[nylug-talk] [Bulk] Re: Is vpnc safe
Miguel Gonzalez Castaños
miguel_3_gonzalez at yahoo.es
Sun Apr 29 19:17:12 EDT 2007
Matt Williams escribió:
> On 4/28/07, Ezra Taylor <ezra.taylor at gmail.com> wrote:
>
>
>> Hello all:
>> How safe is vpnc? Are any of you guys using this
>> application. I'm sick and tired of cisco's linux vpn client. Note, a
>> snippet from the vpnc man page is below.
>>
>
>
>> OBLICATORY WARNING: the most used configuration (XAUTH authentication) is
>> insecure by design, be aware of this fact when you use vpnc to exchange
>> sensitive data like passwords!
>>
>
> The standard vpnc setup sends clear text passwords across the network
> and should absolutely not be used for remote connections.
>
> The workaround is to forward vpnc over ssh, which makes it as secure
> as anything else sent over ssh.
>
TightVNC has this feature in the Unix versions so you don't have to
create the SSH tunneling but the server can be configured to create one
Miguel
More information about the nylug-talk
mailing list