LinuxQuestions.org
Go Job Hunting at the LQ Job Marketplace
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Desktop
User Name
Password
Linux - Desktop This forum is for the discussion of all Linux Software used in a desktop context.

Notices

Reply
 
Search this Thread
Old 04-03-2009, 12:07 PM   #1
rvanscherpe
LQ Newbie
 
Registered: Apr 2009
Posts: 1

Rep: Reputation: 0
Tunneling VNC over SSH


Hi all,

I have a client who is looking to provide their consultants with remote access to their internal machines via VNC. They do not want to provide any other access to them. I did a bit of research and looked into tunneling VNC over SSH but that would still enable the external consultant to have an ssh login/shell. Is there away to prevent that and just provide them with VNC access only?
Thanks!

Ron.
 
Old 04-03-2009, 02:31 PM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,378

Rep: Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963
OK, if you want to have that architecture, but do it all real slick likes, then look at a freenx implementation instead. no actual ssh possible, no vnc sessions idling around. Basically you have a special user which is logged into over ssh. once that user is logged in, a vnc server for the actual user is started up and tunnelled over the existing ssh connection so there is no additional services running - something that really made me smile when I first saw it.

I'm sure there's a certain formal shell you can run which will also give this behaviour. Ideally you just don't want to allow execution of a remote command. If you check the ssh manpage you'll see the -N option which is the behaviour you want to force from the server side right? No sign of a sshd_config option for that. You can write a script such as:

Code:
#!/bin/sh
sleep 180
exit
which will open a terminal for 3 minutes and, apparently, close *IF* there is nothing runnign over the tunnel, so that's quite nice. You could expand this and start the vnc server before the sleep incase it's not running. freenx is nicer though.

Last edited by acid_kewpie; 04-03-2009 at 02:39 PM.
 
  


Reply

Tags
ssh, tunnel, tunneling, vnc


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Tunneling VNC through SSH ohswrestler2009 Linux - Newbie 2 10-15-2007 08:27 AM
LXer: Tutorial: Using VNC Tunneling over SSH LXer Syndicated Linux News 0 01-30-2006 01:46 PM
tunneling vnc over SSH clickster Linux - Networking 7 06-28-2005 01:21 PM
VNC tunneling -- so close! makhand Linux - Networking 1 09-14-2004 10:51 PM
VNC with ssh tunneling problem. spatemp Linux - Networking 1 02-05-2002 08:54 AM


All times are GMT -5. The time now is 09:45 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration