VNC inside my LAN for W2K Pro Remote Access?
Posted on 2005-05-13
Hello all. I am evaluating remote access options for Windows 2000 Professional clients inside my LAN.
I was wondering from a security standpoint if it would be safe to install WinVNC Server as a service on these PCs and then just simply disable the service from starting up when the PC boots. Then, when I need to access the PC, I can just login via a remote command prompt (psservice) and start the VNC service. I'll do my work on the remote system from the VNC client on my WinXP laptop, log out, and then stop the service.
Does working through VNC this way still pose security risks? I would imagine that leaving the service running at all times on a client PC is much more dangerous. Can anyone outline the security risks of running it this way? This is a basic Windows Server LAN with a perimeter firewall and NAT'd router.
Thanks in advance everyone!