TeamViewer - set password for unattended access?












4















As seen in the news (June 2016):

There have been hacking activities through TeamViewer.



Currently it seems this was mainly because of careless end users.

For example:




  • I have an account at LinkedIn with username
    "funnymike1953@funny-mike.me-is-stupid.com" and password "Banana53"

  • And I use the same username and password at TeamViewer

  • Now by some leak, hackers get access to cleartext contents of my LinkedIn account

  • So they try to use the same username and password for
    different services - refer https://haveibeenpwned.com/


In response the TeamViewer corporation:




  • Strongly recommends to use different credentials for different services

  • Strongly recommends to change your passwords frequently

  • Strongly recommends to enable Two-Factor Authentication

  • Is currently introducing Trusted Devices and Data Integrity


So far, so good.

But I'm having difficulties in understanding the exact security configuration of TeamViewer.



--



For family and friends I'm doing a lot of "remote administration" (unattended access) and "remote support".

so on the target machines I have installed either TeamViewer Host 10.x or the full version - and linked it to my TeamViewer account.



I have set a "personal password (for unattended access)".

and I have not enabled the checkbox to grant my account "easy access".

screenshot from TeamViewer Host 10.0.47484:



enter image description here



Problem description:




  • On my local machine I open TeamViewer and log into my account.

  • When establishing a connection to any of my remote machines I never get asked to enter any password.


So whenever somebody hacks into my TV account (due to whatever reasons), the hacker will automatically get access to all machines that are linked to my TV account.

The "password" feature seems to be broken?



How do you make sure that it's mandatory to enter some TeamViewer password as configured for the remote machine?










share|improve this question

























  • This only buys you time, so you'll still want to monitor the connection logs if you want to be certain; unless you can get TeamViewer to ask for a password on a secure desktop, they're only a keylogger further away.

    – Tom Wijsman
    Jun 5 '16 at 18:52













  • TeamViewer is claiming that it's simply password reuse but why such a flood now? And why the reports of DNS shenanigans?

    – Loren Pechtel
    Jun 6 '16 at 2:11
















4















As seen in the news (June 2016):

There have been hacking activities through TeamViewer.



Currently it seems this was mainly because of careless end users.

For example:




  • I have an account at LinkedIn with username
    "funnymike1953@funny-mike.me-is-stupid.com" and password "Banana53"

  • And I use the same username and password at TeamViewer

  • Now by some leak, hackers get access to cleartext contents of my LinkedIn account

  • So they try to use the same username and password for
    different services - refer https://haveibeenpwned.com/


In response the TeamViewer corporation:




  • Strongly recommends to use different credentials for different services

  • Strongly recommends to change your passwords frequently

  • Strongly recommends to enable Two-Factor Authentication

  • Is currently introducing Trusted Devices and Data Integrity


So far, so good.

But I'm having difficulties in understanding the exact security configuration of TeamViewer.



--



For family and friends I'm doing a lot of "remote administration" (unattended access) and "remote support".

so on the target machines I have installed either TeamViewer Host 10.x or the full version - and linked it to my TeamViewer account.



I have set a "personal password (for unattended access)".

and I have not enabled the checkbox to grant my account "easy access".

screenshot from TeamViewer Host 10.0.47484:



enter image description here



Problem description:




  • On my local machine I open TeamViewer and log into my account.

  • When establishing a connection to any of my remote machines I never get asked to enter any password.


So whenever somebody hacks into my TV account (due to whatever reasons), the hacker will automatically get access to all machines that are linked to my TV account.

The "password" feature seems to be broken?



How do you make sure that it's mandatory to enter some TeamViewer password as configured for the remote machine?










share|improve this question

























  • This only buys you time, so you'll still want to monitor the connection logs if you want to be certain; unless you can get TeamViewer to ask for a password on a secure desktop, they're only a keylogger further away.

    – Tom Wijsman
    Jun 5 '16 at 18:52













  • TeamViewer is claiming that it's simply password reuse but why such a flood now? And why the reports of DNS shenanigans?

    – Loren Pechtel
    Jun 6 '16 at 2:11














4












4








4


2






As seen in the news (June 2016):

There have been hacking activities through TeamViewer.



Currently it seems this was mainly because of careless end users.

For example:




  • I have an account at LinkedIn with username
    "funnymike1953@funny-mike.me-is-stupid.com" and password "Banana53"

  • And I use the same username and password at TeamViewer

  • Now by some leak, hackers get access to cleartext contents of my LinkedIn account

  • So they try to use the same username and password for
    different services - refer https://haveibeenpwned.com/


In response the TeamViewer corporation:




  • Strongly recommends to use different credentials for different services

  • Strongly recommends to change your passwords frequently

  • Strongly recommends to enable Two-Factor Authentication

  • Is currently introducing Trusted Devices and Data Integrity


So far, so good.

But I'm having difficulties in understanding the exact security configuration of TeamViewer.



--



For family and friends I'm doing a lot of "remote administration" (unattended access) and "remote support".

so on the target machines I have installed either TeamViewer Host 10.x or the full version - and linked it to my TeamViewer account.



I have set a "personal password (for unattended access)".

and I have not enabled the checkbox to grant my account "easy access".

screenshot from TeamViewer Host 10.0.47484:



enter image description here



Problem description:




  • On my local machine I open TeamViewer and log into my account.

  • When establishing a connection to any of my remote machines I never get asked to enter any password.


So whenever somebody hacks into my TV account (due to whatever reasons), the hacker will automatically get access to all machines that are linked to my TV account.

The "password" feature seems to be broken?



How do you make sure that it's mandatory to enter some TeamViewer password as configured for the remote machine?










share|improve this question
















As seen in the news (June 2016):

There have been hacking activities through TeamViewer.



Currently it seems this was mainly because of careless end users.

For example:




  • I have an account at LinkedIn with username
    "funnymike1953@funny-mike.me-is-stupid.com" and password "Banana53"

  • And I use the same username and password at TeamViewer

  • Now by some leak, hackers get access to cleartext contents of my LinkedIn account

  • So they try to use the same username and password for
    different services - refer https://haveibeenpwned.com/


In response the TeamViewer corporation:




  • Strongly recommends to use different credentials for different services

  • Strongly recommends to change your passwords frequently

  • Strongly recommends to enable Two-Factor Authentication

  • Is currently introducing Trusted Devices and Data Integrity


So far, so good.

But I'm having difficulties in understanding the exact security configuration of TeamViewer.



--



For family and friends I'm doing a lot of "remote administration" (unattended access) and "remote support".

so on the target machines I have installed either TeamViewer Host 10.x or the full version - and linked it to my TeamViewer account.



I have set a "personal password (for unattended access)".

and I have not enabled the checkbox to grant my account "easy access".

screenshot from TeamViewer Host 10.0.47484:



enter image description here



Problem description:




  • On my local machine I open TeamViewer and log into my account.

  • When establishing a connection to any of my remote machines I never get asked to enter any password.


So whenever somebody hacks into my TV account (due to whatever reasons), the hacker will automatically get access to all machines that are linked to my TV account.

The "password" feature seems to be broken?



How do you make sure that it's mandatory to enter some TeamViewer password as configured for the remote machine?







security teamviewer






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited Jun 6 '16 at 13:25







paulgutten

















asked Jun 5 '16 at 12:16









paulguttenpaulgutten

259149




259149













  • This only buys you time, so you'll still want to monitor the connection logs if you want to be certain; unless you can get TeamViewer to ask for a password on a secure desktop, they're only a keylogger further away.

    – Tom Wijsman
    Jun 5 '16 at 18:52













  • TeamViewer is claiming that it's simply password reuse but why such a flood now? And why the reports of DNS shenanigans?

    – Loren Pechtel
    Jun 6 '16 at 2:11



















  • This only buys you time, so you'll still want to monitor the connection logs if you want to be certain; unless you can get TeamViewer to ask for a password on a secure desktop, they're only a keylogger further away.

    – Tom Wijsman
    Jun 5 '16 at 18:52













  • TeamViewer is claiming that it's simply password reuse but why such a flood now? And why the reports of DNS shenanigans?

    – Loren Pechtel
    Jun 6 '16 at 2:11

















This only buys you time, so you'll still want to monitor the connection logs if you want to be certain; unless you can get TeamViewer to ask for a password on a secure desktop, they're only a keylogger further away.

– Tom Wijsman
Jun 5 '16 at 18:52







This only buys you time, so you'll still want to monitor the connection logs if you want to be certain; unless you can get TeamViewer to ask for a password on a secure desktop, they're only a keylogger further away.

– Tom Wijsman
Jun 5 '16 at 18:52















TeamViewer is claiming that it's simply password reuse but why such a flood now? And why the reports of DNS shenanigans?

– Loren Pechtel
Jun 6 '16 at 2:11





TeamViewer is claiming that it's simply password reuse but why such a flood now? And why the reports of DNS shenanigans?

– Loren Pechtel
Jun 6 '16 at 2:11










2 Answers
2






active

oldest

votes


















0














Use 2 factor authentication



Don't reuse passwords on other accounts EVER!!!



Set TeamViewer to ask for a password every time you log in



Setup TeamViewer to require an ID and password to be entered whenever you connect up to a remote relative's computer. It ensures they are there and they want you to access their system.



Too many people have given up security for convenience.






share|improve this answer































    0














    the answer to the initial question:



    for some strange reasons teamviewer automatically sets and stores the password for the remote machine in the TV account that it's linked with.



    to clear it:

    in your TV account open the properties of the remote machine and clear the password field.
    from now on it will ask you to enter the password when connecting.



    enter image description here






    share|improve this answer























      Your Answer








      StackExchange.ready(function() {
      var channelOptions = {
      tags: "".split(" "),
      id: "3"
      };
      initTagRenderer("".split(" "), "".split(" "), channelOptions);

      StackExchange.using("externalEditor", function() {
      // Have to fire editor after snippets, if snippets enabled
      if (StackExchange.settings.snippets.snippetsEnabled) {
      StackExchange.using("snippets", function() {
      createEditor();
      });
      }
      else {
      createEditor();
      }
      });

      function createEditor() {
      StackExchange.prepareEditor({
      heartbeatType: 'answer',
      autoActivateHeartbeat: false,
      convertImagesToLinks: true,
      noModals: true,
      showLowRepImageUploadWarning: true,
      reputationToPostImages: 10,
      bindNavPrevention: true,
      postfix: "",
      imageUploader: {
      brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
      contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
      allowUrls: true
      },
      onDemand: true,
      discardSelector: ".discard-answer"
      ,immediatelyShowMarkdownHelp:true
      });


      }
      });














      draft saved

      draft discarded


















      StackExchange.ready(
      function () {
      StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1085635%2fteamviewer-set-password-for-unattended-access%23new-answer', 'question_page');
      }
      );

      Post as a guest















      Required, but never shown

























      2 Answers
      2






      active

      oldest

      votes








      2 Answers
      2






      active

      oldest

      votes









      active

      oldest

      votes






      active

      oldest

      votes









      0














      Use 2 factor authentication



      Don't reuse passwords on other accounts EVER!!!



      Set TeamViewer to ask for a password every time you log in



      Setup TeamViewer to require an ID and password to be entered whenever you connect up to a remote relative's computer. It ensures they are there and they want you to access their system.



      Too many people have given up security for convenience.






      share|improve this answer




























        0














        Use 2 factor authentication



        Don't reuse passwords on other accounts EVER!!!



        Set TeamViewer to ask for a password every time you log in



        Setup TeamViewer to require an ID and password to be entered whenever you connect up to a remote relative's computer. It ensures they are there and they want you to access their system.



        Too many people have given up security for convenience.






        share|improve this answer


























          0












          0








          0







          Use 2 factor authentication



          Don't reuse passwords on other accounts EVER!!!



          Set TeamViewer to ask for a password every time you log in



          Setup TeamViewer to require an ID and password to be entered whenever you connect up to a remote relative's computer. It ensures they are there and they want you to access their system.



          Too many people have given up security for convenience.






          share|improve this answer













          Use 2 factor authentication



          Don't reuse passwords on other accounts EVER!!!



          Set TeamViewer to ask for a password every time you log in



          Setup TeamViewer to require an ID and password to be entered whenever you connect up to a remote relative's computer. It ensures they are there and they want you to access their system.



          Too many people have given up security for convenience.







          share|improve this answer












          share|improve this answer



          share|improve this answer










          answered Jun 6 '16 at 1:10









          Fiasco LabsFiasco Labs

          6,23011830




          6,23011830

























              0














              the answer to the initial question:



              for some strange reasons teamviewer automatically sets and stores the password for the remote machine in the TV account that it's linked with.



              to clear it:

              in your TV account open the properties of the remote machine and clear the password field.
              from now on it will ask you to enter the password when connecting.



              enter image description here






              share|improve this answer




























                0














                the answer to the initial question:



                for some strange reasons teamviewer automatically sets and stores the password for the remote machine in the TV account that it's linked with.



                to clear it:

                in your TV account open the properties of the remote machine and clear the password field.
                from now on it will ask you to enter the password when connecting.



                enter image description here






                share|improve this answer


























                  0












                  0








                  0







                  the answer to the initial question:



                  for some strange reasons teamviewer automatically sets and stores the password for the remote machine in the TV account that it's linked with.



                  to clear it:

                  in your TV account open the properties of the remote machine and clear the password field.
                  from now on it will ask you to enter the password when connecting.



                  enter image description here






                  share|improve this answer













                  the answer to the initial question:



                  for some strange reasons teamviewer automatically sets and stores the password for the remote machine in the TV account that it's linked with.



                  to clear it:

                  in your TV account open the properties of the remote machine and clear the password field.
                  from now on it will ask you to enter the password when connecting.



                  enter image description here







                  share|improve this answer












                  share|improve this answer



                  share|improve this answer










                  answered Jun 8 '16 at 17:53









                  paulguttenpaulgutten

                  259149




                  259149






























                      draft saved

                      draft discarded




















































                      Thanks for contributing an answer to Super User!


                      • Please be sure to answer the question. Provide details and share your research!

                      But avoid



                      • Asking for help, clarification, or responding to other answers.

                      • Making statements based on opinion; back them up with references or personal experience.


                      To learn more, see our tips on writing great answers.




                      draft saved


                      draft discarded














                      StackExchange.ready(
                      function () {
                      StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1085635%2fteamviewer-set-password-for-unattended-access%23new-answer', 'question_page');
                      }
                      );

                      Post as a guest















                      Required, but never shown





















































                      Required, but never shown














                      Required, but never shown












                      Required, but never shown







                      Required, but never shown

































                      Required, but never shown














                      Required, but never shown












                      Required, but never shown







                      Required, but never shown







                      Popular posts from this blog

                      Probability when a professor distributes a quiz and homework assignment to a class of n students.

                      Aardman Animations

                      Are they similar matrix