Boston Linux & UNIX was originally founded in 1994 as part of The Boston Computer Society. We meet on the third Wednesday of each month at the Massachusetts Institute of Technology, in Building E51.

BLU Discuss list archive


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Discuss] vnc



The problem is security.

If you allow SSH access to the open internet, you're more open to attack.

With openvpn you can enable two-factor authentication and a lot more
security. Then, sure, let a really trusted user open an SSH shell.

It is inarguable that SSH and a VPN is far more secure than merely SSH or
other access methods.

> On 8/25/2014 8:51 AM, markw at mohawksoft.com wrote:
>> SSH is a very BAD thing to open up to the free internet. BAD BAD BAD.
>> Once in, you are in. Shell access is dangerous.
>
> Stop right there.
>
> We have been discussing securing VNC connections to X11 desktops running
> on virtual framebuffer devices. In other words: full shell access. Thus,
> none of your points are immediately relevant to the discussion at hand.
> They might be relevant to a discussion about access to private services
> other than shell access but that's a different discussion.
>
> --
> Rich P.
> _______________________________________________
> Discuss mailing list
> Discuss at blu.org
> http://lists.blu.org/mailman/listinfo/discuss
>





BLU is a member of BostonUserGroups
BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Valid HTML 4.01! Valid CSS!



Boston Linux & Unix / webmaster@blu.org