Urgent !!! Is vnc viewer a peeper ?

Discussion in 'Linux Networking' started by Sally, Aug 28, 2005.


  1. Sally; If someone has your root password, all they would need to login and do
    whatever they please is to also know your ip address. (your ip address is
    usually the number that came from your ISP when you turned your computer on.eg.
    my ip number is somewhat like this: 207.125.202.235)
    You need to immediately find how to change your password.

    <snip>
     
    Leo (Bing) Whiteway, Aug 29, 2005
    #21
    1. Advertisements

  2. Sally

    Sally Guest

    They usually know the IP address, because they help us simples configure the
    Internet connection/modem etc. .

    Thanks, Leo, for your help.

    Sally
     
    Sally, Aug 29, 2005
    #22
    1. Advertisements

  3. Sally

    Sally Guest

    Which, if I understand you right, means, that they can access my computer
    any time they like (provided I am on the Internet), do what ever they want
    and look at whatever they want..?
    Would any of that be detectable/provable once they have (ab-)used the
    access?

    Thanks again

    Sally
     
    Sally, Aug 29, 2005
    #23
  4. -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1
    Yeah, that's right. Logs are kept though, try looking in /var/log to
    start with.
    - --
    Ray (Our name is Legion, for we are many.)

    Don't know what all this PGP stuff is? Ask me!
    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1.4.1 (GNU/Linux)

    iD8DBQFDErlLKwExTSbpHqgRAl1MAJsF537aY2qFP+lt+4s0va06pnjpjQCfb4HM
    NfNJirLzoSV0fXAWXZ8K2xE=
    =U7VT
    -----END PGP SIGNATURE-----
     
    Raymond Pasco, Aug 29, 2005
    #24
  5. Sally

    Sally Guest

    Hi there Ray!
    One more question, would you know, if this (the (set up)accessibilty and /or
    the possible abuse of it) is legal (Australia)?

    Regards to you and your patience, you're a gem in the linux.networking
    newsgroup!

    Thank you

    Sally
     
    Sally, Aug 29, 2005
    #25
  6. -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1
    It's my first day in c.o.l.n ^_^ so thanks. About the legality, having
    root access to someone's box is probably legal if it is authorized. I'm
    not sure about abuse of root access, that's probably a slippery slope.
    Of course, I am not an Australian lawyer. :)

    You should probably look into getting the root access for yourself if
    this is your computer, however learn about Linux before using it. I
    personally learned Linux with Google and a lot of spare time, but a book
    or something is probably more convenient.

    - --
    Ray (Our name is Legion, for we are many.)

    Don't know what all this PGP stuff is? Ask me!
    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1.4.1 (GNU/Linux)

    iD8DBQFDEsW9KwExTSbpHqgRAnJ7AJ0f03gKoKJ5HYVUvWLfJKGx885hewCeKaT5
    tBNnOMWRSIMWr3g9AG0hECU=
    =Oyb9
    -----END PGP SIGNATURE-----
     
    Raymond Pasco, Aug 29, 2005
    #26
  7. Sally

    Sally Guest

    Thanks Ray, good luck to you..

    Sally

     
    Sally, Aug 29, 2005
    #27
  8. Sally you have many misunderstandings. And people have not helped by
    making assumptions about what you know so lets start from the top.

    newsgroups are not like email. You dont have to repeat the same answer
    to several different people as we are all able to see each reply you
    give to anyone in this group.


    As for vnc with the host address. this is probably an indication that
    the person that set your computer up, added vnc, and used vnc to access
    his own server. So in fact, YOU have a better chance of accessing HIS
    computer as that is what VNC _viewer_ is for.

    If vncserver is running on your computer, then he can remotely access
    your computer if
    1. he has your ip address
    2. your windows firewall is off or the vnc port is open 5900-59xx and
    5800-58xx for browser style


    Since this person set up your computer, he probalby does know the
    passwords unless you changed them. this means if he is sitting in front
    of your computer, he can likely access everything given enough time.
    This does not mean he automatically gets remote access too. Many people
    will keep access after they setup the computer to assist the user when
    she forgets her pwd or looses a file or whatever.


    You should be equally if not more concerned with RemoteAssistance and
    RemoteDesktop which are built in windows features. If that is on, then
    there is no doubt he can access yoru computer. That does not mean its
    sinister. IT depertments do this a lot. I personally don't like it.

    The only way for you to get complete security is to get knowledge and
    set it up yourself...
     
    CL (dnoyeB) Gilbert, Aug 29, 2005
    #28
  9. Plus if you send email from that compputer the IP address will be
    within. unless you use webmail like yahoo or gmail, etc. Your ISp may
    change your IP address, but each email you send can contain it.


    CL Gilbert
     
    CL (dnoyeB) Gilbert, Aug 29, 2005
    #29
  10. -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1
    It's comp.os.LINUX.networking, and ssh runs on port 25.

    - --
    Ray (Our name is Legion, for we are many.)

    Don't know what all this PGP stuff is? Ask me!
    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1.4.1 (GNU/Linux)

    iD8DBQFDEyZJKwExTSbpHqgRAtI8AJ9UmALkHLKSceZ2fdknXxVfHuI6igCeMTVC
    Vg29i+VW6RqFtcltTREWOtU=
    =EtdC
    -----END PGP SIGNATURE-----
     
    Raymond Pasco, Aug 29, 2005
    #30
  11. -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1

    not true, it runs on port 22.

    - --
    Ray (Our name is Legion, for we are many.)

    Don't know what all this PGP stuff is? Ask me!
    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1.4.1 (GNU/Linux)

    iD8DBQFDE+B+KwExTSbpHqgRAtalAJ9vMsHbYzDA14CiqW+2tn7Z4edwhACfeC+W
    tfdSxCf9CuwqWLBa9WjpkZk=
    =MJ1e
    -----END PGP SIGNATURE-----
     
    Raymond Pasco, Aug 30, 2005
    #31
  12. Sally

    ynotssor Guest

    You're confusing the default listening port of sshd, not ssh.
     
    ynotssor, Aug 30, 2005
    #32
  13. Sally

    Sally Guest

    Thanks for the tip, (it saves me from making a complete fool of myself..),
    I'll send from now on only one.

    For the rest you've sent ..- there are a few things to say to that.

    For once I mentioned (and far too often as you've just explained) that I am
    far from being the 'Wizard of OS', which is, after you read a couple of my
    responses, quite clear and I don't intend to achieve that particular status
    either.
    All I want to know is, if the person I got the computer from, can access my
    computer or not.
    After your mail now I am utterly confused : Can he or can't he???
    (And in case it interests you : There is no firewall; he helps configuring
    the internet connection etc. (as I mentioned), so he does know the IP
    address. If the vncserver is running, I don't know... and if any of the
    mentioned ports are open or not I would'nt have the foggiest..)

    I do agree with you, that it is all most likely very innocent, but I do want
    to be certain.

    The 'built in windows features' you've mentioned, there are built into the
    linux system?
    And another thing: How can I check, if anyone is abusing the access
    (Vncserver/Remote Assistance/Remote Desktop or otherwise)

    Thanks
    Sally
     
    Sally, Aug 30, 2005
    #33
  14. Sally

    Postmaster Guest

    Sally,

    VNC and Remote desktop assistance are not the root cause
    of your frustration, nor will any answers about the functioning
    of VNC, from anyone, resolve the root problem.

    * It appears that you have a concern that you may have a wizard
    that is covertly observing your computer and your actions.
    * You are not a wizard, and have no desire to become one.
    * You have permitted someone else to install or configure software
    on your computer.
    * You don't know if you can trust the person that installed software
    on your system.

    You are concerned about VNC only because it is the first
    time you have noticed any form of covert spyware. But the
    reality is, you have permitted someone that you do not trust
    to install, and configure software on your system, and this
    person's computer skills exceed yours. Thus, what
    you have here is a human trust issue, not a computer science
    issue.
    Your solution lies not within the realm of computer science
    but social science. Once you resolve the trust issue, the root
    problem will be gone, and I suspect along with this being
    resolved, your system will no longer be maintained by someone
    that you do not trust.

    Enjoy,
    Postmaster.

    P.S. Further reading I suggest...
    Google search:
    Keywords: Keyloggers, Spyware, Trojans
     
    Postmaster, Aug 30, 2005
    #34
  15. Sally

    Sally Guest

    You have missed the point completely, Postmaster..
    I suggest you start reading at the top.

    Sally
     
    Sally, Aug 30, 2005
    #35
  16. Sally

    Bret Guest

    No, he's nailed it, assuming you are not a troll.
     
    Bret, Aug 30, 2005
    #36
  17. Sally

    Sally Guest

    You too should go back to the top..

     
    Sally, Aug 31, 2005
    #37
  18. Sally

    Bret Guest

    I have read the thread in it's entirety, you just dont know enough to
    be helped, surprising you found your way here.
     
    Bret, Aug 31, 2005
    #38
  19. Sally

    Sally Guest

    When we started walking, first thing after the first the steps was to fall
    on our bum - according to you, we all could not have been helped...

    Surprised, I got here? Well, I got up again (with a little help)...

    Are you still crawling ???

    Sally
     
    Sally, Aug 31, 2005
    #39
  20. Sally

    Bret Guest

    I'll leave it to others to feed the troll :)
     
    Bret, Aug 31, 2005
    #40
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.