I honestly don't know if your passwd and machine has been genuinely cracked, but what's wrong with either purchasing and using a more securely authenticating version (personal, or enterprise) or spending half an hour to learn how to set up an SSH tunnel and forwarding the VNC port through it? Although secure key authentication is the safest method and for all everyday practical purposes uncrackable, SSH passwd based authentication is still substantially safer than transmitting plain text passwds in the clear.
On Wednesday 14 February 2007 18:22, Marc wrote: > I initially discounted client concerns about the same thing in > that I had updated to resolve this issue and recent list > discussion suggested that this was not an issue with the current > version. However, it appears that there is indeed a current > access issue..... > > D Ivago wrote: > > Hi, > > > > i'm using the free 4.1.2 version and just saw myself loggn of due to an > > ended vnc session while sitting in front of the PC that has the vnv > > service running. > > > > Checked my logs and saw quite a few vnc unauthorised connection over the > > last 12 hours. > > > > On another PC, also with vnc but another location and password, same > > thing in my logs. > > > > This can't be coincedince right? Although I know the passwords travel in > > plain text over the internet it's still verry odd to get sniffed twice, > > and the passwords itself are quite strong with numbers, letters and > > capitals and such... > > > > Could it be 4.1.2 is exploiteable?? > > > > kind regards, > > > > ivago > > > > Last year I noticed the same and > > _______________________________________________ > > VNC-List mailing list > > VNC-List@realvnc.com > > To remove yourself from the list visit: > > http://www.realvnc.com/mailman/listinfo/vnc-list > > _______________________________________________ > VNC-List mailing list > VNC-List@realvnc.com > To remove yourself from the list visit: > http://www.realvnc.com/mailman/listinfo/vnc-list -- Regards, Mick [demime 1.01d removed an attachment of type application/pgp-signature] _______________________________________________ VNC-List mailing list VNC-List@realvnc.com To remove yourself from the list visit: http://www.realvnc.com/mailman/listinfo/vnc-list
