Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: iPad and access to university ERP

From: Russell Fulton <r.fulton () AUCKLAND AC NZ>
Date: Sat, 24 Jul 2010 08:27:34 +1200
On 22/07/2010, at 11:33 AM, Dave Koontz wrote:


But, if they "force" VPN connections to access the RDP desktop session
to begin with, you have the VPN security in front of the weaker MS RDP
encryption.  Seems safe enough to me.


Absolutely - it is RDP which is the issue -- not the iPad.  I had no idea the RDP could be configured to use such low 
grade encryption although it is consistent with MS's policy of keeping everything backward compatible forever and to 
hell with the security consequences. Thing about the authentication mechanisms and LANMAN hashes which were (still 
are?) on by default.

Side note is there anyway to force RDP server to require a decent level of encryption?

Russell
Previous By Date Next
Previous By Thread Next

Current thread: