How secure is remote desktop

---

• From: "Cnews" <carl@xxxxxxxxxxxx>
• Date: Mon, 16 Jun 2008 19:46:46 -0500

---

I had a consultant give me the fire drill about how our network is at risk
because we have 2 people connecting via remote desktop to 1 server. These
are set in GP to enforce high encryption level. My understanding is this
is secure- and according to the technet article I read- even login
credentials are encrypted.
Is this correct? Is the contractor just trying to scare us to have hime
setup a vpn for $$$.
Looking for comments

Thanks

craig



--
Craig Niedringhaus
craig@xxxxxxxxxxxxxxxx
www.milwaukeenet.net
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: PGP 8.0.2

mQGiBEFtMm4RBADPxR+70an3t9hjRt7pvk0URNrcnNS3Jm/zbFudFbne1xiMqUu2
hKG6U4wZr7H8oD97fd7b5wzJDsfHFAR2YIP4e9XKEDXXeqGtKRjBe1FV123yfPAe
GAyMg2uf9eBX9ykYGtTsKsAXmsiTcRaYplRj66a4zO13j9x2lf7k2+j5OwCg/y+p
aOE5p+mY5G1h8beSDzWPAUkD/Ar6M/bEJIOlSAJvO+8dLGYHIzk0jlIiTDabYjBI
tWUS5MlmTTAXcQ1jr2Q+wRkpVUTC9sveWuLquoAjsaOw1t+nRbAt6yQaja1EzNAr
2O0MuLQRUYPsnlI6DVrtflM1FBL0YeyncvkGpdCj6MRs+FYQbgWm4JA8KuYQq9Q3
eIXsA/9atvTOcYdQ7WWmSeX/A1zT2m95kZLnEE57OIjOdds8bHmWm1MpCDszzNJS
LX+apCGZSBQ8/DHD5+9Wxs9s+QD9c9JFKszCmHq1JXf/duosQCSbikaU9UdbW9hm
t1+XGLOg6VZ2P3sSgkV56vr0O/MU9ENtd2e9DHToI1DQbapljLQqQ3JhaWdOaWVk
cmluZ2hhdXMgPGNyYWlnQG1pbHdhdWtlZW5ldC5uZXQ+iQBXBBARAgAXBQJBbTJu
BwsJCAcDAgoCGQEFGwMAAAAACgkQI8Oi/e+Ji6kB5gCgijElHMQ4aFnLuwfIKLTp
TkAlOWAAoLEkBOR84ZxmNTwQeVPPKhCK1UW/uQINBEFtMm8QCAD2Qle3CH8IF3Ki
utapQvMF6PlTETlPtvFuuUs4INoBp1ajFOmPQFXz0AfGy0OplK33TGSGSf


.

---

• Prev by Date: Re: Automatic certificate enrollment for local system failed
• Next by Date: Install Certificate on Windows Vista
• Previous by thread: Re: Automatic certificate enrollment for local system failed
• Next by thread: Re: How secure is remote desktop
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Remote desktop is not secure ... because we have 2 people connecting via remote desktop to 1 server. ... These are set in GP to enforce high encryption level. ... I think that most who are concerned about security would recommend the usage of a VPN solution in this situation with a strong user name and password on the remote host machine being connected to over the Internet by client machines. ... (microsoft.public.windows.vista.security) Remote desktop is not secure ... I had a consultant give me the fire drill about how our network is at risk ... because we have 2 people connecting via remote desktop to 1 server. ... are set in GP to enforce high encryption level. ... (microsoft.public.windows.vista.security) Re: How secure is remote desktop ... It's bidirectional TLS with long keys, which is essentially equivalent to VPN. ... It will be a stretch to come up with an attack scenario that is valid for remote desktop but mitigated using VPN. ... are set in GP to enforce high encryption level. ... Craig Niedringhaus ... (microsoft.public.windows.server.security)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.windows.server.security  > 2008-06