Re: Remote connections

From: Joshua Dale (josh.dale_at_gmail.com)
Date: 10/14/04

Next message: GuidoZ: "Re: Remote connections"

Previous message: Laura Robinson: "Re: Re: Restricting account to a computer only"
In reply to: Ansgar -59cobalt- Wiechers: "Re: Remote connections"
Next in thread: GuidoZ: "Re: Remote connections"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Thu, 14 Oct 2004 11:58:30 -0600
To: focus-ms@securityfocus.com

In Windows 2003 performance is on par with Citrix. Radmin can't touch it.
Also Windows 2003 RDP is secure (could be more secure) but it will
work. You have to also remember that the only thing being sent across
the net are image fragments. Decrypting the fragments and placing them
together would be a challenge.

On Thu, 14 Oct 2004 17:43:41 +0200, Ansgar -59cobalt- Wiechers
<bugtraq@planetcobalt.net> wrote:
> On 2004-10-13 GuidoZ wrote:
> > Can the terms "Microsoft Remote Desktop" and "Secure" even be used in
> > the same discussion? =)
>
> Why not? I don't know of any current exploit for RDP set to high
> encryption, and even if there were any, connections may very well be
> shielded by encrypted tunnels.
>
> > The only way I could see applying any form of security is to do it
> > under the protection of a VPN. As for not having the active user
> > logged off, I don't have an answer for that.
> >
> > Personally, I'd recommend one of the many other remote desktop tools
> > out there. WinVNC and Radmin both come to midn quickly. (WinVNC can be
> > done through SSH. Though I'm not positive, I believe you can encrypt
> > Radmin sessions as well.) Google both for more info.
>
> RDP can be tunneled thru SSH as well and has much better performance
> than VNC (don't know about Radmin).
>
> Regards
> Ansgar Wiechers
> --
> "Those who would give up liberty for a little temporary safety
> deserve neither liberty nor safety, and will lose both."
> --Benjamin Franklin
>
> ---------------------------------------------------------------------------
> ---------------------------------------------------------------------------
>
>

---------------------------------------------------------------------------
---------------------------------------------------------------------------

Next message: GuidoZ: "Re: Remote connections"

Previous message: Laura Robinson: "Re: Re: Restricting account to a computer only"
In reply to: Ansgar -59cobalt- Wiechers: "Re: Remote connections"
Next in thread: GuidoZ: "Re: Remote connections"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re[2]: Remote control
... RADMIN (Remote Administrator) is better and more secure. ... Windows only ...
(Security-Basics)
[NT] Cryptographic Flaw in RDP Protocol Can Lead to Information Disclosure
... The Remote Data Protocol (RDP) provides the means by which Windows systems ... The first involves how session encryption is implemented in certain ... An attacker who was able to eavesdrop on and record ...
(Securiteam)
RE: Remote Desktop vs VPN on Windows 2003
... I didn't invite the world to hack me...just to find a port. ... Remote Desktop vs VPN on Windows 2003 ... "Come hack at my mail server." ... RDP does not have a known vulnerability against it...you mention ...
(Security-Basics)
RE: Remote Desktop vs VPN on Windows 2003
... "Come hack at my mail server." ... Remote Desktop vs VPN on Windows 2003 ... RDP does not have a known vulnerability against it...you mention ... The "patch" for SSH was to completely remove RC4 support. ...
(Security-Basics)
network problem terminal server?
... 2003 sp1 terminal servers (rdp) ... Windows cannot log you on because your profile cannot be loaded. ... - instead of using a router all rdp servers are equiped with double network ...
(microsoft.public.win2000.networking)