IT needs to deliver services with more agility and velocity. IT must roll out application features and innovations faster to keep up with customer demands, which is where a DevOps toolchain steps in. View the infographic to see why you need a DevOps toolchain.
Course Of The Month
4 days, 13 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
VNC/port 5900 connection attempt logging in Mac OS 10.7.5?
Posted on 2013-01-17
I have an OS X 10.7.5 machine on my home network with the built-in screen sharing turned on. I connect to it from work with the built-in OS X Screen Sharing app, so it's essentially a VNC connection using the default Apple client/server software on the default port 5900.
These connections show up in /var/log/secure.log like this:
Jan 15 10:16:41 MyServer screensharingd[7630]: Authentication: SUCCEEDED
Jan 15 10:21:35 MyServer screensharingd[7630]: Authentication: FAILED
But when I look at my traffic logs (using PRTG Network Monitor), I see frequent port 5900 connections to that machine that don't correspond with any secure.log entry.
Where might those connection attempts be logged? Is there something other than screensharingd that might be handling port 5900 traffic?
These connections show up in /var/log/secure.log like this:
Jan 15 10:16:41 MyServer screensharingd[7630]: Authentication: SUCCEEDED
Jan 15 10:21:35 MyServer screensharingd[7630]: Authentication: FAILED
But when I look at my traffic logs (using PRTG Network Monitor), I see frequent port 5900 connections to that machine that don't correspond with any secure.log entry.
Where might those connection attempts be logged? Is there something other than screensharingd that might be handling port 5900 traffic?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
2 Comments
Active today
These might be a port scan. I.e. sync which is recorded as a connection attempt is actually never completed.
Another discussion on a similar issue
http://forums.macrumors.com/showthread.php?t=1414493
Another discussion on a similar issue
http://forums.macrumors.com/showthread.php?t=1414493
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Suggested Solutions
| Title | # Comments | Views | Activity |
|---|---|---|---|
| Setting Windows Ciphers and Cipher Suites in Windows for a large number (500+ Servers) | 17 | 133 | |
| Sierra iCloud Drive storing data locally | 3 | 64 | |
| Call Recorder in IOS | 8 | 57 | |
| Ransomware case | 23 | 109 |
Our Group Policy work started with Small Business Server in 2000. Microsoft gave us an excellent OU and GPO model in subsequent SBS editions that utilized WMI filters, OU linking, and VBS scripts. These are some of experiences plus our spending a lo…
Set up iPhone and iPad email signatures to always send in high-quality HTML with this step-by step guide.
Attackers love to prey on accounts that have privileges.
Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
This video shows how to use Hyena, from SystemTools Software, to update 100 user accounts from an external text file. View in 1080p for best video quality.
Suggested Courses
Course of the Month4 days, 13 hours left to enroll
739 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.