I'd like a recommend a security enhancement. I know that UltraVNC used the store the default VNC password in clear text in the registry. This allows a bad admin or program to scavenge the passwords if it happens to to have access to the registry key.
I propose that we should store the default password in a one way seeded hash. This way if a registry entry is left insecure (default installation) even is the entry is read, the default password is not known.