RE: remote desktop question

["List Account" <list.account () cerdant com>]

Some ideas...

VPN clients if there are licenses available on your gateway device. This is
the best option if the licenses are available. The system doesn't need to be
directly exposed to the WAN this way.

Create access rules on your firewall to restrict source IP addresses to
known clients. (If static)

Keep the system patched. 

Strong passwords!

Nathan Grandbois
Cerdant, Inc.
614.717.0123 ext. 26 

> -----Original Message-----
> From: cc [mailto:cc () belfordhk com] 
> Sent: Friday, October 21, 2005 2:28 AM
> To: security-basics () securityfocus com
> Subject: remote desktop question
>
>
> Dear All,
>
> The company I work with recently required a remote desktop access and
> to keep the budget down, I used a XP Pro system to receive only one
> Remote Desktop user.
>
> Since this requires the opening up of a port on the firewall,
> I'm quite concerned.  I have limited the system to only one or
> two users who can log on.   Since this is my initial foray
> into the remote desktop client (in the past, we used PCAnywhere,
> but it's getting more and more expensive(hard to justify
> purchasing a license for each system).
>
> In what ways can I protect the remote desktop system from
> being broken into?  (Well, aside from shutting it down.)
>
> Any pointers appreciated.
>
> Edmund