Boston Linux & UNIX was originally founded in 1994 as part of The Boston Computer Society. We meet on the third Wednesday of each month, online, via Jitsi Meet.

BLU Discuss list archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Discuss] vnc

The problem is security.

If you allow SSH access to the open internet, you're more open to attack.

With openvpn you can enable two-factor authentication and a lot more
security. Then, sure, let a really trusted user open an SSH shell.

It is inarguable that SSH and a VPN is far more secure than merely SSH or
other access methods.

> On 8/25/2014 8:51 AM, markw at mohawksoft.com wrote:
>> SSH is a very BAD thing to open up to the free internet. BAD BAD BAD.
>> Once in, you are in. Shell access is dangerous.
>
> Stop right there.
>
> We have been discussing securing VNC connections to X11 desktops running
> on virtual framebuffer devices. In other words: full shell access. Thus,
> none of your points are immediately relevant to the discussion at hand.
> They might be relevant to a discussion about access to private services
> other than shell access but that's a different discussion.
>
> --
> Rich P.
> _______________________________________________
> Discuss mailing list
> Discuss at blu.org
> http://lists.blu.org/mailman/listinfo/discuss
>
BLU is a member of BostonUserGroups
BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Valid HTML 4.01! Valid CSS!

Boston Linux & Unix / webmaster@blu.org