[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: OnionCat -- An IP-Transparent TOR Hidden Service Connector



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

7v5w7go9ub0o wrote:
(snip)
> 
> 1. Connecting via TOR would be an extra, minor security option to
> conceal the fact that my home is running a VNC server - eavesdropping
> kids at the hotspot may try to make it a hacking "prize".

You should know that VNC is considered an insecure protocol; the wise
thing to do, is to allow it only to run over a secure tunneling protocol
(e.g., SSH, or a VPN program).

This is not only because many variations of VNC don't provide their own
encryption (remember, exit nodes can sniff - and they can see WAY too
much if you're using plain VNC!), but also because such a protocol would
strengthen the authentication required to get in.

> 
> 2. Out of general principle, I see no reason to record my home IPA in
> the various hotspot logs. I wish to come and go quietly without "signing
> in".

This is what I mentioned in my last email - Tor is good for concealing
this sort of thing.

But please, set up SSH or a VPN to provide security for your VNC.

- --
F. Fox
AAS, CompTIA A+/Network+/Security+
Owner of Tor node "kitsune"
http://fenrisfox.livejournal.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
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=WoHk
-----END PGP SIGNATURE-----