Although
you can password-protect web pages, the web page can be bypassed
by using a binary VNC viewer to directly access the Xvnc port. Using a
VNC password file (with the -rfbauth option) and matching the
tag in the HTML can help reduce this vulnerability
??”only users with access to the web page will have the password
for VNC access.
You can take this concept and extend it as far as you want, perhaps incorporating
elements of a kiosk configuration (see Section 15.1). For example, if you want to give
live software demos of complex applications on the Web, you could require users to
register through a web-based facility, and then create a chroot jail specifically for
each user??™s instance of the program. The application could be started with a simple
window manager such as mwm or fvwm, and the user could create, save, and open
files, but not start any other applications; when the user finishes the demo, the
chroot environment could be destroyed automatically.
14.14 Using KDE and Gnome Remote Desktop
Access Tools
Both KDE and Gnome provide X clients that are VNC servers. These tools read the X
desktop continuously, using the DAMAGE extension (Section 1.
Pages:
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328