Full Disclosure mailing list archives
Terminal services-additional help
From: "Edward Beuerlein" <ebeuerle () excite com>
Date: Wed, 26 Jan 2005 17:16:42 -0500 (EST)
In addition, You can install cygwin(www.cygwin.com) with openssh and tunnel terminal services through openssh(very simple to do with putty). And then use your router or firewall to block port 3389. -Eddie B. On Tue, 25 Jan 2005 14:38:30 -0600, Curt Purdy <purdy at tecman.com> wrote:
The problem with terminal server is not any vulnerablities that can be exploited, but the fact that administrator can be bruteforced (6 attempts followed by reconnect) and that it is screaming its existence on port 3889. If you use it, definitely change the port in the registry.
You can use the local security policy to prevent administrators from logging in via terminal services and then enable "run as" for administrative tasks...which should be done anyway. Changing the >>port number is another good step though. -- Jonathan
_______________________________________________ Join Excite! - http://www.excite.com The most personalized portal on the Web! _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Terminal services-additional help Edward Beuerlein (Jan 27)