Update: UltraVNC 1.4.3.6 and UltraVNC SC 1.4.3.6: viewtopic.php?t=37885
Important: Please update to latest version before to create a reply, a topic or an issue: viewtopic.php?t=37864

Join us on social networks and share our announcements:
- Website: https://uvnc.com/
- GitHub: https://github.com/ultravnc
- Mastodon: https://mastodon.social/@ultravnc
- Facebook: https://www.facebook.com/ultravnc1
- X/Twitter: https://twitter.com/ultravnc1
- Reddit community: https://www.reddit.com/r/ultravnc
- OpenHub: https://openhub.net/p/ultravnc

SC-III without DSM secure through SSL connection?

SC <-> Proxy <-> Repeater <-> Proxy <-> Viewer
Post Reply
alex.enjoy
Posts: 2
Joined: 2008-03-23 13:10

SC-III without DSM secure through SSL connection?

Post by alex.enjoy »

Hello,

i cannot get SC-III with included DSM-Plugin to run.
The repeater throws the connections away in the moment both connected.
But without plugin it works well.

Question: Is it secure without the plugin, because SSL is used?
I've created my own PEM file...

thanks
Alex.
redge
1000
1000
Posts: 6797
Joined: 2004-07-03 17:05
Location: Switzerland - Geneva

Re: SC-III without DSM secure through SSL connection?

Post by redge »

check you have the same version of msrc4plugin.dsm + rc4.key at both side (viewer and SC)

if SSL, you should not need dsmplugin + rc4.key, except for double secure.
UltraVNC 1.0.9.6.1 (built 20110518)
OS Win: xp home + vista business + 7 home
only experienced user, not developer
redge
1000
1000
Posts: 6797
Joined: 2004-07-03 17:05
Location: Switzerland - Geneva

Re: SC-III without DSM secure through SSL connection?

Post by redge »

don't forget, you need the vncviewer_ssl.exe for the secure connection SSL with SCIII
UltraVNC 1.0.9.6.1 (built 20110518)
OS Win: xp home + vista business + 7 home
only experienced user, not developer
alex.enjoy
Posts: 2
Joined: 2008-03-23 13:10

Re: SC-III without DSM secure through SSL connection?

Post by alex.enjoy »

redge, thanks for infos.

about the vncviewer_ssl.exe, in case I have my own repeater set up in my DMZ and only connect internally with the viewer to this repeater, will the SC-III-SSL Server be enough to secure the public internet stream?

My plan is the following:
a own repeater with SSL-Support in a DMZ of our LAN.
A SC-III Module connecting to this repeter through a 443-Forward-Port from Internet.
The standard VNCViewer connection unsecured and not encrypted to the repeater via LAN direct to the repeater inside the DMZ.

Am I right when I think that all internet crossing data of these sessions are encrypted and protected by the SSL channel and the repeater is the edge where it will be unsecured forwarded within the private LAN?

The double encryption would be nice, too.
Here is a repeater log from a connection attempt.
The connection is dropped, no matter which side connects first.

Code: Select all

Incoming Viewer (SSL client) 
accept() connection 
Viewer added to list 6112
Incoming Server (SSL client) 
Server added to list 6112
Server Removed from list 6112
Viewer removed from list 6112
I double checked that i use the same dsm-plugin and the same keyfile.
I've tried the noreg-versions, too.
What's about the AESV2Plugin.dsm? Is this usable with SC-III too?
Does the online-creator include this plugin if i pack it with the ZIP?

thanks
alex.
redge
1000
1000
Posts: 6797
Joined: 2004-07-03 17:05
Location: Switzerland - Geneva

Re: SC-III without DSM secure through SSL connection?

Post by redge »

will the SC-III-SSL Server be enough to secure the public internet stream?
should be but I'm not very aware about security
Am I right when I think that all internet crossing data of these sessions are encrypted and protected by the SSL channel and the repeater is the edge where it will be unsecured forwarded within the private LAN?
yes

> What's about the AESV2Plugin.dsm?
[topic=7393][/topic]

> Is this usable with SC-III too?
not tested my self.

> Does the online-creator include this plugin if i pack it with the ZIP?
not tested my self
UltraVNC 1.0.9.6.1 (built 20110518)
OS Win: xp home + vista business + 7 home
only experienced user, not developer
Post Reply