VNC, No Longer Orphaned

geogeek6_7 writes "Icronic informs us of a couple new developments to everyone's favorite piece of remote-managment software, VNC. You may remember that the UK Lab responsible for the creation and maintainence of VNC closed. A company called RealVNC has been formed, sporting the original coders from the AT&T lab, and aiming to 'act as the focal point for open source VNC.' Secondly, the new company has released version 3.3.4 of VNC for Windows and Linux. Greater security and a new, speed-enhancing auto-encoding feature are included among many others in the new version."

Re:They have a lot of work on their hands

[fault0]

I'd have to agree that VNC isn't exactly good on dialup connections or even ISDN.

However, this is what tightvnc is for. Regular VNC works very well in a LAN though, and works quite well from every broadband connection I've used.

ssh tunnel

[goombah99]

I tunnel vnc through multiple firewalls all the time (over DSL);both direction run through a single port so it's actually easier than tunneling X windows. not to mention more secure than xhosts. And in my experience if you use the right client is WAY more robust and faster than remote x-windows. especially for real-time mouse actions (use a bad client and it stinks, so shop around).

some tips: generally you are better off NOT enabling ssh compression as VNC's compression works better. Supposedly tightVNC is the best for narrow pipes. But on fat pipes in actually is better not to compress. if you are worried about security do two things. first always turn off the http port (on by default at 580x). Second, for extra security only allow connections to/from loopback 127.0.0.1. Then use ssh to send it where you want. Finally, note that VNC itself is not encoded so the ONLY protection you are getting is the SSH encoding. If you dont tunnel all the way you are exposed. However since it is graphics info and not plain ascii, it takes a clever hacker to actually decode what you are sending in the clear.