Thanks. Brian.
It makes sense. I guess I have to open two logs side by side and see who's in at a certain time.
such a nice thing, wish I knew it better. now I wrap VNC, pc-anywhere, http, and ftp with stunnel. giving me a better sense of security (not so sure how secure it really is)
Thanks again.
J
----- Original Message ---------------
Return-Path: bri@stunnel.org Received: from drowsy.ifokr.org ([216.162.217.155]) by ellingtongeologic.com for jz@ellingtongeologic.com; Tue, 13 When some clock read 2007-11-08 08:59 -0600, jilin zhang conveighed:
I used vnc with stunnel and it seems working. but the stunnel log on the server side records the server's IP address instead of the client address. Any suggestion to fix this?
The connection to your VNC server *is* coming from the server's IP address. So VNC is telling you the truth. And Stunnel can't "hack" the network stack to make it look like the connection is actually coming from the real client IP.
The only way to get the information you need is to corrolate VNC login times with the stunnel logs.
Sorry.
--=20 Brian Hatch "I don't feel like a person. Systems and I feel like a large fetal Security Engineer container." http://www.ifokr.org/bri/ --Bree
Every message PGP signed
--EeQfGwPcQSOJBaQU Content-Type: application/pgp-signature; name="signature.asc" Content-Description: Digital signature Content-Disposition: inline
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQFHOW2ZVkMj8/ymYEsRAjKnAKCQwKwjNJcZUaz3ouk2+PHHCktxBwCfY/my WxdH9qX5JOdwxbrRXrVcpqw= =7Dcb -----END PGP SIGNATURE-----
--EeQfGwPcQSOJBaQU--