What is this, the NSA?
Jun. 26th, 2006 09:19 am![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
elfsSo, this weekend I got NX working on my desktop at work and my laptop at home. For those of you from the Unix world who've ever used VNC (Virtual Networked Computer), NX is the next generation in this technology. Both VNC and NX run a remote screen server (the "screen" exists on one computer, but is being displayed on another), but NX promised to be "the next generation" of virtual displays. I struggled with NX for weeks, but I finally got it running.
Despite being over my relatively slow (~640-800Kb/s) link at home, and the wireless, it was impressively faster than VNC. What was even more impressive was that it was faster despite all of the hoops through which it was passing.
Y'see, in order to make it work, I had to SSH into the firewall box at work, and have the server do port forwarding for me from the firewall box to my workstation. That's one layer of encryption. Then, the nxclient runs a local version of SSH which allows it to contact the SSH server on my desktop and remotely run the nxproxy and nxserver programs, beginning the transaction. That's a second layer of encryption. Then, because both the office and my house are NAT'd[?], the client complained that the connection looked compromised and that both it and the server were switching to SSL-- adding a third layer of encryption!
So my mundane email reading this weekend was protected by triple-AES[?]. What a waste of cycles. And it was still faster than VNC.
Despite being over my relatively slow (~640-800Kb/s) link at home, and the wireless, it was impressively faster than VNC. What was even more impressive was that it was faster despite all of the hoops through which it was passing.
Y'see, in order to make it work, I had to SSH into the firewall box at work, and have the server do port forwarding for me from the firewall box to my workstation. That's one layer of encryption. Then, the nxclient runs a local version of SSH which allows it to contact the SSH server on my desktop and remotely run the nxproxy and nxserver programs, beginning the transaction. That's a second layer of encryption. Then, because both the office and my house are NAT'd[?], the client complained that the connection looked compromised and that both it and the server were switching to SSL-- adding a third layer of encryption!
So my mundane email reading this weekend was protected by triple-AES[?]. What a waste of cycles. And it was still faster than VNC.
![[identity profile]](https://www.dreamwidth.org/img/silk/identity/openid.png){kind=small}
no subject
Date: 2006-06-26 05:15 pm (UTC)