Advanced Network and System Administration



Similar documents
Author A.Kishore/Sachin VNC Background

CONNECTING TO DEPARTMENT OF COMPUTER SCIENCE SERVERS BOTH FROM ON AND OFF CAMPUS USING TUNNELING, PuTTY, AND VNC Client Utilities

Cross-platform UI access

Campus VPN. Version 1.0 September 22, 2008

Remote Access Options to University Resources. Samuel Petreski IT Security Office

Launching and Connecting

Requirements Collax Security Gateway Collax Business Server or Collax Platform Server including Collax SSL VPN module

Visualization Cluster Getting Started

SSH and FTP on Ubuntu WNYLUG Neal Chapman 09/09/2009

Using Virtual Machines

Setting Up VNC, SSH Tunnels, and RDP

Lab 8: Configuring Backups

Installing an IBM Workplace/Portal Server on Linux

Remote Access and Control of the. Programmer/Controller. Version 1.0 9/07/05

TS-800. Configuring SSH Client Software in UNIX and Windows Environments for Use with the SFTP Access Method in SAS 9.2, SAS 9.3, and SAS 9.

Contents. Part 1 SSH Basics 1. Acknowledgments About the Author Introduction

Setting up VNC, SAMBA and SSH on Ubuntu Linux PCs Getting More Benefit out of Your Local Area Network

Tips for getting started! with! Virtual Data Center!

Interacting with Users

How to Use? SKALICLOUD DEMO

MobaXTerm: A good gnome-terminal like tabbed SSH client for Windows / Windows Putty Tabs Alternative

Introduction to TightVNC. Installation. TightVNC for Windows: Installation and Getting Started. TightVNC Version 2.6 Copyright 2012 GlavSoft LLC.

SmartCode. v5.0. VNC Manager. Award Winning Remote Computer Management Software. Powerful tool to control all your computers from one program

VNC User Guide. Version 5.0. June 2012

Remote Desktop In OpenSUSE 10.3

Cisco Networking Academy Program Curriculum Scope & Sequence. Fundamentals of UNIX version 2.0 (July, 2002)

Shellshock Security Patch for X86

Adafruit's Raspberry Pi Lesson 7. Remote Control with VNC

visionapp Remote Desktop 2010 (vrd 2010)

Overview. Remote access and file transfer. SSH clients by platform. Logging in remotely

Installing and Using No Machine to connect to the Redhawk Cluster. Mac version

Linux Overview. Local facilities. Linux commands. The vi (gvim) editor

An Oracle White Paper July Oracle Linux and Oracle VM Remote Lab User Guide

Building and Using NX Open Source Components version 3.X

How to Tunnel Remote Desktop Through SSH on a Windows Computer

Tunnel VNC through SSH Tutorial Version 1

Hallpass Instructions for Connecting to Mac with a Mac

Frequently Asked Questions

Tunnels and Redirectors

Tera Term Telnet. Introduction

VNC User Guide. Version 5.3. December 2015

Getting Started with NX

Getting Started in Red Hat Linux An Overview of Red Hat Linux p. 3 Introducing Red Hat Linux p. 4 What Is Linux? p. 5 Linux's Roots in UNIX p.

Undergraduate Academic Affairs \ Student Affairs IT Services. VPN and Remote Desktop Access from a Windows 7 PC

Extending Remote Desktop for Large Installations. Distributed Package Installs

How. to: Connect Remotely. Updated by

Stealth OpenVPN and SSH Tunneling Over HTTPS

Lab 2: Secure Network Administration Principles - Log Analysis

WIRELESS TRAINING SOLUTIONS. by vlogic, Inc. L a b 0.3 Remote Access Labs

RSA SecurID Token User Guide February 12, 2015

Remote Administration

Linux Connection Guide. by Tristan Findley

Security Configuration Guide P/N Rev A05

Web File Management with SSH Secure Shell 3.2.3

Remote Access to Unix Machines

SPICE and desktop virtualization

Accessing the Media General SSL VPN

MATLAB on EC2 Instructions Guide

The Desktop Sharing Handbook. Brad Hards

idatafax Troubleshooting

Installing the SSH Client v3.2.2 For Microsoft Windows

HP AppPulse Active. Software Version: 2.2. Real Device Monitoring For AppPulse Active

Installing Management Applications on VNX for File

Using Remote Web Workplace Version 1.01

What is included in the ATRC server support

ZyWALL SSL 10. User s Guide. Integrated SSL-VPN Appliance. Version /2008 Edition 1

BF2CC Daemon Linux Installation Guide

File Transfer Examples. Running commands on other computers and transferring files between computers

INSTALLING KAAZING WEBSOCKET GATEWAY - HTML5 EDITION ON AN AMAZON EC2 CLOUD SERVER

RELEASE NOTES. Release Notes. Introduction. Platform. Product/version/build: Remote Control ( ) ActiveX Guest 11.

Deploying IBM Lotus Domino on Red Hat Enterprise Linux 5. Version 1.0

Securing Windows Remote Desktop with CopSSH

File Transfer Protocol (FTP) & SSH

Chapter 17. Transport-Level Security

Installation and configuration of Real-Time Monitoring Tool (RTMT)

Pragma FortressSSH 5.0

Set up a Home Secure Global Desktop Enterprise Edition Remote Access Server

CSE 265: System and Network Administration

Accessing VirtualBox Guests from Host using SSH, WinSCP and Tunnelling

SSH The Secure Shell

Aventail Connect Client with Smart Tunneling

What is new in BalaBit Shell Control Box 4 LTS

13.1 Backup virtual machines running on VMware ESXi / ESX Server

Abstract. VNC (Virtual Network Computing) is an open-source, cross-platform protocol for viewing GUI

ViPNet ThinClient 3.3. Quick Start

Remote Access: Internet Explorer

Vine Server. v3.1. Manual

uh6 efolder BDR Guide for Veeam Page 1 of 36

Security Overview Introduction Application Firewall Compatibility

VPN: Virtual Private Network - Description. Installation

If you have questions or find errors in the guide, please, contact us under the following address:

Transcription:

Advanced Network and System Administration Remote Desktops Copyright@2009, HaiVDC 1

Topics 1. X Windows 1. Client/server windowing 2. Window managers and desktops 3. Security 2. VNC 1. Why VNC? 2. Configuring 3. Security 3. NX Copyright@2009, HaiVDC 2

X-Windows Network-based windowing system. Server Client Handles user input and graphical display. Runs on the machine with display unit. Graphical applications are clients. Can run on a different machine than server. Set DISPLAY environment variable. Or use display command line option. Copyright@2009, HaiVDC 3

Window Manager X client that provides features like: Move, resize, iconify, and kill windows. Window title bars. Popup menus. Example window managers twm: Tab, primitive early window manager mwm: Motif, found on commercial UNIXes fvwm: Free, fast, very customizable. WindowMaker: NeXT-like, see also AfterStep. Copyright@2009, HaiVDC 4

TWM Screenshot Copyright@2009, HaiVDC 5

FVWM Screenshot Copyright@2009, HaiVDC 6

WindowMaker Copyright@2009, HaiVDC 7

Desktops CDE Common desktop env for commercial UNIXes. Gnome Standard Linux desktop based on GTK+. KDE Windows-like free desktop based on QT. Xfce Lightweight desktop, also based on GTK+. Copyright@2009, HaiVDC 8

X-Windows Security Why do we need security? An evil client can capture/create any X events. Even if you re not using any network clients! Host authentication Limit who can start clients by IP address. Set by xhost + or xhost - commands. Token authentication Only clients with token can access server. Set by the xauth command. Copyright@2009, HaiVDC 9

X-Windows Security Tunneling + host authentication. All clients appear to be from localhost. Therefore disable remote clients with xhost Use ssh client to tunnel X: ssh X host Server must have X11Forwarding set to yes. Use echo DISPLAY to test if X forwarding is on. Note that local users can still attack X session. Copyright@2009, HaiVDC 10

VNC: Virtual Network Computing Copyright@2009, HaiVDC 11

Why VNC? 1. Remote desktop access. 2. Helpdesk: control a remote desktop. 3. Persistent desktop. 4. Use same desktop from multiple clients. 5. Need Linux access from Windows. 6. Need Windows access from Linux. Copyright@2009, HaiVDC 12

What is VNC? Open remote desktop protocol. Many implementations RealVNC: VNC from original researchers. TightVNC: VNC with high compression. VNCj: Java VNC, can run within web browser. PalmVNC: VNC for Palm Pilots. UltraVNC: enhanced VNC, only for Windows. Copyright@2009, HaiVDC 13

Using VNC 1. Start VNC server UNIX: vncserver Win: Start menu>programs>realvnc>vncserver 1. Write down server name and display number. It will look something like unix3:1 1. Start VNC client UNIX: vncviewer Win: Start menu>programs>realvnc>vncviewer 1. Enter server and display to connect to (from step 2). 2. A VNC remote desktop should appear. Copyright@2009, HaiVDC 14

Configuring and Troubleshooting On UNIX, VNC stores files under ~/.vnc Configuration: xstartup Indicates which X clients to start with server. Typically includes vncconfig application. Configuration: passwd Contains VNC server session password. Log files: host:display#.log Any errors should appear in these logs. Copyright@2009, HaiVDC 15

Securing VNC VNC does not provide encryption. Use ssh tunneling to encrypt login + data: ssh L 5901:remotehost:5901 remotehost vncviewer localhost:1 Copyright@2009, HaiVDC 16

NX Advantages over VNC: Speed: fast enough to use over dialup. Built-in ssh encryption. Disadvantages Immature code; hard to install + set up. GPL client/server for Linux only. Free Windows client; commercial server. Copyright@2009, HaiVDC 17

References 1. Daniel J. Barrett, Robert G. Byrnes, Richard E. Silverman, SSH, The Secure Shell, 2 nd edition, O Reilly, 2005. 2. John Fisher, Secure X Windows, CIAC 2316, http://www.ciac.org/ciac/documents/ciac2316.html, 1995. 3. No Machine NX, http://www.nomachine.com/ 4. RedHat, Red Hat Enterprise Linux 4 System Administration Guide, http://www.redhat.com/docs/manuals/enterprise/rhel-4-manual/sysadmin-guide/, 2005. 5. Real VNC, http://www.realvnc.com/ 6. runeb, Crash Course in X Windows Security, http://bau2.uibk.ac.at/matic/ccxsec.htm 7. Carla Schroeder, Linux Cookbook, O Reilly, 2004. 8. Carla Schroeder, FreeNX ups the Remote Linux Desktop Ante, Enterprise Networking Planet, http ://www.enterprisenetworkingplanet.com/netos/print.php/3508951, 2005. 9. Webmin, http://www.webmin.com/ 10. Window Managers for X, http://xwinman.org/ Copyright@2009, HaiVDC 18

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information