disable encryption

[Phil Marsh]

Hi,

I was wondering how to disable encryption for a TurboVNC connections on my LAN.

I'm running Ubuntu 22.04.

I would like to disable encryption because I trust my LAN's security and encryption reduces connection speed while adding very little security. Also, for remote connections from the internet, I tunnel TurboVNC through an OpenVPN connection which is already secure and encrypted. Again, here additional encryption will just slow down the connection without adding much security.

Thanks in advance!

Phil

[DRC]

Multiple ways:

1. Pass ‘-securitytypes vnc’ on the command line when starting the viewer (e.g. ‘/opt/TurboVNC/bin/vncviewer -securitytypes vnc’ or ‘“c:\program files\turbovnc\vncviewer.bat” -securitytypes vnc’.)

2. Pass ‘-securitytypes vnc’ on the command line with starting the server (e.g. ‘/opt/TurboVNC/bin/vncserver -securitytypes vnc’.)

3. Disable the encrypted security types under the “Security” tab of the TurboVNC Viewer Options dialog in the TurboVNC Viewer. (Note that the viewer stores options independently for each host.)

4. Put ‘SecurityTypes=vnc’ in /etc/turbovncserver-security.conf on the host.

5. Put ‘SecurityTypes=vnc’ in ~/.vnc/default.turbovnc on the client.

You could also replace ‘vnc’ with ‘otp’ to use a one-time password instead of a permanent VNC password or ‘none’ to use no authentication at all (not recommended if the network or host are shared.)

On Apr 1, 2024, at 10:27 PM, Phil Marsh <ph...@carbonicsinc.com> wrote:

Hi,

--
You received this message because you are subscribed to the Google Groups "TurboVNC User Discussion/Support" group.
To unsubscribe from this group and stop receiving emails from it, send an email to turbovnc-user...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/turbovnc-users/afa6666c-bf41-48a8-8722-193ac20edbbbn%40googlegroups.com.

[Phil Marsh]

Thanks for your advice!

It appears that 

 Put ‘SecurityTypes=None’ in /etc/turbovncserver-security.conf on the host.

gives a syntax error.

I did download and install

https://github.com/TurboVNC/turbovnc/blob/main/unix/turbovncserver-security.conf

to /etc

and added the line:

permitted-security-types = VNC

Does that remove encryption from all clients which connect to this host via TurboVNC?

Thanks

[DRC]

My bad. permitted-security-types is the correct directive for /etc/turbovncserver-security.conf. You can also set the $securityTypes variable in /etc/turbovncserver.conf or ~/.vnc/turbovncserver.conf. The difference in the two approaches is that permitted-security-types in /etc/turbovncserver-security.conf specifies a set of allowed security types, and a security type cannot be enabled on the command line or in turbovncserver.conf unless it is allowed.

Refer to the User’s Guide for a description of the various security types. Yes, VNC is unencrypted and uses VNC password authentication. The default security type is TLSVnc, so VNC will behave like the default, just without built-in encryption.

On Apr 5, 2024, at 8:02 PM, Phil Marsh <ph...@carbonicsinc.com> wrote:

Thanks for your advice!

To view this discussion on the web visit https://groups.google.com/d/msgid/turbovnc-users/5b2a616a-668c-44eb-9dd9-f1a1cd210195n%40googlegroups.com.

[Phil Marsh]

Thanks again for your help and advice!

Phil

You received this message because you are subscribed to a topic in the Google Groups "TurboVNC User Discussion/Support" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/turbovnc-users/ekK9b4g_Zqg/unsubscribe.
To unsubscribe from this group and all its topics, send an email to turbovnc-user...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/turbovnc-users/4E081690-22F3-4468-935B-6210BA96256B%40virtualgl.org.