RE: Remote connections

From: Langston, Fred (flangston_at_verisign.com)
Date: 10/14/04

  • Next message: Ansgar -59cobalt- Wiechers: "Re: Remote connections" 
    To: "'nat'" <nat@nuqe.net>, Paul Aviles <paviles@adjoined.com>, focus-ms@securityfocus.com
Date: Thu, 14 Oct 2004 12:01:22 -0400

    Maybe this was earlier in the thread, but is everyone aware that RDP can be
    (weakly) encrypted:

    When RDP has encryption enabled, packets are first encrypted using RC4,
    then an 8 byte HMAC checksum of the plaintext is prepended to the
    cyphertext. The encryption key for RC4 is refreshed every 4096 packets,
    but the HMAC key is apparently not changed during the session.

    Fred Langston, CISSP
    Principal Consultant
    VeriSign, Inc. Global Security Consulting
    M: 425.765.3330 O: 206.903.8147 x223

    -----Original Message-----
    From: nat [mailto:nat@nuqe.net]
    Sent: Wednesday, October 13, 2004 12:34 PM
    To: Paul Aviles; focus-ms@securityfocus.com
    Subject: Re: Remote connections

    earlier Paul Aviles wrote:

    > Has anyone implemented Microsoft Remote Desktop in a secure and
    > efficient way? Is there a way to overcome having the host computer
    > logoff the current active user? Without that this program is pretty
    > much
    > useless.

    I tunnel RDP connections via SSH to secure, works well here.

    I think the local user is only logged off if you are using terminal
    services
    on Windows XP, I have never seen this happen when administering
    Windows 2000 Servers.

    Regards,

    Nat, 

    -- 
http://photos.nuqe.net
---------------------------------------------------------------------------
---------------------------------------------------------------------------
---------------------------------------------------------------------------
---------------------------------------------------------------------------
  • Next message: Ansgar -59cobalt- Wiechers: "Re: Remote connections"

    Relevant Pages

    • Microsoft Windows Remote Desktop Protocol checksum and keystroke vulnerabilities
      ... All versions of Microsoft Windows using encrypted RDP are vulnerable to ... the checksum vulnerability. ... since packets with the same plaintext have matching checksums. ... When RDP has encryption enabled, packets are first encrypted using RC4, ...
      (Bugtraq)
    • RE: Windows Remote Desktop
      ... The first packet must ... This is what RDP is using to setup the encryption. ... We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion ...
      (Security-Basics)
    • Re: RDP Data Encryption Error
      ... If we make a remote connection to the server at work and then RDP into one ... we get this "encryption error" after a few seconds. ... the client will drop the connection ...
      (microsoft.public.windows.terminal_services)
    • Re: Remote connections
      ... > encryption, and even if there were any, connections may very well be ... RDP, although I'm quite well learned on VNC and such. ... WinVNC and Radmin both come to midn quickly. ...
      (Focus-Microsoft)
    • Re: Win2k3 Web Edition, where is the protection?
      ... You said exactly what I would have anyway - RDP ... Not that adding IPSec isn't a bad idea, but encryption is already ... Using the RDP client included with XP Pro or XP Home (or ...
      (microsoft.public.security)