Let's suppose I invited a bad actor over for Coffee and granted them access to my LAN because I'm a friendly host. (Or their friend hacked my VPN.)
Supposing I had many virtual machines on my network running VNC and a couple of them didn't have usernames or passwords. So there was no logon page. Or suppose I left them running with embarrassing photos of myself.
How should I go about securing VNC?
If I add a password, then since the traffic isn't encrypted, my guest could sniff it using his laptop.
For some use cases, such as USB dongles, RDP isn't an option (on Windows,) therefore I must use VNC and I must leave the user session open in some instances.
I'm joking about the use-cases above, but it would be nice to have an easy way to add SSL/TLS to the VNC connections from a central place. Even better would be to use Let's Encrypt for each VM, the same way you guys have it working for Web Interface SSL functionality.
Any tips on this are very appreciated.
Other than that, the platform is wonderful and I'm very happy to become a member of this community!