Secure Remote Access to your home network

[Digit]

Hi,

I've been looking at solutions to create a secure way to access my home network and decided to give Adito VPN a try. It's an Open Source browser based SSL VPN solution based on the former SSL-Explorer:



It runs on Linux and Windows. I have it running in a XP VM since today. It feels good.

But i was wondering if there are similar products where you don't need to install VPN client x or y or z first, but just a browser to get access to your home network secure.

Any suggestions?

<hr noshade size="1"><font size="1">Robert
http://www.hekkers.net <i>Digit's Online Home.</i></font id="size1">

[Mversluis]

A couple weeks ago we did a large installation of the new call centers for the ABN amro. One of my "hired" company's brough some tool with hime for this instance. The client must start a small exe file and with this file and security code the server. ( the remote controller ) can take controll of the complete environment.

After using the right security code. ( i will try to find this application , I have put it somewhere )


Other wise , we have a small business server 2003 running at the office , with this server is very easy to connect to the server or workstation true rdp ( with vallidation of ip , certificate or other ways)

The app is showmypc2953.exe , i dont no of this would be free -share or commercial sofware. ( if its free I can send it to you )

Cheers
Marco

[Erik]

In my view you should secure the access to your home right at the very entry point. Most of the time this will be a router. Many routers support VPN connections. I use a Drytek Vigor 2900 to do the job.

[Fantic]

showmypc is using the man in the middle principle, based on VNC, it requires the user at the sharing end to click the Share my PC button, this will generate a password and on the client pc you click view remote PC and enter the same password.
This means this tool is very handy for assisting people remotely but not for this purpose.

Regards, Maarten.
Never let a computer know you're in a hurry.

[Rebel]

@ Digit,

Maybee this is what you mean; its for free: www.logmein.com

PS; good luck with that Remeha thing, I'm looking foreward to the result
Cheers,
Arjo

[Digit]

Erik,
Thanks for your comments. My primary objective was/is to get a solution that would make it possible to access a Windows host by means of VNC while not having a VNC client with me, or start RDP to another host without RDP client on the client. Or Telnet to a linux host. While searching for a solution Adito seemed to be the best solution for that: quick (no need to setup VPN) and versatile.


<hr noshade size="1"><font size="1">Robert
http://www.hekkers.net <i>Digit's Online Home.</i></font id="size1">

[Digit]

Hi Arjo,

Logmein, i saw that one, but i think this is one of those products where you have to install something on the host you want to control, right? I must admit i didn't really look much harder when i read PC&Mac compatible, cause there are more flavors

PS.
Still following my efforts?
I'll keep you posted

<hr noshade size="1"><font size="1">Robert
http://www.hekkers.net <i>Digit's Online Home.</i></font id="size1">

[Rebel]

Hi Robert,

Yes, correct, you have to install something on the host. It run as a service and you don't need to applay so by showmypc.

For sure I'm following the plugin developments!
btw since the cv is not heating, i've installed the gateway again and have no errors so far. The hot water starts are counting..

Tanks

[Fantic]

Hi Robert,

With VNC there is also the http port that you can use, this will download the VNC viewer as a Java applet, most pc's do have java installed. I have 2 ports open on my router, no not 5800 and 5900 that would be to easy. I've been using this for quite a while now and using RealVNC the encrypted version is is just a little bit safer.

Regards, Maarten.
Never let a computer know you're in a hurry.

[Post-IT]

Looks a lot like SSL-Explorer which I have used for a few years. A quick Google shows that SSL-Explorer has been killed by Barracuda Network, and Adito is the opensource replacement. It's a good piece of software. Just as with OpenVPN and other VPN products, you will have to download and install some sort of code to get the SSL VPN started. This is also the case in commercial products. The SSL client pushed by Adito or OpenVPN is light and fast, you don't need admin rights...just a browser.

If you want to keep it simple use the VNC Java client. The only trouble with VNC (and the Java client server) are the many vulnerabilities. Running it on a different port will help some.

I'd rather go for a VPN on your router (1st choice), but then you'll need to install a full VPN client. This works perfect on my laptop which I have with me almost every day. The second option would be to stick with the SSL VPN package on the server such as Adito or OpenVPN which brings much more flexibility if you want to work from "unmanaged" client machines.

[Snelvuur]

dont forget with "logmein" somebody used that at our work (@abnamro) and was fired on the spot. Since you allow connections from outside to the abnamro network withouth any other form of encryption. (besides that even if it has encryption its still illegal)

I normally just install ssh.. then just make a ssh tunnel, and port forward remote dekstop over the ssh tunnel.. putty can be downloaded everywhere and does not need to be stored too.

// Erik (binkey.nl)

[Mdamen]

My way to do it is using SSH tunnels..
You can run putty anywhere [:)]
Just run sshd (on a linux machine) on a web port (i.e. 443 or 80) and you can also use corporate http proxies.

--
Maarten Damen

www.maartendamen.com

[Edwin2008]

@fantic. Watch out almost no security, no encryption etc. Better use the router vpn first. Even a simple PPTP connection with encryption and a strong (at least 16 digit) password would be a better choice!