Hello,
Does requiring MS Login/Password make the system more secure over the mere password requirement?
Thanks
Celebrating the 22th anniversary of the UltraVNC: https://forum.uvnc.com/viewtopic.php?t=38031
Update: UltraVNC 1.4.3.6 and UltraVNC SC 1.4.3.6: https://forum.uvnc.com/viewtopic.php?t=37885
Important: Please update to latest version before to create a reply, a topic or an issue: https://forum.uvnc.com/viewtopic.php?t=37864
Join us on social networks and share our announcements:
- Website: https://uvnc.com/
- GitHub: https://github.com/ultravnc
- Mastodon: https://mastodon.social/@ultravnc
- Bluesky/AT Protocol: https://bsky.app/profile/ultravnc.bsky.social
- Facebook: https://www.facebook.com/ultravnc1
- X/Twitter: https://x.com/ultravnc1
- Reddit community: https://www.reddit.com/r/ultravnc
- OpenHub: https://openhub.net/p/ultravnc
Update: UltraVNC 1.4.3.6 and UltraVNC SC 1.4.3.6: https://forum.uvnc.com/viewtopic.php?t=37885
Important: Please update to latest version before to create a reply, a topic or an issue: https://forum.uvnc.com/viewtopic.php?t=37864
Join us on social networks and share our announcements:
- Website: https://uvnc.com/
- GitHub: https://github.com/ultravnc
- Mastodon: https://mastodon.social/@ultravnc
- Bluesky/AT Protocol: https://bsky.app/profile/ultravnc.bsky.social
- Facebook: https://www.facebook.com/ultravnc1
- X/Twitter: https://x.com/ultravnc1
- Reddit community: https://www.reddit.com/r/ultravnc
- OpenHub: https://openhub.net/p/ultravnc
Security
What kind of security
I think it depends on what you mean with security.
In my case we have a closed network, but we don't want to have 1 identical password on 10,000 machines
So I think it increases security to use MS logon because we can limit access to machines with domain groups to certain users
.
In my case we have a closed network, but we don't want to have 1 identical password on 10,000 machines
So I think it increases security to use MS logon because we can limit access to machines with domain groups to certain users
.-
Leonard
Packet capture
All it takes is one person downloading one application and then they can capture IDs and passwords even on switched networks.
This is reality not make beleive. I won't disclose the application, but if you know how to search the internet It's not hard to find.
This is reality not make beleive. I won't disclose the application, but if you know how to search the internet It's not hard to find.
-
GUest
Thanks
Thanks to all for reply.
I am in a process of setting up the plugins. (Have not done that yet because I am still trying to tweak the workings).
What I gather is then that the security reamins the same with or without login id/password vrs vnc password. It is just that the level of complexity for each station increases with haveing to know the login id and password for each station.
I am in a process of setting up the plugins. (Have not done that yet because I am still trying to tweak the workings).
What I gather is then that the security reamins the same with or without login id/password vrs vnc password. It is just that the level of complexity for each station increases with haveing to know the login id and password for each station.
-
Rudi De Vos
- Admin & Developer
- Posts: 6882
- Joined: 2004-04-23 10:21
- Contact:
MS logon does not add any security.
But grand access based on the MS user account database.
+All local admins (or equivalant) have access..
+You can allow access to users of local or domain groups
When you disable vnc logon, you can handle the access from the central domain controler.
Add/remove access to users is just adding or removing a user from a group.
But grand access based on the MS user account database.
+All local admins (or equivalant) have access..
+You can allow access to users of local or domain groups
When you disable vnc logon, you can handle the access from the central domain controler.
Add/remove access to users is just adding or removing a user from a group.
Control access from the central domain controller only works with one (1) domain.
We have an Active Directory tree with ~ 30 domains. As a user in the Germany Domain I cannot get access to a machine in the Finland Domain.
Would be great if the MS logon functionality could be enhanced to allow this
Should be similar to mapping e.g. a share in another domain, just specify the domain of the user or use the "domain\user" notation.
We have an Active Directory tree with ~ 30 domains. As a user in the Germany Domain I cannot get access to a machine in the Finland Domain.
Would be great if the MS logon functionality could be enhanced to allow this
Should be similar to mapping e.g. a share in another domain, just specify the domain of the user or use the "domain\user" notation.
-
Guest
But then, when you setup your own server with domain (mydomain) and create a user in the access group....
Verifying against your domain server should give you access to all machines..no security.
There need to be a method that works on NT4 and AD domains..
Didn't find the trick to do it.
Possible it will only be secure on a AD domain and using the
AA.bb.cc name convention. Not that easy to setup and test
on a home network...
Rudi
Verifying against your domain server should give you access to all machines..no security.
There need to be a method that works on NT4 and AD domains..
Didn't find the trick to do it.
Possible it will only be secure on a AD domain and using the
AA.bb.cc name convention. Not that easy to setup and test
on a home network...
Rudi