Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Introduction to Linux - A Hands on Guide
This guide was created as an overview of the Linux Operating System, geared toward new users as an exploration tour and getting started guide, with exercises at the end of each chapter.
For more advanced trainees it can be a desktop reference, and a collection of the base knowledge needed to proceed with system and network administration. This book contains many real life examples derived from the author's experience as a Linux system and network administrator, trainer and consultant. They hope these examples will help you to get a better understanding of the Linux system and that you feel encouraged to try out things on your own.
Click Here to receive this Complete Guide absolutely free.
first let me clarify that I'm not trying to hack someone's computer or anything like that but:
I work for a company as Lan Admin, I use VNC to connect to the users' computers and resolve issues quickly, well one of the users has brought to my attention that someone is connecting to his/her PC, problem is that I'm the only one that knows the VNC password. I'm running Wireshark scanning VNC ports and waiting for that sucker to connect however I would like to see what password that person is using to connect. ( I wonder if my VNC password has been compromised)I tested and there is a string that says Authentication response from Client but I can't decode what the password is. (this was a test I did) If you guys can't help me it is fine but like I said I'm not trying to crack anything just catch whoever is doing it!
thanks for your help!
why not just assume yours has been compromised and change the password? If they are gaining access then it doesn't really matter what password they are using, they either have yours or a collision of yours, though I believe vnc does just a straight des crypt with a set key so collision is unlikely. If they have access to the server other than vnc they might be able to access the vnc password file, if that's the case it doesn't matter what you change it to they'll still have access since they'll just go decrypt then new password when you change it.
the thing is that I think the person that is connecting to that system is someone who works here!!! so getting this person's IP and a proof that he/she is using my password would be really good.
what do you think?
Do several captures of your connecting to the vnc server and I'll bet you'll see that the auth string it sends is the same every time. If that is the case then when that person logs in you can compare it with yours. I think its kind of a moot point though since I believe vnc servers only support one password (though they might have a different one for watchers only), so all you need to do is record the ip its coming from and you have your answer.