Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Terminal services-additional help

From: "Edward Beuerlein" <ebeuerle () excite com>
Date: Wed, 26 Jan 2005 17:16:42 -0500 (EST)

In addition, 
You can install cygwin(www.cygwin.com) with openssh and tunnel terminal services through openssh(very simple to do with 
putty).  And then use your router or firewall to block port 3389.
-Eddie B.

On Tue, 25 Jan 2005 14:38:30 -0600, Curt Purdy <purdy at tecman.com> wrote:


The problem with terminal server is not any vulnerablities that can be
exploited, but the fact that administrator can be bruteforced (6 attempts
followed by reconnect) and that it is screaming its existence on port 3889.
If you use it, definitely change the port in the registry.



You can use the local security policy to prevent administrators from
logging in via terminal services and then enable "run as" for
administrative tasks...which should be done anyway. Changing the >>port
number is another good step though.

--
Jonathan






_______________________________________________
Join Excite! - http://www.excite.com
The most personalized portal on the Web!
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: