I'm pretty sure there's an article somewhere on tunneling using SSH. I'll look and post the URL of what I find.
OK. Found one, right here on Oranet:
Simply follow the instructions, but instead of connecting via VNC to the remote host, connect to localhost, on the port that you have forwarded. The VNC team has a "Making VNC more secure with SSH" page at:
SSH is super useful. I just hope Apple gets off their tuckus and patches the current vulnerability!