Firewall Wizards mailing list archives

RE: Using RDP Port 3389

From: Chuck Vose <vosechu () roman-fleuve com>
Date: Sun, 18 Apr 2004 09:06:44 -0700

So, if you must have remote access to your servers, my recommendation

would be to use some sort of client VPN to authenticate and encrypt
users before they access servers directly.  If VPN is not an option,
restrict source addresses at the firewall to those that can be trusted
and should be accessing the servers.


There are also other methods of remote access. Coming from *nix there's
VNC (many varieties, some of which work for windows as well) and there's
Remote Administrator. I can't speak for the security of RA, but I know
VNC has been looked at many a time and at it's current state is pretty
secure. 

As usual of course, there is tunneling as Paul has suggested. Any time
you have something insecure or even weakly secured tunneling with IPSec,
SSH or any other VPN will help out immensely. 

Chuck

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Using RDP Port 3389 woodse (Apr 08)
- <Possible follow-ups>
- RE: Using RDP Port 3389 Melson, Paul (Apr 16)
  - RE: Using RDP Port 3389 Chuck Vose (Apr 20)
- RE: Using RDP Port 3389 Melson, Paul (Apr 21)
  - RE: Using RDP Port 3389 Chuck Vose (Apr 21)
    - RE: Using RDP Port 3389 R. DuFresne (Apr 22)
  - RE: Using RDP Port 3389 Josh Welch (Apr 22)
  - RE: Using RDP Port 3389 Spencer D'oro (Apr 22)
- RE: Using RDP Port 3389 Justin C. Laporte (Apr 27)
- RE: Using RDP Port 3389 Melson, Paul (Apr 27)
  - Security through Obscurity [was RE: Using RDP Port 3389] Gwendolynn ferch Elydyr (Apr 27)
    - Re: Security through Obscurity [was RE: Using RDP Port 3389] Elizabeth Zwicky (Apr 28)