Comments (2)
dcommander
commented on July 20, 2024
1
Yes, this was a consequence of the addition of VeNCrypt. The -noauth, -novncauth, -nootp, and -nopam options were simply wrappers in the vncserver script. In TurboVNC 2.0.x, the default was to enable all of those authentication types by passing the corresponding arguments -rfbauth, -otpauth, -pamauth to Xvnc, and using one of the -no* arguments with vncserver removed the corresponding authentication argument from the Xvnc command line.
In TurboVNC 2.1, there's a new argument (-securitytypes) that controls which security types are enabled (a "security type" is a combination of an authentication type and an encryption type.) The default in Xvnc is effectively -securitytypes TLSVnc,TLSOtp,TLSPlain,X509Vnc,X509Otp,X509Plain,VNC,OTP, UnixLogin,Plain, but you can override this in order to disable some of the default security types or enable any of the "None" security types ("None", "TLSNone", or "X509None"), all of which require no authentication (NOTE: -securitytypes is passed through from vncserver to Xvnc, so refer to the Xvnc man page for a description of that parameter.)
The "equivalent" options are:
| Old option | New option |
|---|---|
-noauth |
-securitytypes TLSNone,X509None,None |
-novncauth |
-securitytypes TLSOtp,TLSPlain,X509Otp,X509Plain,OTP,UnixLogin,Plain |
-nopam |
-securitytypes TLSVnc,TLSOtp,X509Vnc,X509Otp,VNC,OTP |
-nootp |
-securitytypes TLSVnc,TLSPlain,X509Vnc,X509Plain,VNC,UnixLogin,Plain |
I put "equivalent" in quotes because there isn't really a literal equivalent of the old -no* options. I toyed with the idea of keeping the -no* options in vncserver and making them wrappers for -securitytypes, but this raised additional questions, such as whether those options should work literally the same as they did in TurboVNC 2.0.x (i.e. whether using them would imply disabling encryption.) Also, the problem with implementing backward-compatible -no* options in vncserver is that the -securitytypes argument can be used not just to override the default security types that are available but to override the default order as well. in TurboVNC 2.0.x, the preferred order of authentication types could be specified in the global security config file (/etc/turbovncserver-security.conf), and specifying -noauth or -novncauth, etc., didn't affect this order. There isn't any way to implement an equivalent behavior using the -securitytypes argument, so I felt it best to force the issue by removing the -no* arguments in vncserver and forcing people to switch to using -securitytypes, which is a more standard way of doing this sort of thing. I apologize for the confusion.
from turbovnc.
norman-geist
commented on July 20, 2024
Thanks for your detailed explanation, although this information maybe should have been given in the release notes or elsewhere. Whatsoever, now people will be able to find it. The suggested approximation to -noauth worked perfectly.
Regards
from turbovnc.
Related Issues (20)
- vncserver: Wrong type or access mode of /home/tyiot/.vnc HOT 6
- VNCserver cannot start, log prompt Killing Xvnc process ID HOT 4
- Internal SSH client does not support all features of ~/.ssh/config, ProxyJump/ProxyCommand HOT 3
- Consider switching to building with zlib-ng HOT 3
- how do i start turbovnc server automatically on ubuntu 22.04? HOT 1
- Release separate assets for vncviewer and vncserver installers HOT 1
- Can't seem to bring up TurboVNC session on Ubuntu w/ ARM HOT 7
- podman containers fail to start through TurboVNC session HOT 4
- How to configure turbovnc as a systemd service (ubuntu 20.04) HOT 1
- the UI of Display Settings dialog is messy after changing custom scale HOT 2
- Install fails HOT 3
- Can't start TurboVNC in Ubuntu GNOME desktop HOT 10
- JRELoadError with arm64 Mac - version 3.1.1 HOT 3
- Can the software increase support for file copying HOT 1
- No value for `$wm` working HOT 4
- Session Manager behaviour with UDS listening sessions HOT 4
- Browser and other applications missing on Virtual Desktop HOT 11
- Session Manager Error HOT 3
- java.lang.IllegalArgumentException: Value too long HOT 6
- Guidance needed: Trying to get TurboVNC to only serve a single monitor HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from turbovnc.