Re: Looking for VNC Viewer with special features

2001-07-04 Thread Joshua J. Kugler 

Well, the viewer is open source...you could change its behavior, I 
suppose.  But are you not a C++ kind of guy?  :) Don't worry, neither am I. :)

j- k-

At 13:24 Tuesday 7/3/2001 +, you allegedly said:
>I am looking for a Pocket PC version of the VNC viewer
>with the following features :-
>
>1) for Compaq iPaq,
>2) has no menu bar,
>3) never shows the scroll bars (even if the server screen
>size is greater).
>
>The aim is to maximise the screen area on the iPaq.
>
>Can anybody help ?
>Thanks,
>Steve.


Joshua J. Kugler
Fairbanks, Alaska
Computer Consultant--Web Developer
.--- --- ...  ..- .--.- ..- --. .-.. . .-.
[EMAIL PROTECTED]
ICQ#:13706295
Every knee shall bow, and every tongue confess, in heaven, on earth, and 
under the earth, that Jesus Christ is LORD -- Count on it!
-
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
-

Re: Warning when starting vncserver

2001-07-04 Thread Joshua J. Kugler 

It is a perl message.  Try reinstalling your locale packages.  And make 
sure they are the latest ones for your OS.  That's what worked for me.

j- k-

At 13:15 Monday 7/2/2001 +0100, you allegedly said:
>I am still waiting for some help.
>TIA
>Saleemah
>
>-- Forwarded by Saleemah Barkatoolah/Lewisham on 
>02/07/2001
>13:21 ---
>
>
>Saleemah Barkatoolah
>28/06/2001 11:01
>
>To:   [EMAIL PROTECTED]
>cc:
>
>Subject:  Warning when starting vncserver
>
>I am using vnc display to install oracle 8I on AIX 4.3.2.
>
>When I start vncserver, the following warning appears
>$ vncserver -geometry 700x500 :2
>perl: warning: Setting locale failed.
>perl: warning: Please check that your locale settings:
> LC_ALL = (unset),
> LC__FASTMSG = "true",
> LANG = "en_GB"
> are supported and installed on your system.
>perl: warning: Falling back to the standard locale ("C").
>
>New 'X' desktop is bcbackup:2
>
>.
>
>Starting applications specified in /APOLLO/oracle/test/v8.1.6/.vnc/xstartup
>Log file is /APOLLO/oracle/test/v8.1.6/.vnc/bcbackup:2.log
>
>The same warning appears on killing the session.
>
>I have included and exported these 2 variables (LC__FASTMSG="true",LANG =
>"en_GB") in the .profile of the user starting the vnc session.
>Still same warning.
>Please help
>
>TIA
>Saleemah
>
>
>
>
>Information in this message is confidential and may also be legally 
>privileged.
>It is intended solely for the person to whom it is addressed. If you are 
>not the
>intended recipient, please notify the sender, and then please delete the 
>message
>from your system immediately.
>-
>To unsubscribe, send a message with the line: unsubscribe vnc-list
>to [EMAIL PROTECTED]
>See also: http://www.uk.research.att.com/vnc/intouch.html
>-


Joshua J. Kugler
Fairbanks, Alaska
Computer Consultant--Web Developer
.--- --- ...  ..- .--.- ..- --. .-.. . .-.
[EMAIL PROTECTED]
ICQ#:13706295
Every knee shall bow, and every tongue confess, in heaven, on earth, and 
under the earth, that Jesus Christ is LORD -- Count on it!
-
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
-

Re: Secure VNC sessions

2001-07-04 Thread Andrew van der Stock 

No.

VNC client to/from server traffic is not encrypted and can be intercepted
and replayed. VNC has very weak authentication (it's reversible), and the NT
4.0 registry permissions are atrocious. VNC uses well known ports. It
doesn't log adequately. It is not possible to determine who is using the VNC
connection as there's one password for all users on Win32, therefore
auditing. It doesn't indicate via a audio or other method (a small change in
systray color on Win32 hosts is all) that remote activity is going on.

There is the VNC-SEC-L that was announced here the other day that is working
on some of these issues. It may be a while before all the issues are
addressed. Some can't be fixed easily and may take a fair amount of time.
Some issues require a small rev in the RFB protocol. Some efforts are not
worth pursuing, with the inclusion of TermSrv by default in >=Pro in Windows
XP, which is far more secure and faster than VNC.

Now... if you establish a strongly authenticated encrypting VPN (ie IPsec,
established using SecurID or similar) to the perimeter of your network, and
you are the only one with the VNC administrator password, then this is fine.
Otherwise, I'll strongly advise against using VNC over the Internet.

Andrew

- Original Message -
From: <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, July 03, 2001 4:40 PM
Subject: Secure VNC sessions


> Hi all,
>
> I'm new to VNC and need a little input from all you experienced guys (and
girls)
> out there:
>
> My scenario: Large corporate network behind Firewall-1, lots of NT4
servers (and
> W2K servers in the near future), VPN and RAS authenticated by SecureID.
>
> Is it possible to establish secure VNC sessions from the outside in order
to
> remotely administer the servers without compromising network security? I
would
> love to be able to use eg. the Nokia 9110/9210 Communicator for this
purpose.
>
> -Jens Bruun ([EMAIL PROTECTED])
> -
> To unsubscribe, send a message with the line: unsubscribe vnc-list
> to [EMAIL PROTECTED]
> See also: http://www.uk.research.att.com/vnc/intouch.html
> -
-
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
-

Re: Using vnc as a helpdesc solution : security question !

2001-07-04 Thread Andrew van der Stock 

Would audible beeping every five seconds plus a non-modal systray balloon be
more helpful? At night it doesn't matter if there's beeping. Establishing a
feature like time of day exclusions is a relatively major effort.

Andrew
- Original Message -
From: "DTT.De.Grave.Johan" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, July 03, 2001 8:00 PM
Subject: Using vnc as a helpdesc solution : security question !


> Hi,
>
> We would like to use vnc as a tool for our helpdesc (and remote
> configurations).
> We would want to be able to connect to any workstation regardless of
whether
> the user is present or not :
> * During working hours, we would use the vnc connection to assist the
> user on his request and of couse with his approval
> * After working hours (or when the user is not present) we would like
> to use vnc, as well, to remotely operate on the users machines without the
> user's intervention.
-
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
-

RE: Connection closed 3.3.3x

2001-07-04 Thread Arek Lichwa 

#Date: Mon, 2 Jul 2001 13:29:23 -0400
#From: [EMAIL PROTECTED]
#Subject: Connection closed 3.3.3x
#
#Hello.
#
#   I am fighting now with 3.3.3R9.  I have been using 3.3.2 for quite
#some time now, with little trouble (nothing a reboot couldn't fix).  Now
#with the 3.3.3R7 and 3.3.3R9 versions, I find that with either the 3.3.2 or
#3.3.3x vncviewer, I establish a connection, and then get
#"connection closed"
#after inputting the password.  I feel that it has something to do with the
#HK{C}U settings, but the behavior is typical whether or not an interactive
#session is logged in or not on the server.  Any help?  Thank you!
#
#Sincerely,
#
#- -tc
#Thomas Conlon

Hi
I got the same problem with 3.3.3R9 but the problem occurs only on win2k
server with active directory (domain server). The others servers (i.e. win2k
memebers, wint4 domain server) works ok with this release.

regards Arek
-
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
-

Problems with Server on HP-UX 11.00

2001-07-04 Thread Ralf Mellis 

Hello,

I'm working with VNC on HP-UX 11.00 (using the
precompiled binaries from http://www.csun.edu/~swalton/VNC/).

My client is a WinNT4 box, using the viewer V3.3.3 R2.

Most of all works fine, but in my opinion there are some
problems with fonts...

When I connect to my server and start omniback
all is going fine until I press the help button.
Then the application dies with the message:

+
X Error of failed request:  BadFont (invalid Font parameter)
  Major opcode of failed request:  56 (X_ChangeGC)
  Resource id in failed request:  0x0
  Serial number of failed request:  752
  Current serial number in output stream:  817
++

I already added the font paths given by the "xset q" command
to the "fp" option in the vncserver script, with no effect.

Anyone an idea what is going wrong?

MfG
Ralf Mellis
Kisters Maschinenbau GmbH
DV/ORG
Boschstr. 1-3
47533 Kleve
Germany
Tel. +49(0)2821-503-312
Fax +49(0)2821-26110
-
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
-

AW: System Registry

2001-07-04 Thread Ralf Mellis 

> -Urspr|ngliche Nachricht-
> Von:  James [SMTP:[EMAIL PROTECTED]]
> Gesendet am:  Dienstag, 3. Juli 2001 23:13
> An:   [EMAIL PROTECTED]
> Betreff:  System Registry
>
> How do I edit the system registry to change the
> Advanced Options specified under the documentation for
> the WinVNC server:
>
> http://www.uk.research.att.com/vnc/winvnc.html
>
> Thanks,
> James
>
> __
> Do You Yahoo!?
> Get personalized email addresses from Yahoo! Mail
> http://personal.mail.yahoo.com/
> -
> To unsubscribe, send a message with the line: unsubscribe vnc-list
> to [EMAIL PROTECTED]
> See also: http://www.uk.research.att.com/vnc/intouch.html
> -

If you are on Win9x / ME, use regedit, if you are on WinNT / 2000,
use regedt32 or regedit.

MfG
Ralf Mellis
Kisters Maschinenbau GmbH
DV/ORG
Boschstr. 1-3
47533 Kleve
Germany
Tel. +49(0)2821-503-312
Fax +49(0)2821-26110
-
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
-

VNC3.3.3R9 behind a VPN

2001-07-04 Thread Szabolcs Szoko 

Hi,

It is possible to connect to a VNC desktop behind a VPN from a client
(using the Java based tool) outside of this network?
Namely at best I get the message: "NoRouteToHostExeption: Operation timed
out"
Am i obliged to use pcAnywhere instead of VNC for this service?
Thanks a lot

best regards
Szabolcs





___
Send a cool gift with your E-Card
http://www.bluemountain.com/giftcenter/
-
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
-

RE: VNC3.3.3R9 behind a VPN

2001-07-04 Thread Les Bessant 

I use 3.3.3R9 through a VPN[1] all the time without any trouble. When you
have established your VPN connection, can you ping the host by IP address?

[1] Raptor Mobile 6.5.3 on Win2K Pro connecting to Raptor Firewall on NT4,
connecting to an NT4 domain.


Les Bessant mailto:[EMAIL PROTECTED]
IT Manager, Sanderson Townend & Gilbert
Acting in a personal capacity
http://www.tiggercam.co.uk - New, improved and with more bounce!

>-Original Message-
>From: Szabolcs Szoko [mailto:[EMAIL PROTECTED]]
>Sent: Wednesday, July 04, 2001 1:47 PM
>To: [EMAIL PROTECTED]
>Subject: VNC3.3.3R9 behind a VPN
>
>
>Hi,
>
>It is possible to connect to a VNC desktop behind a VPN from a client
>(using the Java based tool) outside of this network?
>Namely at best I get the message: "NoRouteToHostExeption: 
>Operation timed
>out"
>Am i obliged to use pcAnywhere instead of VNC for this service?
>Thanks a lot
>
>best regards
>Szabolcs
>
>
>
>
>
>___
>Send a cool gift with your E-Card
>http://www.bluemountain.com/giftcenter/
>-
>To unsubscribe, send a message with the line: unsubscribe vnc-list
>to [EMAIL PROTECTED]
>See also: http://www.uk.research.att.com/vnc/intouch.html
>-
>


The information in this communication and any attachments is confidential
and may be legally privileged. It is intended solely for the addressee. If
you are not the intended recipient any use, review, dissemination,
distribution or copying of this information is strictly prohibited. If you
have received this communication in error please notify us immediately on
0191 261 2681 and delete the original message and any copies of it. 

Any opinions, conclusions or other information in this message that do not
relate to the official business of Sanderson Townend & Gilbert are neither
given nor endorsed by the firm. 


_
This message has been checked for all known viruses by Star Internet
delivered through the MessageLabs Virus Scanning Service. For further
information visit http://www.star.net.uk/stats.asp or alternatively call
Star Internet for details on the Virus Scanning Service.
-
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
-

Re: Secure VNC sessions

2001-07-04 Thread Michael F. March 

Using Cygwin's 'sshd' for Windows takes care of 85% of the issues
you raised about VNC's insecure ways. 10% of your issues could be
fixed with simple hacks to either the VNC client or server and the
5% balance would probably (but not necessarily) require some 
protocol enhancements.

My point is: If you can trust using 'sshd' over the Internet
then you should be able to trust using VNC over 'sshd'. 

I personally have multiple VNC connections tunneled over Openssh 
and Zebedee running over the general Internet 24x7. It performs
great and I am comfortable with the security.

VNC's simplicity is sometimes its worst enemy when it comes to 
security. However, that same simplicity makes it easy to combine
with other security systems to give very adequate protection.



> No.
> 
> VNC client to/from server traffic is not encrypted and can be intercepted
> and replayed. VNC has very weak authentication (it's reversible), and the NT
> 4.0 registry permissions are atrocious. VNC uses well known ports. It
> doesn't log adequately. It is not possible to determine who is using the VNC
> connection as there's one password for all users on Win32, therefore
> auditing. It doesn't indicate via a audio or other method (a small change in
> systray color on Win32 hosts is all) that remote activity is going on.
> 
> There is the VNC-SEC-L that was announced here the other day that is working
> on some of these issues. It may be a while before all the issues are
> addressed. Some can't be fixed easily and may take a fair amount of time.
> Some issues require a small rev in the RFB protocol. Some efforts are not
> worth pursuing, with the inclusion of TermSrv by default in >=Pro in Windows
> XP, which is far more secure and faster than VNC.
> 
> Now... if you establish a strongly authenticated encrypting VPN (ie IPsec,
> established using SecurID or similar) to the perimeter of your network, and
> you are the only one with the VNC administrator password, then this is fine.
> Otherwise, I'll strongly advise against using VNC over the Internet.
> 
> Andrew
> 
> - Original Message -
> From: <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Tuesday, July 03, 2001 4:40 PM
> Subject: Secure VNC sessions
> 
> 
> > Hi all,
> >
> > I'm new to VNC and need a little input from all you experienced guys (and
> girls)
> > out there:
> >
> > My scenario: Large corporate network behind Firewall-1, lots of NT4
> servers (and
> > W2K servers in the near future), VPN and RAS authenticated by SecureID.
> >
> > Is it possible to establish secure VNC sessions from the outside in order
> to
> > remotely administer the servers without compromising network security? I
> would
> > love to be able to use eg. the Nokia 9110/9210 Communicator for this
> purpose.
> >
> > -Jens Bruun ([EMAIL PROTECTED])
> > -
> > To unsubscribe, send a message with the line: unsubscribe vnc-list
> > to [EMAIL PROTECTED]
> > See also: http://www.uk.research.att.com/vnc/intouch.html
> > -
> -
> To unsubscribe, send a message with the line: unsubscribe vnc-list
> to [EMAIL PROTECTED]
> See also: http://www.uk.research.att.com/vnc/intouch.html
> -
-
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
-

vnc

2001-07-04 Thread Abdulla Mannai 

Hi,

I would like to hide vnc server from server tools. Any help..

Regards
Abdulla
-
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
-

RE: VNC3.3.3R9 behind a VPN

2001-07-04 Thread Szabolcs Szoko 

Yes, when i establish a VPN tunnel (SA) between the VPN box
(sonicWALL firmware 5.1.1) and
my client, i can access the whole network and i can ping my host by its
local IP address. Using vncviewer i am able to access this desktop.
But i would like to connect to this host using java based client,
because this solution seems to be more flexible.
(it can be accessible for more clients without installing and configuring
any VPN client to use this service))
I have defined a public IP address (one-to-one NAT)
and the Web service (port range 5800-5999, protocol TCP(6)) for this host
reconfiguring the VPN box.
I tried to connect to the host by its URL: http://publicIP:5800/,
but after typing in the password, i get the message:
"NoRouteToHostException: Operation timed out."

Do You have any ideas?
Thank You very much

On Wed, 4 Jul 2001 15:38:59 +0100 , [EMAIL PROTECTED] wrote:

>  I use 3.3.3R9 through a VPN[1] all the time without any trouble. When you
>  have established your VPN connection, can you ping the host by IP
address?
>
>  [1] Raptor Mobile 6.5.3 on Win2K Pro connecting to Raptor Firewall on
NT4,
>  connecting to an NT4 domain.
>
>
>  Les Bessant mailto:[EMAIL PROTECTED]
>  IT Manager, Sanderson Townend & Gilbert
>  Acting in a personal capacity
>  http://www.tiggercam.co.uk - New, improved and with more bounce!
>
>  >-Original Message-
>  >From: Szabolcs Szoko [mailto:[EMAIL PROTECTED]]
>  >Sent: Wednesday, July 04, 2001 1:47 PM
>  >To: [EMAIL PROTECTED]
>  >Subject: VNC3.3.3R9 behind a VPN
>  >
>  >
>  >Hi,
>  >
>  >It is possible to connect to a VNC desktop behind a VPN from a client
>  >(using the Java based tool) outside of this network?
>  >Namely at best I get the message: "NoRouteToHostExeption:
>  >Operation timed
>  >out"
>  >Am i obliged to use pcAnywhere instead of VNC for this service?
>  >Thanks a lot
>  >
>  >best regards
>  >Szabolcs
>  >
>  >
>  >
>  >
>  >
>  >___
>  >Send a cool gift with your E-Card
>  >http://www.bluemountain.com/giftcenter/
>  >-
>  >To unsubscribe, send a message with the line: unsubscribe vnc-list
>  >to [EMAIL PROTECTED]
>  >See also: http://www.uk.research.att.com/vnc/intouch.html
>  >-
>  >
>
>
>  The information in this communication and any attachments is confidential
>  and may be legally privileged. It is intended solely for the addressee.
If
>  you are not the intended recipient any use, review, dissemination,
>  distribution or copying of this information is strictly prohibited. If
you
>  have received this communication in error please notify us immediately on
>  0191 261 2681 and delete the original message and any copies of it.
>
>  Any opinions, conclusions or other information in this message that do
not
>  relate to the official business of Sanderson Townend & Gilbert are
neither
>  given nor endorsed by the firm.
>
>
>  _
>  This message has been checked for all known viruses by Star Internet
>  delivered through the MessageLabs Virus Scanning Service. For further
>  information visit http://www.star.net.uk/stats.asp or alternatively call
>  Star Internet for details on the Virus Scanning Service.
>  -
>  To unsubscribe, send a message with the line: unsubscribe vnc-list
>  to [EMAIL PROTECTED]
>  See also: http://www.uk.research.att.com/vnc/intouch.html
>  -


Mit freundlichen Gr|ssen/best regards
Szabolcs Szoko





___
Send a cool gift with your E-Card
http://www.bluemountain.com/giftcenter/
-
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
-

RE: Auth Hosts

2001-07-04 Thread Bryan A. Pendleton 

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

At 07:39 AM 7/2/2001, James Linder wrote:
>Can anybody tell me how to get the (unix) X server to NOT request 
>authorisation.
>The WinVNC AuthRequired registry setting for the unix server is what I'm 
>looking for.

If you call Xvnc without passing it an -auth argument, you can get this 
effect. Either edit the vncserver perl script, or just call it by hand.

- --

Bryan Pendleton
ICQ: 2680952
Phone: (650)714-7827
"The root of all knowledge lies within, but knowledge is useless unless it 
is collected and shared."

-BEGIN PGP SIGNATURE-
Version: PGPfreeware 7.0.3 for non-commercial use 

iQA/AwUBO0NQoND5wNo1pnTcEQIdGgCfVVOIezLz6iTynHR3TgKnwCjGBagAoPVZ
VhC7U/c3EDJG5AflQghawR9I
=IiBd
-END PGP SIGNATURE-
-
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
-

vnc-unix

2001-07-04 Thread Abdulla Mannai 

I would like to know the steps of installing vnc in unix server And
how can you use it.

Thanks for helping
-
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
-