Re: secure terminal services
From: Matjaz Ladava (matjaz_at__nospam_ladava.com)
Date: 05/30/03
- Next message: Martin Plechsmid: "a Win System File Protection problem"
- Previous message: Sam Santiago: "Re: Remote viewing event log."
- In reply to: Bjoern: "Re: secure terminal services"
- Next in thread: John Francisco Williams: "Re: secure terminal services"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 30 May 2003 08:28:17 +0200
VPN is much more secure than publishing specific services. Why ? Because it
hides what services are you using. If you have service published to the
internet (RDP), the attacker, can discover your services with portscanner
and then attack specific service, meanwhile if you are using VPN, then it is
impossible to know what services ate you using trough the tunnel.
If you have problem setting up VPN, then describe your configuration and the
problems you are having.
Regards
Matjaz Ladava
"Bjoern" <bj@whanau.net> wrote in message
news:ufD6bXmJDHA.2244@TK2MSFTNGP10.phx.gbl...
> Hello,
> I too have been wondering about this, do you need to use a VPN, even if
you
> use a firewall with TS being published on the web, could you not set a
Group
> Policy of three strikes your out for the password, so without the password
> you basically cannot get in.
> Cheers
>
>
>
>
> "Matjaz Ladava" <matjaz@_nospam_ladava.com> wrote in message
> news:enDMwPHJDHA.276@tk2msftngp13.phx.gbl...
> > Well there is no SSL for RDP protocol. As Lanwench suguested instead of
> > opening your server to the outside, allow just VPN connection, but I
would
> > remind you, that instead of exposing your server directly to the
internet,
> > use firewall and securely publish your services trough firewall.
> >
> > Regards
> >
> > Matjaz Ladava
> >
> > "Exped24_M" <exped24@hotmail.com> wrote in message
> > news:usX2yPGJDHA.3084@tk2msftngp13.phx.gbl...
> > > I am talking about Terminal Service build in win 2000 advanced server
> > >
> > > any SSL harden password option
> > >
> > > thanks
> > >
> > > "Lanwench [MVP - Exchange]"
> > > <lanwench@heybuddy.donotsendme.unsolicitedmail.atyahoo.com> wrote in
> > message
> > > news:%23DfC5$FJDHA.1360@TK2MSFTNGP10.phx.gbl...
> > > > Are you talking about TSWeb?
> > > >
> > > > Exped24_M wrote:
> > > > > How do I tell the Terminal service to use the SSL?
> > > > >
> > > > > thanks
> > > > >
> > > > >
> > > > > "Lanwench [MVP - Exchange]"
> > > > > <lanwench@heybuddy.donotsendme.unsolicitedmail.atyahoo.com> wrote
in
> > > > > message news:uYrPpiFJDHA.3272@tk2msftngp13.phx.gbl...
> > > > >> SSL, and ideally don't allow access to anything other than
through
> > > > >> VPN (with the exception of 25 for your mail server if you run
one,
> > > > >> and whatever else you need open)
> > > > >>
> > > > >> Exped24_M wrote:
> > > > >>> Hi all,
> > > > >>>
> > > > >>> I am using the terminal service on win 2000 ads all working good
> > > > >>>
> > > > >>> now, I was hacking throw the terminal with password scanning
> program
> > > > >>> and the hacker gain access to my server
> > > > >>>
> > > > >>> is there any way for harder secure the terminal server, that can
> be
> > > > >>> harden to hack?
> > > > >>>
> > > > >>> Thanks for any advice
> > > >
> > > >
> > >
> > >
> >
> >
>
>
- Next message: Martin Plechsmid: "a Win System File Protection problem"
- Previous message: Sam Santiago: "Re: Remote viewing event log."
- In reply to: Bjoern: "Re: secure terminal services"
- Next in thread: John Francisco Williams: "Re: secure terminal services"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
