R: Terminal services

["Vega - Brunello Ivan" <I.Brunello () vegaspa it>]

I'm not tied to vmware, but i find their product worth checking.

1) http://www.vmware.com/products/thinapp/ package everything on a standalone application
2) http://www.vmware.com/products/ace/ package a single, secure instance on a vmware image you can give your partner.


Another option could be playing tightly with some good WebVPN system (I've been playing with Cisco ASA, and it seems 
quite flexible).


Sadly, none of the above option come at low price.
Luckily, there could be many other alternatives (cheaper and better) I'm not aware.


Ivan Brunello
System & Network Management

***********************************************************************************************************************************************************************************
Le informazioni contenute nel seguente messaggio di posta elettronica e negli allegati sono riservate e confidenziali; 
ne è vietata la lettura,
la copia, la comunicazione e la diffusione in qualunque modo eseguite ai sensi dell'art. 616 del Codice Penale. 
Qualora Lei lo abbia erroneamente ricevuto è tenuto ad eliminarlo, dandone gentilmente comunicazione al mittente 
tramite mail di ritorno.
***********************************************************************************************************************************************************************************
 
> -----Messaggio originale-----
> Da: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
> Per conto di velzaf () hotmail com
> Inviato: martedì 30 settembre 2008 23.31
> A: security-basics () securityfocus com
> Oggetto: Terminal services
>
> Hi guys
>
>
>
> I need an opinión from you related to terminal services.  I need to
> provide a solution to allow some external clients to connect via
> Internet to a specific application.  Those clients will use a laptop
> that don't belong to the enterprise, in fact they are not secure
> clients and we don't have any contact with the computers they connect
> with just to configure the connection.
>
>
>
> I have been thinking about the use of VPN, but I am not sure because
> their insecurity, I think TLS could be an option but I have not
> experience implementing that sort of solution, and I worry about their
> using several tools like tsgrinder or something like that.  I know I
> need to restrict their options to the maximum maybe using Active
> directory.
>
>
>
>
>
> The server is Windows Server 2003
>
> The clients could be xp or Vista.
>
>
>
> I would like to know your opinion
>
>
>
> Thanks in advance.
>
>
>
> Atte,
>
>
>
> Fernando Velazco.