RE: Terminal Services over VPN

["Geoffrey Shorter" <geoffreyshorter () hotmail com>]

David:

We use Terminal Services over a Cisco VPN and have great success with it. I 
am working from home using that right now. (I know you specified Microsoft 
VPN server in your question, but I thought I'd answer anyway...)

We have some remote users who, when they come into our main office, complain 
about the slowness of one of our main applications, because they are used to 
using Terminal Services remotely and it is as fast or faster than running a 
fat client in the office. (Sad, but true.)

Terminal Services will encrypt the sessions if you set it to do so on the 
server side. There's a checkbox, offhand don't remember where....

There are other security considerations when running Terminal Server -- 
don't use the default port, enable network root lockout, etc. -- numerous 
books address those issues including the Hacking series of books.... 
Certainly I would not call it exactly secure out of the box... :)

geof



-----Original Message-----
From: David Y. Ng [mailto:dng () cmhsweb org]
Sent: Thursday, August 14, 2003 3:43 PM
To: security-basics () securityfocus com
Subject: Terminal Services over VPN

Has anyone used Terminal Services over Microsoft's VPN server? I need to run 
some program off the server and when I used just the VPN, it was terribly 
slow. The solution on paper is to run the program off Terminal Services and 
just let it pass through the VPN which could be faster, supposedly.

Any experiences with this? Is Terminal Services in itself secure? I read 
there's some form of encryption also but is it comparable to VPN in a way?

_________________________________________________________________
The new MSN 8: smart spam protection and 2 months FREE*  
http://join.msn.com/?page=features/junkmail


---------------------------------------------------------------------------
----------------------------------------------------------------------------