Hello,
I'm new to Chunk but I've got to say, it's pretty cool... Best thing I've seen for VNC in a long time. I've searched the forum but haven't found anything that clearly explains the security aspects of Chunk. Any chance you can explain based on order of execution which parts of Chunk are secure and which are not?
Thanks!
Randall
Celebrating the 22th anniversary of the UltraVNC: https://forum.uvnc.com/viewtopic.php?t=38031
Update: UltraVNC 1.4.3.6 and UltraVNC SC 1.4.3.6: https://forum.uvnc.com/viewtopic.php?t=37885
Important: Please update to latest version before to create a reply, a topic or an issue: https://forum.uvnc.com/viewtopic.php?t=37864
Join us on social networks and share our announcements:
- Website: https://uvnc.com/
- GitHub: https://github.com/ultravnc
- Mastodon: https://mastodon.social/@ultravnc
- Bluesky/AT Protocol: https://bsky.app/profile/ultravnc.bsky.social
- Facebook: https://www.facebook.com/ultravnc1
- X/Twitter: https://x.com/ultravnc1
- Reddit community: https://www.reddit.com/r/ultravnc
- OpenHub: https://openhub.net/p/ultravnc
Update: UltraVNC 1.4.3.6 and UltraVNC SC 1.4.3.6: https://forum.uvnc.com/viewtopic.php?t=37885
Important: Please update to latest version before to create a reply, a topic or an issue: https://forum.uvnc.com/viewtopic.php?t=37864
Join us on social networks and share our announcements:
- Website: https://uvnc.com/
- GitHub: https://github.com/ultravnc
- Mastodon: https://mastodon.social/@ultravnc
- Bluesky/AT Protocol: https://bsky.app/profile/ultravnc.bsky.social
- Facebook: https://www.facebook.com/ultravnc1
- X/Twitter: https://x.com/ultravnc1
- Reddit community: https://www.reddit.com/r/ultravnc
- OpenHub: https://openhub.net/p/ultravnc
Brief explaination of security
Re: Brief explaination of security
The data being sent between InstantSupport, Repeater and ChunkViewer is encrypted with the SecureVNC plugin although the password in 3.2 is limited to 8 characters.
Security with ChunkVNC really depends on how you have you're repeater setup. For instance you could allow WAN connections to the repeater from InstantSupport(5500) but not ChunkViewer (5901) and allow local LAN computers only to connect to the repeater. This way only your local computers could be used as viewers.
Sorry I guess I don't really understand what you are asking? The way I look at it, there's really no such thing as security, all you can do is make it as difficult as possible for someone to see what's going on.
Could you elaborate on any security concerns you may have?
Security with ChunkVNC really depends on how you have you're repeater setup. For instance you could allow WAN connections to the repeater from InstantSupport(5500) but not ChunkViewer (5901) and allow local LAN computers only to connect to the repeater. This way only your local computers could be used as viewers.
Sorry I guess I don't really understand what you are asking? The way I look at it, there's really no such thing as security, all you can do is make it as difficult as possible for someone to see what's going on.
Could you elaborate on any security concerns you may have?
http://www.chunkvnc.com - ChunkVNC - Free PC Remote control with the Open Source UltraVNC wrapper InstantSupport!
Re: Brief explaination of security
Thanks. I believe you answered my question. My two main concerns are if the password you enter when connecting via ChunkViewer and any password you may enter after making the connection (ie. login password for another system, etc.) are both enrypted.
Based on your response I believe the answer is yes but I'd be grateful if you'd confirm.
Based on your response I believe the answer is yes but I'd be grateful if you'd confirm.
Re: Brief explaination of security
Correct, the password you enter is basically the encryption key for the VNC data.
http://www.chunkvnc.com - ChunkVNC - Free PC Remote control with the Open Source UltraVNC wrapper InstantSupport!