OT: Remote Access to your PC

[Fyron]

If it is a momentary glitch and the connection restores properly, I like having the domain update automatically and having no down time. For a couple KB of system resources, it is worth it to me.

[Thermodyne]

Quote:

Imperator Fyron said:
Ah, yes. But what if there is a connection glitch and your IP changes in the down time?

All you need to do is run a little script the checks the WAN address and emails the results to your web mail account. Then all you need to do is enter the new addy into VNC.

[Thermodyne]

I use TightVNC almost every day at work. And it is not all that. It beats driving 100's of miles, but it can be a pain. And this is arcoss a private WAN. Across the internet it is not as good, and very exploitable. Also, VPN will not support VNC, so everything you access is out in the open and subject to interception. Also, you must leave the system up, if it goes to sleep, VPN will not wake it unless wake on LAN is on, but this allows anyone to wake it. You also need to open the firewall for VNC, which gives any ole person the same access. They sniff your VPN password, and they are in your system.

IMHO, you should set up IIS and put the things yuo need into a private web site. Then use https: and password authentication. Better yet, you uni peeps should pick up a copy of Small Business Server on the cheap uni price. Put it on an old box and use the MS Share Point Site that comes pre-installed. Also, you can log into SBS remotely with the VPN and a cert, and drive it from a true remote desk top.

[Fyron]

So use a complex password. Good luck trying to sniff 16 random characters.

[TurinTurambar]

Thanks all, for the advice (and the warnings). I am looking thru the documentation on TightVNC right now, and it looks pretty well supported. I think I'll give it a go tomorrow from the field and see how it works.

As for file transfer: can't I just remote the server side into a web browser and email it to myself?

Thx,
[img]/threads/images/Graemlins/Dagger.gif[/img][img]/threads/images/Graemlins/icon42.gif[/img]

[Will]

Emailing it works too. I'm just used to file size limits on email (10MB at university), and I happen to already have two AIM accounts, so that's why it came to mind first.

[TurinTurambar]

I've just been thinking to myself about my invoicing program sitting on my office PC. Microsoft Fax (for any doc on the machine) sitting on my office PC. Universal Remote config files, account files, Access reports....

All stuff I could really use to maximize my efforts when I'm out and about, and some ways to get paid faster.

I've installed the server and client functions on my machines and am looking cautiously forward to tomorrow.

~T

[Thermodyne]

Quote:

Imperator Fyron said:
So use a complex password. Good luck trying to sniff 16 random characters.

VNC password is plain text across the wire. All I need to do is capture packets to and scan till I find it.

[Fyron]

Quote:

http://www.tightvnc.com/faq.html#howsecure:
Although TightVNC encrypts VNC passwords sent over the net, the rest of the traffic is sent as is, unencrypted (for password encryption, VNC uses a DES-encrypted challenge-response scheme, where the password is limited by 8 characters, and the effective DES key length is 56 bits). So using TightVNC over the Internet can be a security risk. To solve this problem, we plan to work on built-in encryption in future versions of TightVNC.

In the mean time, if you need real security, we recommend installing OpenSSH, and using SSH tunneling for all TightVNC connections from untrusted networks.

With TightVNC, the password is encrypted, but the data is not. SSH tunneling will create a rather secure connection, and you can do that for free.

http://sshwindows.sourceforge.net/