Although TightVNC encrypts VNC passwords sent over the net, the rest of the traffic is sent as is, unencrypted (for password encryption, VNC uses a DES-encrypted challenge-response scheme, where the password is limited by 8 characters, and the effective DES key length is 56 bits). So using TightVNC over the Internet can be a security risk. To solve this problem, we have plans to implement built-in encryption in future versions of TightVNC.
In the mean time, if you need real security, we recommend installing an SSH server, and using SSH tunneling for all TightVNC connections from untrusted networks.
Code: Select all
vncviewer -via YOUR_RPI_IP localhost
Can you post your steps for how you did this?Polydnj wrote:Okey so my raspberry pi computer is reachable from anywhere on the internet with no-ip.com and port forwarding. I'm using tightvnc server to remote into my machine, but
the only security is a password. What are the possiblities of setting up ssh keys instead of a password with tightvnc?
Here's my specs
1)Have ssh keys setup for sftp
2)Running soft-float operating system
3)tightvnc is only is password protected atm
4)Have port forwarding w/ noip.com