Re: Remote Desktop MITM Concerns

From: Steven L Umbach (n9rou_at_nospam-comcast.net)
Date: 06/10/05

Next message: Guillaume: "Re: EFS and Delegation"
Previous message: JerryTheGreat: "Remote Desktop MITM Concerns"
In reply to: JerryTheGreat: "Remote Desktop MITM Concerns"
Next in thread: Roger Abell: "Re: Remote Desktop MITM Concerns"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Fri, 10 Jun 2005 11:41:57 -0500

If you are concerned about such I would implement ipsec on the internal
network or for a wan connection connect to a VPN server, preferably via
l2tp, first and then use RDP through the VPN tunnel. If you use ipsec on the
lan a Security Association using ESP encryption can be created between the
two computers before the RDP would be used. In a domain only domain
computers could use ipsec with the default kerberos authentication for
computer authentication and if further security is required you could use
computer certificates and tightly control which computers can request them
and assign your ipsec polices at the OU level moving the computers you want
to use ipsec into the corresponding OU's. Ipsec policies can be configured
to use only specific ports/protocols/subnets/IP addresses. --- Steve

http://www.microsoft.com/windowsserver2003/technologies/networking/ipsec/default.mspx
--- Windows 2003 ipsec center.

"JerryTheGreat" <JerryTheGreat@discussions.microsoft.com> wrote in message
news:F875A484-5C95-44D8-8829-E2400FCFCAC1@microsoft.com...
> Hello,
>
> Released May 28 was an unofficial security advisory entitled "Remote
> Desktop
> Protocol, the Good the Bad and the Ugly" By Massimiliano Montoro. This
> has
> me very concerned about my setup. Is this a valid issue?? I've found no
> advisoried from Microsoft or any other security site, except that the
> nefarious tool Cain and Abel v2.7 contains this capability. Please someone
> address this concern for me.
>
> I'm being careful in this posting not to use any keywords a search engine
> may index.

Next message: Guillaume: "Re: EFS and Delegation"
Previous message: JerryTheGreat: "Remote Desktop MITM Concerns"
In reply to: JerryTheGreat: "Remote Desktop MITM Concerns"
Next in thread: Roger Abell: "Re: Remote Desktop MITM Concerns"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: The tools to have.
... For minimum investment buy the Windows Security Resource Kit second edition ... On XP Pro and Windows 2003 computers Software ... Ipsec can prevent computers from accessing a ...
(microsoft.public.windows.server.security)
Re: Isolate systems
... If you have access to the firewall, you might be able to configure what IP ... filtering policy on your computers which is a policy that uses rules with ... Ipsec policies are best when trying to configure for a subnet ... network layout you may be able to implement ...
(microsoft.public.win2000.security)
Re: Isolate systems
... You also may want to download the " Securing Windows 2000 Server Security ... to use ipsec "filtering" policies to secure domain controllers and other ... >> filtering policy on your computers which is a policy that uses rules with ...
(microsoft.public.win2000.security)
Re: Green Admin - Brute Force Attack - Pls Help
... Ipsec configuration is very similar [if ... specifics on how to use ipsec "filtering" policy to protect computers. ... is managing a network - particularly one in a hostile environment. ...
(microsoft.public.security)
Re: Preventing PCs from accessing the network
... Ipsec policies can be used to prevent non domain computers from accessing domain ... resources if the resource computer has a "ipsec require" policy. ... or port isolation. ...
(microsoft.public.win2000.networking)