Results 1 to 7 of 7

Thread: nomachine security?

  1. #1
    Join Date
    Jun 2008
    Location
    Prescott, AZ
    Posts
    1,191

    Exclamation nomachine security?

    I was looking at Nomachine NX and was reading it was included in the openSuSE kernel? Does this mean Wizards across the globe have looked at the code closely and blessed it (as in, no back doors or bombs)?

    Thanks in advance!
    Patti

  2. #2
    goldie NNTP User

    Default Re: nomachine security?

    www.nomachine.com says "NX security is guaranteed at every layer
    involved in the communication process. NX uses SSH public-key
    encryption and 128 bit volatile random cookie generation."

    unfortunately, i couldn't find what the good "Wizzards" had to say
    about it...(i didn't google because i'm sure you already did, and
    finding nothing then asked here)

    i guess it IS possible that nomachine.com is nothing more than an NSA,
    CIA, KGB, Mossad, MI5 and etc cyber-age storefront producing
    impossible to discover back doors with the full cooperation of Intel,
    ARM, ADM, IBM, Dell, etc etc etc

    my real world training and experience is to always assume someone is
    listening, watching, making notes and taping..

    always wear your tinfoil beanie!!

    --
    goldie

  3. #3
    Join Date
    Jun 2008
    Location
    Frisco, TX
    Posts
    1,235

    Default Re: nomachine security?

    On Tue, 2009-08-25 at 17:16 +0000, PattiMichelle wrote:
    > I was looking at Nomachine NX and was reading it was included in the
    > openSuSE kernel? Does this mean 'Wizards' (http://foldoc.org/wizard)
    > across the globe have looked at the code closely and blessed it (as in,
    > no back doors)?


    I may be wise to be comparative. Is it more secure than Windows rdp?
    Yes. Why? Because you'll never know how secure rdp is.

    NX uses ssh... if you trust ssh, you can trust nx. If you can hack into
    someone's ssh account, then you can hack nx. There's actually some
    additional restrictions in nx.... so perhaps it is more secure than
    ssh... but probably it's better to just say it's different (config
    wise).




  4. #4
    Join Date
    Jun 2008
    Location
    Prescott, AZ
    Posts
    1,191

    Default Re: nomachine security?

    Thank you very much for the replies!! I do trust Linux more than Windows, but only because I trust the opensource people more than I trust Corporate-weenie-controlled software I did find lots of info on security from the point of view of SSH security - but nothing vouching for the code author's rating by their peers in the Open Source coders community.

    I was asking because, as I was working on getting Compiz going on my home 11.1 machine, I found threads indicating that the inclusion of Nomad was giving the Emerald (for Compiz) people trouble. So I guess the Nomad technology (i.e., Nomachine NX) is actually being included at some level (as part of the remote desktop capability) into, at least, the openSuSE 11.1 implementation of Linux??? Is that true? To me, that means that the many Wizzards in the Open Source community have gotten comfortable with NX. My people, and I trust 'em.

  5. #5
    Join Date
    Jun 2008
    Location
    Frisco, TX
    Posts
    1,235

    Default Re: nomachine security?

    On Tue, 2009-08-25 at 22:46 +0000, PattiMichelle wrote:
    > Thank you very much for the replies!! I do trust Linux more than
    > Windows, but only because I trust the opensource people more than I
    > trust Corporate-weenie-controlled software I did find lots of info
    > on security from the point of view of SSH security - but nothing
    > vouching for the code author's rating by their peers in the Open Source
    > coders community.
    >
    > I was asking because, as I was working on getting Compiz going on my
    > home 11.1 machine, I found threads indicating that the inclusion of
    > Nomad was giving the Emerald (for Compiz) people trouble. So I guess
    > the Nomad technology (i.e., Nomachine NX) is actually being included at
    > some level (as part of the remote desktop capability) into, at least,
    > the openSuSE 11.1 implementation of Linux??? Is that true? To me, that
    > means that the many Wizzards in the Open Source community have gotten
    > comfortable with NX. My people, and I trust 'em.


    I see no good reason to use nomad. I do like the wiz-bang compiz
    effects, but I would disable that for NX desktops... IMHO.

    NX is good, but obvioulsy the more junk you throw to it, the slower it
    will be.



  6. #6
    jwattsnx NNTP User

    Default Re: nomachine security?

    There are a couple of things to take into consideration regarding security with our software:

    1. You can read about how the NX login mechanism works here:

    NoMachine NX - Support: Article

    2. NoMachine NX downloads come with a default SSH key that anyone who downloads NoMachine NX is using. However, you can change that by using your own custom keys for the NX connections by following the directions here:

    NoMachine NX - Support: Article

    In this way your keys should not allow connections from any other sources other than the ones you propagate the keys to for use.

    As cjcox pointed out we don't recommend Compiz right now.

    Thanks,

    /John

  7. #7
    Join Date
    Jun 2008
    Location
    Prescott, AZ
    Posts
    1,191

    Default Re: nomachine security?

    Quote Originally Posted by cjcox View Post
    On Tue, 2009-08-25 at 22:46 +0000, PattiMichelle wrote:[color=blue]

    I see no good reason to use nomad. I do like the wiz-bang compiz
    effects, but I would disable that for NX desktops... IMHO.

    NX is good, but obvioulsy the more junk you throw to it, the slower it
    will be.
    I don't use compiz - the I had stability problems with TightVNC and UltraVNC windows clients through SSH. No problems at all with NX - more stable, better integration, and a better screen. A wonderful addition!

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •