Right,
I want to be able to use my home machine, which is behind a smoothwall (firewall / router) box, so was going to put VNC on there, and then open that port on smoothwall so that it should work, and was thinking of using a complicated password...
do you think this is a good idea or a bad idea?
should i leave the machine locked so that when i get into vnc i will also need to log onto a local account, as a second level of security?
cheers
josh
Join the HEXUS Folding at Home Team!!
Welcome to HEXUS! - Read this if you're new!
hexus trust | joshwaller.co.uk | digicamreview.com | tea review
- are you on the Hexus social map?
use TightVNC - its got better encryption.
better still, set up a VPN ( have you got a copy of 2000/2003 server running ? )
my Virtualisation Blog http://jfvi.co.uk Virtualisation Podcast http://vsoup.net
got 2000 server running - vpn ?
Join the HEXUS Folding at Home Team!!
Welcome to HEXUS! - Read this if you're new!
hexus trust | joshwaller.co.uk | digicamreview.com | tea review
- are you on the Hexus social map?
I'm with MD on this; I've used VNC for remote server management, but ONLY through a 3DES/MD5 VPN connection. By all means lock the machine, but remember with VNC you might as well be giving anyone who's got that far physical access anyway, so don't rely on locking it for security.
Why not use Terminal services?
I would use a VPN to establish authenticated sessions and lock down the IP addresses permitted to connect, if your router supports it, then use Terminal Services as it's built into Windows.
Also use a separate account that is permitted to use TS sessions, and does NOT have admin rights.
If you need to transfer files over the connection then I guess you're looking at a 3rd-party solution, as I think you're limited to clipboard copying over TS.
Not familiar with VNC so couldn't comment on that.
~ I have CDO. It's like OCD except the letters are in alphabetical order, as they should be. ~
[ Technet Blog ]
PC: Win8 x64 | Gigabyte GA-X58A-UD3R | Core i7 950 | 12GB DDR3 | 120GB SSD | 2x500GB SATA-300 | GeForce GTX670 4GB
Camera: Canon 60D | Sigma 10-20/4.0-5.6 | Canon 100/2.8 | Tamron 18-270/3.5-6.3
would that work, even though it's not "windows 2000 terminal server edition..." thingy ?Originally posted by Jiff Lemon
Why not use Terminal services?
also what port(s) would i need to let through the smoothwall firewall?
Join the HEXUS Folding at Home Team!!
Welcome to HEXUS! - Read this if you're new!
hexus trust | joshwaller.co.uk | digicamreview.com | tea review
- are you on the Hexus social map?
Yes it would work as Win2k server has TS admin mode that doesnt require the extra licensing that application mode does. I believe that the port number is 3389.
terminal service can be used in Remote Administration mode with up to 2 concurrent connections. you' may well need to add it in "add/remove windows components"
if you are running a PPTP VPN then I think you need to allow port 1723 and protocol 47 thorugh the smoothwall to your server , then set the VPN up on that.
my Virtualisation Blog http://jfvi.co.uk Virtualisation Podcast http://vsoup.net
i use vnc and find its very easy to use especially when your not at home and you need some files for someone elses pc
The problem is that it's not very secure!Originally posted by Wombatwilson
i use vnc and find its very easy to use especially when your not at home and you need some files for someone elses pc
If you find setting up a VPN a pain in the arse (and most people do I think) then a (possibly less useful) solution would be to only open up the VNC port(s) to known IP addresses (i.e. if you want to access your home PC from work / uni only let the IP addresses in that you need).
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
LinkBack URL
About LinkBacks
Reply With Quote
