: when using SSH and VNC together, i've noticed that alot of people say that : you must allow local loopback connections. : Can anyone explain why this is, i'd really like to know the significance of : this.
Without ssh, a vnc viewer will open a TCP connection to a remote host running a vnc server. With ssh, the idea is for that traffic to be encrypted, and if the remote host were contacted directly, there'd be no opportunity to encrypt the data. Therefore, the vncviewer opens a *local* TCP connection to the ssh client, which encrypts the data and sends it to the ssh server, which decrypts it and (finally) sends it to the vnc server. But note what this means: when using ssh, you are connecing to a LOCAL address. You must configure the vncviewer to know that this is OK, since normally it treats a local connection as a likely mistake. Um... at least I think that's true; I use winvnc seldom, myselves. The unix version of this is that you should explicitly state your encoding methods when using ssh, since if you don't, it'll assume the connection is local, and thus compression and re-expansion is a waste of time, and thus it'll use "raw" encoding. Wayne Throop [EMAIL PROTECTED] _______________________________________________ VNC-List mailing list [EMAIL PROTECTED] http://www.realvnc.com/mailman/listinfo/vnc-list
