local screen unlocked by remote connection via VNC
Bug #484476 reported by
Paolino Paperino
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
One Hundred Papercuts |
Invalid
|
Undecided
|
Unassigned | ||
vino (Ubuntu) |
Won't Fix
|
Wishlist
|
Unassigned |
Bug Description
If one leaves the system with the screen locked and then do connect remotely to it via VNC protocol, the screen gets unlocked also *locally*, so a person physically attending in front of the workstation can access to the system *without* password and then interfere and/or eavesdrop the remote session.
Conversely, with terminal services on Windows, the screen stays rightly locked during remote sessions. On Ubuntu via VNC there should be the same behavior.
Sorry for bad English, I am Italian-only speaking.
In fact, it depends on the way you launched you vnc server.
When I launch a new vnc server (command "vncserver"), it starts a new X server with a virtual screen. This is really secure, because there are no physical screen attached to it, so a bad guy in front of the workstation can't access it.
Which tool/command are you using to start your vnc server ?
I think a real X server shared with VNC should not be locked when a VNC client is connecting :a lot of people (hum... me) are using this behavior to remotely help and train my end-users.