RE: Re: RDP Security

["Roger A. Grimes" <roger () banneretcs com>]

That referenced KB article does not reflect the new RDP 6.0 client. It
still mentions the older 5.2 client. Interestingly, the new server
authentication features of 6.0 don't work with pre-Vista clients and
servers, but as I stated in my previous email, existing RDP MitM attacks
don't appear to work anyway with the 6.0 client (at least in my
testing). Not sure why, could be something slightly different in the
protocol confounding current existing tools (like Cain & Able), or could
be a real cryptographic protection mechanism. But for now the end result
is the same.

Roger

*******************************************************************
*Roger A. Grimes, Senior Security Consultant
*Microsoft Application Consulting and Engineering (ACE) Services  
*http://blogs.msdn.com/ace_team/default.aspx
*CPA, CISSP, MCSE: Security (2000/2003/MVP), CEH, yada...yada...
*email: roger () banneretcs com or rogrim () microsoft com
*******************************************************************

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of alegr1 () earthlink net
Sent: Tuesday, March 06, 2007 4:40 PM
To: security-basics () securityfocus com
Subject: Re: Re: RDP Security

Check if http://support.microsoft.com/kb/895433, Step 2:Configure TLS
authentication and encryption, bullet 7:SSL, helps.