New note by lnxw48a1

@guizzy @moonman@shitposter.club I'm sure most of those don't even know they have a #VNC server running or don't even know it is accessible outside their networks. Perhaps they've got VNC as part of a virtualization system or built into some #IoT device they bought.

One of my sons installed VNC on his wife's laptop about 12 years ago, so he could support from another room. Within minutes after installation, he watched someone log in, download some malware, and install it on her computer. While some blame goes to his consumer grade #Wi-Fi router (and possibly him for not setting it up more securely; he's a lot more careful now), it was an important lesson for both of us: even your "private" network may have uninvited visitors, so you should set things up as securely as your users let you get away with.

So, yes, unless you can prevent all non-SSH connections, I'd never allow VNC on my network.