RE: remote desktop question

["Richard Parry" <richard () generic-edesign co uk>]

Edmund,

Since you already have a firewall system in place, I would suggest
looking into the VPN capabilities of that firewall, closing the RDP port
you have opened and only allow authenticated VPN users who have logged
into the network access to the RDP sessions. RDP sessiona are encrypted
with 128bit anyway, but at least with protecting the login to
authenticated VPN users you won't need to worry about external
break-ins.

Hope this helps. Richard

-----Original Message-----
From: cc [mailto:cc () belfordhk com] 
Sent: 21 October 2005 7:28 AM
To: security-basics () securityfocus com
Subject: remote desktop question


Dear All,

The company I work with recently required a remote desktop access and to
keep the budget down, I used a XP Pro system to receive only one Remote
Desktop user.

Since this requires the opening up of a port on the firewall, I'm quite
concerned.  I have limited the system to only one or
two users who can log on.   Since this is my initial foray
into the remote desktop client (in the past, we used PCAnywhere, but
it's getting more and more expensive(hard to justify purchasing a
license for each system).

In what ways can I protect the remote desktop system from
being broken into?  (Well, aside from shutting it down.)

Any pointers appreciated.

Edmund





-- 
No virus found in this incoming message.
Checked by AVG Anti-Virus.
Version: 7.0.344 / Virus Database: 267.12.4/146 - Release Date:
21/10/2005
 

-- 
No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.344 / Virus Database: 267.12.4/146 - Release Date:
21/10/2005