Menu
▾
▴
Re: [rfbhackers] is anybody working on sercureVNC?
|
From: Joe A. <jo...@py...> - 2003-04-11 13:55:20
|
On Wed, 2003-04-09 at 18:37, Constantin Kaplinsky wrote: > Hello Tim, Joe, > > >>>>> "TJ" == Tim Jansen <ml...@tj...> writes: > > >> Currently it does X.509 certificate auth and "regular" VNC auth. > >> Also, I've extenden initial RFB client/server handshake so that the > >> authtype could be negotiated (and then accepted or not by either > >> party depending on configurable policies). > > TJ> Do you have any code/documentation for this? That would be great, > TJ> since exactly this is on my feature list for KDE's Desktop > TJ> Sharing. > > And in my feature list (for TightVNC), too. :-) > > I've started to work on OpenSSL integration, however, I'm rather > interested in encryption than in certificate-based authentication. I've also implemented this in 2 ways: 1) Just use SSL with anonymous DiffieHellman Keyexchange to get encryption 2) My "private" extension of this also does cert base authentication. > By the way, I also have implemented protocol extensions to negotiate > protocol options such as tunneling/encryption methods, additional > authentication schemes, non-standard normal messages and extra > encodings. The sources are available in the CVS, in both Unix and > Win32 parts. Probably much the same I did :-) I'll check that out. Probably, I can base my future release on this. > Joe, could you please send me your changes? Sinse I've already > implemented a subset of similar functionality, I won't include your > changes as is, but I think your work can save some time and prevent > some duplication of efforts. I have put up my changes (Win only) to http://www.pyx.ch/joe/vnc/. It's quite old and not tidied up. CU, Joe |
