Since macOS 10.12 Sierra, it is possible to configure the built-in Screen Sharing/Remote Management service to only respond to local connection requests made via a secure connection.
To do so, open Terminal.app, copy and paste the following command:
sudo defaults write /Library/Preferences/com.apple.RemoteManagement.plist VNCOnlyLocalConnections -bool yes
To restore the default behaviour, use no instead of yes at the end of the command.
Important: turn on Secure Connections
The only requirement for this configuration to work is to enable Secure Connections (SSH) in Screens and Screens Connect (if installed).
You will not be able to connect unless you use a secure connection since the VNCOnlyLocalConnections parameter instructs the service to only listen on localhost.
Screens Connect
Open the Preferences window and go to the General section.
Turn on Use Remote Login.
Screens for iOS
Open the settings for the saved connection you wish to modify and enable Secure Connection.
In the Secure Connection section, make sure to turn on Enable on local network.
Screens for Mac
Open the settings for the saved connection you wish to modify and enable Secure Connection.
Make sure to turn on Enable on local network.
Comments
0 comments
Article is closed for comments.