lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <7b8067a4050705013317cccedb@mail.gmail.com>
Date: Tue Jul  5 09:33:44 2005
From: raghu.chinthoju at gmail.com (Raghu Chinthoju)
Subject: Some VNC doubts : access server behind TCP/IP
	proxy or gateways

VNC supports reverse connections, check http://www.tinyapps.org/vnc/

But then, you need some sort of trigger from road warrior side to run
"winvnc -connect <RW IP> on the server. I guess you can design the
best way for this based on your setup, may be via an ASP page or even
as simple as an email command.

If your gateways support some sort of client authentication, may be
its the best bet.

Raghu


On 7/5/05, Aditya Deshmukh <aditya.deshmukh@...ine.gateway.strangled.net> wrote:
> Hi List,
> 
> I have a very peculiar problem about accessing VNC server behind gateways
> and proxy server...
> 
> Here is the background info...
> 
> I have a client who has pretty big vnc installation base mostly windows but
> Linux and Solaris also includes.
> 
> Most of the Road Warriors have windows with vnc and ssh installed on them (
> mostly winxp sp2 )
> 
> VNC is used to remote admin or support for some of the road warriors. But
> most of the times when the VNC server is behind a gateway like this it wont
> connect.
> 
> [ Internet ] -- [ Gateway ] --- [ Lan ]
> 
> The work about is to use the UltraVNC relay service, but if you don't have
> any control over the gateway this becomes impossible to operate. And I hate
> to open ports in the firewalls of the road warriors' computers.
> 
> Is there a way something like reverse shell that allows someone to connect
> to a VNC server, behind gateway and through firewalls without opening any
> holes in it or a tcp/ip proxy that is proxy that does not allow connections
> from the internet ?
> 
> Basically, The user initiates the connection and the helpdesk can use the
> same socket to the laptop for connection over VNC ( vnc encryption and
> compression have already been taken care of, and only one socket is needed
> for all this- for a firewall I would require only one hole )
> 
> 
> Any help would be appreciated - aditya
> 
> 
> 
> 
> 
> ________________________________________________________________________
> Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>

Powered by blists - more mailing lists