Tuesday, April 15, 2008
Methods ofr remote GUI control of Linux servers
There are currently (3) basic methods for getting a remote control GUI on a Linux server (like we do with Remote Desktop for Windows servers):
1) X-Windows over TCP/IP
All GUI operations on Unix/Linux are handled by the X-Windows sub-system. Window interfaces like KDE, Gnome, and others are merely layered on top of the X sub-system. One of the useful things about X is that any window can be forwarded over TCP/IP to any other X server. So you could run an application on the linux server, but display the output window on your PC (as long as you run a local X server program).
The downside of all this is that accessing remote servers requires the use of SSH port forwarding, and a bit of arcane magic. It's nowhere near as clean of a solution as RDP (Terminal Services). But it can be ultra-secure (by using SSH keys) and it works fairly well across the WAN.
2) VNC
VNC is a screen-scraper solution for GUI desktops, very similar to the old pcAnywhere and e/pop solutions that we used to use.
The downsides of VNC are:
- security is non-existent in the base spec
- different VNC server use different encryptions
- authentication tends to be done via plain text passwords
- rather slow across the WAN
3) NX/FreeNX
A company called NoMachines came out with a different solution called "NX". NX is a protocol that is very similar to RDP and the client works rather similar to Remote Desktop. You used to have to pay for the product, but over the years, they've opened up the source code. So now there are (3) different server implementations (NX, FreeNX, and another) and you can download the NX client from NoMachines for free.
The big advantage here is that security is better and performance is better over slow WAN links.
1) X-Windows over TCP/IP
All GUI operations on Unix/Linux are handled by the X-Windows sub-system. Window interfaces like KDE, Gnome, and others are merely layered on top of the X sub-system. One of the useful things about X is that any window can be forwarded over TCP/IP to any other X server. So you could run an application on the linux server, but display the output window on your PC (as long as you run a local X server program).
The downside of all this is that accessing remote servers requires the use of SSH port forwarding, and a bit of arcane magic. It's nowhere near as clean of a solution as RDP (Terminal Services). But it can be ultra-secure (by using SSH keys) and it works fairly well across the WAN.
2) VNC
VNC is a screen-scraper solution for GUI desktops, very similar to the old pcAnywhere and e/pop solutions that we used to use.
The downsides of VNC are:
- security is non-existent in the base spec
- different VNC server use different encryptions
- authentication tends to be done via plain text passwords
- rather slow across the WAN
3) NX/FreeNX
A company called NoMachines came out with a different solution called "NX". NX is a protocol that is very similar to RDP and the client works rather similar to Remote Desktop. You used to have to pay for the product, but over the years, they've opened up the source code. So now there are (3) different server implementations (NX, FreeNX, and another) and you can download the NX client from NoMachines for free.
The big advantage here is that security is better and performance is better over slow WAN links.
Wednesday, June 20, 2007
UltraVNC (Server) Install on Windows XP
Installing UltraVNC (see also "UltraVNC Installation")
WinVNC: Default Local System Properties (see "configuration for details)
AES Encryption plugin (a.k.a. DSM)
- Download UltraVNC for MS Windows
- Run the setup program (currently this is: UltraVNC-100-RC203-Setup.exe)
- Accept the license agreement and read the Information screen
- Use the default install destination location
- Choose "Complete Install"
- Use the default Start Menu Folder
- Turn ON "Register Ultr@VNC Server as system service"
- Turn ON "Start or restart Ultr@VNC service"
- Turn OFF the (3) options that create desktop icons
- Turn ON "Associated .vnc files with Ultr@VNC Viewer"
- Click "Install" to start the installation.
WinVNC: Default Local System Properties (see "configuration for details)
- Turn OFF "Enable JavaViewer"
- Turn ON "Display Query Window", Set the timeout to 60 seconds, with "Accept" as the default action.
- Under "Multi viewer connections", CHANGE to "Keep existing connections"
- Under "Authentication", set a secure default password
- Under "Authentication", turn ON "Require MS Logon", turn ON "New MS Logon"
- Click on "Configure MS Logon Groups", Add, enter "Administrators" (note the plural) and click "OK". Grant that group full control and click "OK" to close the UltraVNC Security Editor window.
- Most other options can be left "as is"
AES Encryption plugin (a.k.a. DSM)
- Download the AESV2 Plugin (currently: AESV2Plugin100.zip)
- Extract the .DSM file to the program folder where you installed UltraVNC (usually: C:\Program Files\UltraVNC), see "DSM quick start" for more information.
- Re-open the "Default Local System Properties" window for the UltraVNC server (Start -> UltraVNC -> UltraVNC Server -> Show Default Settings). Alternately, start up the service helper systray app (Run Service Helper) and go to "Admin Properties")
- Under "DSM Plugin", turn ON the "Use:" checkbox and select "AESV2Plugin.dsm" from the list.
- Click "OK"
Labels: 2007, ServerAdministration, UltraVNC, VNC
VNC Resource Links
Various links about VNC
Virtual Network Computing (VNC) - Wikipedia entry about VNC.
Taking your desktop virtual with VNC by Tim Waugh
VNC FAQ-o-Matic
Making VNC more secure using SSH
Free and Easy Remote Access with VNC Reverse Connections
Geek to Live: Secure VNC with Hamachi
Secure VNC with two-factor authentication
Virtual Network Computing (VNC) - Wikipedia entry about VNC.
Taking your desktop virtual with VNC by Tim Waugh
VNC FAQ-o-Matic
Making VNC more secure using SSH
Free and Easy Remote Access with VNC Reverse Connections
Geek to Live: Secure VNC with Hamachi
Secure VNC with two-factor authentication
Labels: 2007, ServerAdministration, VNC
Tuesday, May 29, 2007
Remote install of CentOS5 using VNC
I haven't tried this yet, but there are times when it could come in handy.
Centos 5 vnc remote installation
Post details: Upgrading to CentOS4, over a remote vnc connection
I figured it was possible, I just hadn't looked.
Centos 5 vnc remote installation
Post details: Upgrading to CentOS4, over a remote vnc connection
I figured it was possible, I just hadn't looked.
Sections:
Recent posts:
[an error occurred while processing this directive]
Monthly archives:
2003/04
2003/05
2003/06
2003/07
2003/08
2003/09
2003/10
2003/11
2003/12
2004/01
2004/02
2004/03
2004/04
2004/05
2004/06
2004/07
2004/08
2004/09
2004/10
2004/11
2004/12
2005/01
2005/02
2005/03
2005/04
2005/05
2005/06
2005/07
2005/08
2005/09
2005/10
2005/11
2005/12
2006/01
2006/02
2006/03
2006/04
2006/05
2006/06
2006/07
2006/08
2006/09
2006/10
2006/11
2006/12
2007/01
2007/02
2007/03
2007/04
2007/05
2007/06
2007/07
2007/08
2007/12
2008/01
2008/03
2008/04
2008/05
2008/06
2008/07
2008/08
2008/09
2008/10
2008/11
2008/12
2009/01
2009/02
2009/03
2009/04
2009/05
2009/06
2009/07
2009/08
2009/09
2009/10
2009/11
2009/12
2010/06
Copyright 2003-2010, Thomas G. Harold, All Rights Reserved
