Associate
Nothing amazes me anymore. I've seen things. Bad things....
What are your thoughts on vnc?
- Thread starter agent_paul
- Start date
Good point, but not strictly true. Due to the widespread use of VNC and the generally well known default of TCP 5900, most automatic scanners will look for the 5900-5999 range only. Changing to a seperate non-standard port will remove this initial potential security threat.
For the most secure connection, as you've stated the best bet is to:
* Enable native-platform authentication.
* Restrict access to a specific subnet/IP range/address.
* Changing port to something non-standard.
* Ensure encryption is forced.
Again, you guys are referring to VNC as a singular. There are many different VNC releases. All free VNC releases are based off of our original VNC Free Edition Codebase.
Commercial VNC software, is however, in a different league.
This really isn't required, due to the number of security features built into VNC EE;
* Blacklisting feature.
* Private key generation to prevent man-in-the-middle attacks.
* Industry standard encryption.
* Platform-native authentication.
Associate
So how would you compare yourselves to say Teamviewer or webex and the like?
In what sense are we talking mate? Performance, Features, Cross-platform interoperability, Security, Price, Resource-Usage, Footprint, Scalability, Deployment?
There is no one "best" remote control application, it entirely depends on what you'll be using it for, and what you're looking for specifically.
Again, depends which actual product you're talking about.
VNC Enterprise Edition is integrated with AD and stores no details locally, it allows authentication via local/domain credentials.
That said, no previous versions of VNC stored passwords in plain text, they were obfuscated and stored in the registry (requiring admin access to access). This isn't the most secure method, though is miles better than storing in plain text.
Associate
I prefer RDP purely because I don't have to be logged in to use it.
Associate
We use dameware NT utilities which includes dameware mini RDP... which is great... it pushes out to client machines so no setup required... not that quick at screen refresh but it works a treat.
Soldato
VNC is great for helping end users as they can also view the screen and can talk you through their issues and watch how you fix it whereas RDP will lock them out of their session.
Can't say i've come across RDP breaking... not if it's set-up properly in the first place (not that there's exactly much to it!).
Soldato
Breaks quite often at my work.
More so with 2k8 than 2k3 though..
What breaks exactly? I have no experience with 2k8...
Soldato
Refuses to login occasionally until a reboot of the server (which isnt practical), sometimes hangs on login, ect;
Associate
We have VNC on all client machines and servers at our place, but we generally use RDP for the servers as it's a bit quicker, and we can also track who's messing about with servers like me 
I use RDP when i want to do something quick and simple.
When i need more flexibility, i use RealVNC (e.g. when i want to view both of my screens on my work PC, easily transfer clipboard data etc).
Although lately VNC has started to randomly disconnect me and time out.. although i'm not sure if that's an issue with my connection or VNC :S
When i need more flexibility, i use RealVNC (e.g. when i want to view both of my screens on my work PC, easily transfer clipboard data etc).
Although lately VNC has started to randomly disconnect me and time out.. although i'm not sure if that's an issue with my connection or VNC :S
RDP does both of those things you've stated there. IMO i'll only ever use RDP to manage windows boxes remotely. No need to install additional software thats quite often vulnerable and needs patching.