On 1/31/07, Johnny Hughes <mailing-lists at hughesjr.com> wrote: > > However, tcp ports 5900/5901 inbound do need to be open if you want to > connect to VNC. > > You need to NOT open those to everyone and only to trusted source > machines as VNC does not encrypt login info by default VNC doesn't encrypt anything by default. I recommend leaving the ports closed and always connecting to VNC through an ssh tunnel.