http://bugzilla.opensuse.org/show_bug.cgi?id=966694 Bug ID: 966694 Summary: TigerVNC Viewer Error - No matching security types Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.1 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Network Assignee: bnc-team-screening@forge.provo.novell.com Reporter: pgeorgiadis@suse.com QA Contact: qa-bugs@suse.de Found By: Component Test Blocker: --- Go to yast --> network services --> remote administration (vnc) and enable 'Allow Remote Administration' and then reboot your machine. Normally now, xinetd should use 5801 (for browser) and 5901 (for vncviewer) COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME xinetd 1678 root 6u IPv4 20892 0t0 TCP *:5801 (LISTEN) xinetd 1678 root 5u IPv4 20891 0t0 TCP *:5901 (LISTEN) Open Firefox, go to localhost:5801 A Java application will start loading and then I usually end up with an error saying : TigerVNC Viewer Error - No matching security types I identified the problem though... if you see the parameters of Xvnc, you will notice that is starts with '-securitytypes none' xinetd.service - Xinetd A Powerful Replacement For Inetd Loaded: loaded (/usr/lib/systemd/system/xinetd.service; enabled) Active: active (running) since Sun 2016-02-14 00:07:47 CET; 22min ago Main PID: 6436 (xinetd) CGroup: /system.slice/xinetd.service ├─6436 /usr/sbin/xinetd -stayalive -dontfork └─7738 Xvnc -noreset -inetd -once -query localhost -geometry 1024x768 -x509key /etc/vnc/tls.key -x509cert /etc/vnc/tls.cert -log *:syslog:30 -securitytypes none This is expected behavior because in the configuration file (/etc/xinetd.d/vnc) we have by default: service vnchttpd1 { socket_type = stream protocol = tcp wait = no user = vnc server = /usr/bin/vnc_inetd_httpd server_args = 1024 768 5901 -securitytypes none type = UNLISTED port = 5801 } However, the Java client in the browser uses something else (not 'none'). You can find this by just using Web Inspector:
<embed type="application/x-java-applet;version=1.6" code="com.tigervnc.vncviewer.VncViewer" archive="VncViewer.jar" port="5901" embed="true" alwaysshowserverdialog="false" securitytypes="X509None" x509autoaccept="1E:DF:34:55:50:F1:B3:A1:AA:61:09:B9:D7:C7:6F:09:5F:C7:E1:C7" width="1024" height="768">
So the error that I am getting is correct because we have the following scenario: Server sends: none Client accepts: X509None In order to fix it, you have either to change the server's settings or the client's settings and make the match. Because I have no idea how to change the client settings, I've just changed the servers into that: service vnc1 { socket_type = stream protocol = tcp wait = no user = vnc server = /usr/bin/Xvnc server_args = -noreset -inetd -once -query localhost -geometry 1024x768 -x509key /etc/vnc/tls.key -x509cert /etc/vnc/tls.cert -log *:syslog:30 -securitytypes X509None type = UNLISTED port = 5901 } Then it works -- You are receiving this mail because: You are on the CC list for the bug.