I ignore all remaining arguments
<br>> -ld int limit data space to N Kb
<br>> -lf int limit number of open files to N
<br>> -ls int limit stack space to N Kb
<br>> -nolock disable the locking mechanism
<br>> -logo enable logo in screen saver
<br>> nologo disable logo in screen saver
<br>> -nolisten string don't listen on protocol
<br>> -noreset don't reset after last client exists
<br>> -reset reset after last client exists
<br>> -p # screen-saver pattern duration (minutes)
<br>> -pn accept failure to listen on all ports
<br>> -nopn reject failure to listen on all ports
<br>> -r turns off auto-repeat
<br>> r turns on auto-repeat
<br>> -render [default|mono|gray|color] set render color alloc policy
<br>> -s # screen-saver timeout (minutes)
<br>> -sp file security policy file
<br>> -su disable any save under support
<br>> -t # mouse threshold (pixels)
<br>> -terminate terminate at server reset
<br>> -to # connection time out
<br>> -tst disable testing extensions
<br>> ttyxx server started from init on /dev/ttyxx
<br>> v video blanking for screen-saver
<br>> -v screen-saver without video blanking
<br>> -wm WhenMapped default backing-store
<br>> -x string loads named extension at init time
<br>> -maxbigreqsize set maximal bigrequest size
<br>> +xinerama Enable XINERAMA extension
<br>> -xinerama Disable XINERAMA extension
<br>> -dumbSched Disable smart scheduling, enable old behavior
<br>> -schedInterval int Set scheduler interval in msec
<br>> +extension name Enable extension
<br>> -extension name Disable extension
<br>> -query host-name contact named host for XDMCP
<br>> -broadcast broadcast for XDMCP
<br>> -multicast [addr [hops]] IPv6 multicast for XDMCP
<br>> -indirect host-name contact named host for indirect XDMCP
<br>> -port port-num UDP port number to send messages to
<br>> -from local-address specify the local address to connect from
<br>> -once Terminate server after one session
<br>> -class display-class specify display class to send in manage
<br>> -cookie xdm-auth-bits specify the magic cookie for XDMCP
<br>> -displayID display-id manufacturer display ID for request
<br>> The X Keyboard Extension adds the following arguments:
<br>> -kb disable the X Keyboard Extension
<br>> +kb enable the X Keyboard Extension
<br>> [+-]accessx [ timeout [ timeout_mask [ feedback [ options_mask] ] ] ]
<br>> enable/disable accessx key sequences
<br>> -ar1 set XKB autorepeat delay
<br>> -ar2 set XKB autorepeat interval
<br>> -noloadxkb don't load XKB keymap description
<br>> -xkbdb file that contains default XKB keymaps
<br>> -xkbmap XKB keyboard description to load on startup
<br>> -geometry WxH set framebuffer width & height
<br>> -depth D set framebuffer depth
<br>> -pixelformat format set pixel format (BGRnnn or RGBnnn)
<br>> -udpinputport port UDP port for keyboard/pointer data
<br>> -rfbport port TCP port for RFB protocol
<br>> -rfbwait time max time in ms to wait for RFB client
<br>> -nocursor don't put up a cursor
<br>> -rfbauth passwd-file use authentication on RFB protocol
<br>> -loginauth use login-style Unix authentication
<br>> -httpd dir serve files via HTTP from here
<br>> -httpport port port for HTTP
<br>> -deferupdate time time in ms to defer updates (default 40)
<br>> -economictranslate less memory-hungry translation
<br>> -lazytight disable "gradient" filter in tight encoding
<br>> -desktop name VNC desktop name (default x11)
<br>> -alwaysshared always treat new clients as shared
<br>> -nevershared never treat new clients as shared
<br>> -dontdisconnect don't disconnect existing clients when a new
<br>> non-shared
<br>> connection comes in (refuse new connection instead)
<br>> -localhost only allow connections from localhost
<br>> to the vnc ports. Use -nolisten tcp to disable
<br>> remote X clients as well.
<br>> -viewonly let clients only view the desktop
<br>> -interface ipaddr only bind to specified interface address
<br>> -inetd Xvnc is launched by inetd
<br>>
<br>>
<br>> On Fri, Dec 11, 2009 at 10:49 AM, Bob McConnell <<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26748220&i=0" target="_top" rel="nofollow">rvm@...</a>
<br>> <mailto:<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26748220&i=1" target="_top" rel="nofollow">rvm@...</a>>> wrote:
<br>>
<br>> From: brandon zeeb
<br>>
<br>> > I'm using tightvnc's vncserver to create a display on a
<br>> > headless Linux server for Selenium testing.
<br>> >
<br>> > Every time a new window opens, either by selenium or by
<br>> > hand over VNC, I have to click in the VNC window before
<br>> > the application will paint and fully load to the screen.
<br>> >
<br>> > Is there a way to disable this? I need many programs to
<br>> > open and close on their own without the need for me to
<br>> > click them into existance.
<br>>
<br>> I have not looked at the TightVNC server on Linux, as I need to connect
<br>> to an existing display there. But the Windows server has a setting for
<br>> poll frequency to trigger a periodic screen refresh. Does the Linux
<br>> server have that option? What happens when you adjust that period?
<br>>
<br>> Bob McConnell
<br>>
<br>>
<br>>
<br>> ------------------------------------------------------------------------
<br>>
<br>> ------------------------------------------------------------------------------
<br>> Return on Information:
<br>> Google Enterprise Search pays you back
<br>> Get the facts.
<br>> <a href="http://p.sf.net/sfu/google-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/google-dev2dev</a><br>>
<br>>
<br>> ------------------------------------------------------------------------
<br>>
<br>> ___________________________________________________________
<br>> TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26748220&i=2" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>> To change your subscription or to UNSUBSCRIBE, please visit
<br>> <a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a></div><br>--
<br>Jim Redman
<br>(505) 662 5156 x85
<br><a href="http://www.ergotech.com" target="_top" rel="nofollow">http://www.ergotech.com</a><br><br>------------------------------------------------------------------------------
<br>Return on Information:
<br>Google Enterprise Search pays you back
<br>Get the facts.
<br><a href="http://p.sf.net/sfu/google-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/google-dev2dev</a><br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26748220&i=3" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26747085Re: VncServer on Linux. Must click for a window to open2009-12-11T08:13:41Z2009-12-11T08:13:41Zbrandon zeebGood call. On Linux, the vncserver script wraps the call to Xvnc. I can't find that option for Xvnc, maybe I'm overlooking something?<div><br></div><div><div>use: X [:<display>] [option]</div><div>-a # mouse acceleration (pixels)</div>
<div>-ac disable access control restrictions</div><div>-audit int set audit trail level</div><div>-auth file select authorization file</div><div>bc enable bug compatibility</div>
<div>-br create root window with black background</div><div>+bs enable any backing store support</div><div>-bs disable any backing store support</div><div>-c turns off key-click</div>
<div>c # key-click volume (0-100)</div><div>-cc int default color visual class</div><div>-co file color database file</div><div>-core generate core dump on fatal error</div>
<div>-dpi int screen resolution in dots per inch</div><div>dpms enables VESA DPMS monitor control</div><div>-dpms disables VESA DPMS monitor control</div><div>-deferglyphs [none|all|16] defer loading of [no|all|16-bit] glyphs</div>
<div>-f # bell base (0-100)</div><div>-fc string cursor font</div><div>-fn string default font name</div><div>-fp string default font path</div><div>-help prints message with these options</div>
<div>-I ignore all remaining arguments</div><div>-ld int limit data space to N Kb</div><div>-lf int limit number of open files to N</div><div>-ls int limit stack space to N Kb</div>
<div>-nolock disable the locking mechanism</div><div>-logo enable logo in screen saver</div><div>nologo disable logo in screen saver</div><div>-nolisten string don't listen on protocol</div>
<div>-noreset don't reset after last client exists</div><div>-reset reset after last client exists</div><div>-p # screen-saver pattern duration (minutes)</div><div>-pn accept failure to listen on all ports</div>
<div>-nopn reject failure to listen on all ports</div><div>-r turns off auto-repeat</div><div>r turns on auto-repeat</div><div>-render [default|mono|gray|color] set render color alloc policy</div>
<div>-s # screen-saver timeout (minutes)</div><div>-sp file security policy file</div><div>-su disable any save under support</div><div>-t # mouse threshold (pixels)</div>
<div>-terminate terminate at server reset</div><div>-to # connection time out</div><div>-tst disable testing extensions</div><div>ttyxx server started from init on /dev/ttyxx</div>
<div>v video blanking for screen-saver</div><div>-v screen-saver without video blanking</div><div>-wm WhenMapped default backing-store</div><div>-x string loads named extension at init time</div>
<div>-maxbigreqsize set maximal bigrequest size</div><div>+xinerama Enable XINERAMA extension</div><div>-xinerama Disable XINERAMA extension</div><div>-dumbSched Disable smart scheduling, enable old behavior</div>
<div>-schedInterval int Set scheduler interval in msec</div><div>+extension name Enable extension</div><div>-extension name Disable extension</div><div>-query host-name contact named host for XDMCP</div>
<div>-broadcast broadcast for XDMCP</div><div>-multicast [addr [hops]] IPv6 multicast for XDMCP</div><div>-indirect host-name contact named host for indirect XDMCP</div><div>-port port-num UDP port number to send messages to</div>
<div>-from local-address specify the local address to connect from</div><div>-once Terminate server after one session</div><div>-class display-class specify display class to send in manage</div><div>
-cookie xdm-auth-bits specify the magic cookie for XDMCP</div><div>-displayID display-id manufacturer display ID for request</div><div>The X Keyboard Extension adds the following arguments:</div><div>-kb disable the X Keyboard Extension</div>
<div>+kb enable the X Keyboard Extension</div><div>[+-]accessx [ timeout [ timeout_mask [ feedback [ options_mask] ] ] ]</div><div> enable/disable accessx key sequences</div><div>-ar1 set XKB autorepeat delay</div>
<div>-ar2 set XKB autorepeat interval</div><div>-noloadxkb don't load XKB keymap description</div><div>-xkbdb file that contains default XKB keymaps</div><div>-xkbmap XKB keyboard description to load on startup</div>
<div>-geometry WxH set framebuffer width & height</div><div>-depth D set framebuffer depth</div><div>-pixelformat format set pixel format (BGRnnn or RGBnnn)</div><div>-udpinputport port UDP port for keyboard/pointer data</div>
<div>-rfbport port TCP port for RFB protocol</div><div>-rfbwait time max time in ms to wait for RFB client</div><div>-nocursor don't put up a cursor</div><div>-rfbauth passwd-file use authentication on RFB protocol</div>
<div>-loginauth use login-style Unix authentication</div><div>-httpd dir serve files via HTTP from here</div><div>-httpport port port for HTTP</div><div>-deferupdate time time in ms to defer updates (default 40)</div>
<div>-economictranslate less memory-hungry translation</div><div>-lazytight disable "gradient" filter in tight encoding</div><div>-desktop name VNC desktop name (default x11)</div><div>-alwaysshared always treat new clients as shared</div>
<div>-nevershared never treat new clients as shared</div><div>-dontdisconnect don't disconnect existing clients when a new non-shared</div><div> connection comes in (refuse new connection instead)</div>
<div>-localhost only allow connections from localhost</div><div> to the vnc ports. Use -nolisten tcp to disable</div><div> remote X clients as well.</div><div>
-viewonly let clients only view the desktop</div><div>-interface ipaddr only bind to specified interface address</div><div>-inetd Xvnc is launched by inetd</div><div><br></div><br><div class="gmail_quote">
On Fri, Dec 11, 2009 at 10:49 AM, Bob McConnell <span dir="ltr"><<a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26747085&i=0" target="_top" rel="nofollow">rvm@...</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
From: brandon zeeb<br>
<div><div></div><div class="h5"><br>
> I'm using tightvnc's vncserver to create a display on a<br>
> headless Linux server for Selenium testing.<br>
><br>
> Every time a new window opens, either by selenium or by<br>
> hand over VNC, I have to click in the VNC window before<br>
> the application will paint and fully load to the screen.<br>
><br>
> Is there a way to disable this? I need many programs to<br>
> open and close on their own without the need for me to<br>
> click them into existance.<br>
<br>
</div></div>I have not looked at the TightVNC server on Linux, as I need to connect<br>
to an existing display there. But the Windows server has a setting for<br>
poll frequency to trigger a periodic screen refresh. Does the Linux<br>
server have that option? What happens when you adjust that period?<br>
<font color="#888888"><br>
Bob McConnell<br>
</font></blockquote></div><br></div>
<br />------------------------------------------------------------------------------
<br>Return on Information:
<br>Google Enterprise Search pays you back
<br>Get the facts.
<br><a href="http://p.sf.net/sfu/google-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/google-dev2dev</a><br><br />___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26747085&i=1" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26746602RE: VncServer on Linux. Must click for a window to open2009-12-11T07:49:39Z2009-12-11T07:49:39ZBob McConnellFrom: brandon zeeb
<br><div class='shrinkable-quote'><br>> I'm using tightvnc's vncserver to create a display on a
<br>> headless Linux server for Selenium testing.
<br>>
<br>> Every time a new window opens, either by selenium or by
<br>> hand over VNC, I have to click in the VNC window before
<br>> the application will paint and fully load to the screen.
<br>>
<br>> Is there a way to disable this? I need many programs to
<br>> open and close on their own without the need for me to
<br>> click them into existance.
</div><br>I have not looked at the TightVNC server on Linux, as I need to connect
<br>to an existing display there. But the Windows server has a setting for
<br>poll frequency to trigger a periodic screen refresh. Does the Linux
<br>server have that option? What happens when you adjust that period?
<br><br>Bob McConnell
<br><br>------------------------------------------------------------------------------
<br>Return on Information:
<br>Google Enterprise Search pays you back
<br>Get the facts.
<br><a href="http://p.sf.net/sfu/google-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/google-dev2dev</a><br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26746602&i=0" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26745991VncServer on Linux. Must click for a window to open2009-12-11T07:13:37Z2009-12-11T07:13:37Zbrandon zeebHey everyone,<div><br></div><div>I'm using tightvnc's vncserver to create a display on a headless Linux server for Selenium testing. </div><div><br></div><div>Every time a new window opens, either by selenium or by hand over VNC, I have to <b>click</b> in the VNC window before the application will paint and fully load to the screen.</div>
<div><br></div><div>Is there a way to disable this? I need many programs to open and close on their own without the need for me to click them into existance.</div><div><br></div><div>Thanks!<br>~Brandon</div>
<br />------------------------------------------------------------------------------
<br>Return on Information:
<br>Google Enterprise Search pays you back
<br>Get the facts.
<br><a href="http://p.sf.net/sfu/google-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/google-dev2dev</a><br><br />___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26745991&i=0" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26745043Is it possible for a virus to spread through a TightVNC connection?2009-12-11T05:59:24Z2009-12-11T05:59:24Zadmin@tommazzo.comHi everyone,
<br><br>I am new to TightVNC and I have a question regarding security.
<br>Both the server and the client are running Windows (the server Windows
<br>Vista and the client Windows 7). If the server has been infected with some
<br>kind of virus, worm or trojan, is there a way that the malware could spread
<br>through the TightVNC connection to the client?
<br><br>Best regards,
<br>Thomas
<br><br><br>------------------------------------------------------------------------------
<br>Return on Information:
<br>Google Enterprise Search pays you back
<br>Get the facts.
<br><a href="http://p.sf.net/sfu/google-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/google-dev2dev</a><br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26745043&i=0" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26740762VNC Viewer connection to dedicated VNC server?2009-12-11T00:52:03Z2009-12-11T00:52:03Zc.montyhello!
<br><br>on my server, the following VNC processes are running:
<br>oxvm1-sles10:~ # ps -aux | grep vnc
<br>nobody 3137 0.0 0.0 22876 6708 ? Ss Dec04 0:00 Xvnc :42 -inetd -once -query localhost -geometry 1024x768 -depth 16
<br>root 25808 0.0 0.0 3028 692 pts/0 R+ 08:21 0:00 grep vnc
<br>root 28807 0.0 0.1 27756 11808 ? S Dec06 0:00 Xvnc :2 -desktop X -httpd /usr/share/vnc/classes -auth /root/.Xauthority -geometry 1024x768 -depth 24 -rfbwait 120000 -rfbauth /root/.vnc/passwd -rfbport 5902 -fp /usr/X11R6/lib/X11/fonts/misc:unscaled,/usr/X11R6/lib/X11/fonts/local,/usr/X11R6/lib/X11/fonts/75dpi:unscaled,/usr/X11R6/lib/X11/fonts/100dpi:unscaled,/usr/X11R6/lib/X11/fonts/Type1,/usr/X11R6/lib/X11/fonts/URW,/usr/X11R6/lib/X11/fonts/Speedo,/usr/X11R6/lib/X11/fonts/truetype,/usr/X11R6/lib/X11/fonts/uni,/usr/X11R6/lib/X11/fonts/CID
<br>oxvm1-sles10:~ #
<br><br>I want to connect to the :2 desktop.
<br><br>However, when I connect with TightVNC Viewer to <IP-adress>:42, no connection will be started.
<br><br>When I connect to <IP-adress> only, a new desktop session :3 will be started.
<br><br>I have modified file /etc/xinetd.d/vnc as instructed from XenServer guide (the server is running in a VM of XenServer):
<br>service vnc1
<br>{
<br>socket_type = stream
<br>protocol = tcp
<br>wait = no
<br>user = nobody
<br>server = /usr/X11R6/bin/Xvnc
<br>server_args = :42 -inetd -once -query localhost -geometry 1024x768 -depth 16
<br>type = UNLISTED
<br>port = 5901
<br>}
<br><br>Question:
<br>How can I setup a connection to the running VNC instance :2?
<br><br><br>Thanks!
<br><br><br>------------------------------------------------------------------------------
<br>Return on Information:
<br>Google Enterprise Search pays you back
<br>Get the facts.
<br><a href="http://p.sf.net/sfu/google-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/google-dev2dev</a><br>___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26740762&i=0" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>tag:old.nabble.com,2006:post-26740059How to get the geometry (include title bar and border) of a window in Xvnc2009-12-11T00:04:22Z2009-12-11T00:04:22Zhongqun<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=us-ascii">
<META content="MSHTML 6.00.6000.16809" name=GENERATOR><LINK href="BLOCKQUOTE{margin-Top: 0px; margin-Bottom: 0px; margin-Left: 2em}" rel=stylesheet></HEAD>
<BODY style="FONT-SIZE: 10pt; MARGIN: 10px; FONT-FAMILY: verdana">
<DIV><FONT face=Verdana size=2>Dear All,</FONT></DIV>
<DIV>Now I want to get the size of a window in Xvnc, but I find the result
is only drawable area.The WindowRec struct seems only for drawable
area.</DIV>
<DIV><FONT face=Verdana size=2>It make me upset! Is anybody can tell me how to
get the geometry(include the title bar and border) of a window in
Xvnc?</FONT></DIV>
<DIV>Thank you very much!</DIV>
<DIV> </DIV>
<DIV>Hong Qun</DIV>
<DIV> </DIV>
<DIV><FONT face=Verdana color=#c0c0c0 size=2>2009-12-11 </FONT></DIV><FONT face=Verdana size=2>
<HR style="WIDTH: 122px; HEIGHT: 2px" align=left SIZE=2>
<DIV><FONT face=Verdana color=#c0c0c0 size=2><SPAN>hongqun</SPAN>
</FONT></DIV></FONT></BODY></HTML>
<br />------------------------------------------------------------------------------
<br>Return on Information:
<br>Google Enterprise Search pays you back
<br>Get the facts.
<br><a href="http://p.sf.net/sfu/google-dev2dev" target="_top" rel="nofollow">http://p.sf.net/sfu/google-dev2dev</a><br><br />___________________________________________________________
<br>TightVNC mailing list, <a href="http://old.nabble.com/user/SendEmail.jtp?type=post&post=26740059&i=0" target="_top" rel="nofollow">VNC-Tight-list@...</a>
<br>To change your subscription or to UNSUBSCRIBE, please visit
<br><a href="https://lists.sourceforge.net/lists/listinfo/vnc-tight-list" target="_top" rel="nofollow">https://lists.sourceforge.net/lists/listinfo/vnc-tight-list</a><br><p>From forum: <a href="http://old.nabble.com/VNC-Tight-List-f24111.html" embed="fixTarget[24111]" target="_top" >VNC Tight List</a></p>