Implies that System Preferences>Sharing>Screen Sharing is encrypted, depending on how you authenticate.
ios-app-for-use-with-os-x-screen-sharing My understanding is that Screen Sharing.app uses the same underlying VNC system as that in System Preferences (with the connection then accessed via the Finder), but sets up a secure connection over the internet, which System Preferences>Sharing>Screen Sharing does not do. I'm still somewhat confused about how screen sharing via the Screen Sharing application ("Screen Sharing.app") differs from using Screen Sharing or Remote Login in System Preferences>Sharing. I got into these questions because Back to My Mac was dropped in Mac OS 10.14 Mojave. Now make your screen sharing connectionįinder -> Go -> Connect to server -> can help explain most of this.That user is now allowed to ssh securely into your Mac. pub file to that user's $HOME/.ssh/authentication_keys file. Copy your $HOME/.ssh/*.pub file to the Mac or other system that will be making the Screen Sharing connectionĪppend the contents of the.Create an ssh-keygen key pair for your account.Configure your Mac so that it will not accept passwords via ssh (/etc/ssh/sshd_config and do some Googling).32265 I made this up) and associate it with port 22 on your Mac. Open a high numbered port on your router (eg.You can get VPN software, or you can get a router that support VPN connections, or you can get a server in your home that will provide VPN services for you home (something like a Synology NAS).Īgain, this is all if you do not trust Screen Sharing.Īnother secure approach is to use an ssh tunnel for screen sharing. You just depend on good passwords and secret keys to keep other out. Note a VPN, has to have an open port too. Your choice of port number would avoid script kiddies probing known ports, as those would be closed.Īnd of course if you use a good password (where longer is better than cryptic) someone trying to crack your Screen Shring port would need to know BOTH your username AND your long password. To connect from a system outside your home, you would use:įinder -> Go -> Connect to server -> vnc. You can arrange for your home router to open a high numbered port (eg 12345 I made this up) but redirect it to the Mac's 5900. Yes you need to open a port in your router, but it does not need to ber 5900.
Generally to use your username and password you need to be connecting from another Mac. If you use your username and password, then everything it secured. If you use this password it is not encrypted, as you are using traditional VNC
0 kommentar(er)
