[KLUG Members] VNC through SSH tunnel or VPN

[Adam Tauno Williams]

> A situation occured where I had two options, either would work and I'm
> wondering which is better.
> I'm at a remote location and want to use VNC (remotely work on a
> computer) on a box inside a LAN.  
> At my remote location, I can either use VPN and then VNC to the box as
> if I was on the LAN, or I could set up a SSH tunnel and then VNC
> localhost:xxx (where xxx is the port number set in the tunnel).
> Which is better?

Quantify "betteR"

> Which is more secure?

The most secure is probably SSH with published keys and a pass phrase.
The second is probably SSH interactive.  VPN is probably the least
secure (although probably still quite secure).  Assuming of course your
SSH is totally up to date.  If you SSH is old on the other end, then VPN
is probably more secure.  SSH is a very well studied program and
protocol.

> Would either be faster?

Assuming equivalent encryption levels, without a doubt - VPN.

> Recommendations, preferences?

While I love SSH you just can't beat a VPN.  Someday you will want to
use to test something other than VNC,  and VPN there-ness is hard to
beat in such circumstances.