Re: Remote Desktop Protocol
- From: "Steven L Umbach" <n9rou@xxxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 29 Oct 2007 20:19:16 -0500
RDP is a secure way to manage the domain and by default all RDP traffic is
encrypted and allows you to leave the domain controller/servers locked up.
BUT I would suggest that you only do such from a known secure admin computer
meaning a computer you are sure no unauthorized users have had access to in
order to install keyloggers, scripts, etc. Also it is best practice to have
a domain account for yourself that is not in the domain admins group that
you can use for tasks that do not require such powers and most AD tasks can
be delegated to a regular user account including managing domain user
accounts that are not in priviliged groups. Also make sure that no one with
domain administrator powers ever logs onto a domain workstation for routine
maintenance of such workstation or even member server. Create a domain user
account that is in the local administrators group of the domain workstations
[you can use Group Policy Restricted Groups to automate that] and use that
account/accounts to manage domain workstations.
Steve
"Philip" <Philip@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:30E40506-9646-4153-9176-EEE97AE55181@xxxxxxxxxxxxxxxx
Hi, my name is Philip and iam a domain admin.
In my work there's an hostile environment, and i truly believe that some
tools are being using, such as sniffers (linux) and keyloggers.
Is remote desktop, secure enough against these tools, while managing the
AD?
If i transfer text from my workstation to the server, is this also encrypt
by the rdp?
Can I use administrative tools, in my desktop, without compromise the
information?
Tks in advance
Philip
.
- Prev by Date: Re: Remote Desktop Protocol
- Next by Date: Re: Terminal Services Security Issue with Cached Credentials
- Previous by thread: Re: Remote Desktop Protocol
- Next by thread: Re: Remote Desktop Protocol
- Index(es):
Relevant Pages
|
