Announcement

Collapse
No announcement yet.

Best Way to Secure Terminal Services

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Best Way to Secure Terminal Services

    What is the best way to secure RDP on the server.

    buy a certificate?, not really sure how that works, i have heard of 2X client, is that used for RDP, or other ways?


    Thanks

  • #2
    Re: Best Way to Secure Terminal Services

    well..what are you securing it from, or against ?
    Please do show your appreciation to those who assist you by leaving Rep Point https://www.petri.com/forums/core/im.../icon_beer.gif

    Comment


    • #3
      Re: Best Way to Secure Terminal Services

      if i knew your public address, i could see your logon screen. and just guess away at the password. This is also for a desktop computer as well as a server. Or use some of those softwares out there like hacktool.
      Last edited by Kobe 310; 5th September 2011, 21:52.

      Comment


      • #4
        Re: Best Way to Secure Terminal Services

        Please add a second layer of TMG/UAG/SSL VPN and use OTP + Active Directory user/password...
        Best Regards,

        Yuval Sinay

        LinkedIn: https://www.linkedin.com/in/yuval14, Blog: http://blogs.microsoft.co.il/blogs/yuval14

        Comment


        • #5
          Re: Best Way to Secure Terminal Services

          Originally posted by Kobe 310 View Post
          if i knew your public address, i could see your logon screen. and just guess away at the password. This is also for a desktop computer as well as a server. Or use some of those softwares out there like hacktool.
          just don't make your terminal server publiclly available?

          or, use firewall access control lists to limit it to specific source addresses.

          a certificate won't stop me using brute force.. unless you also expect a client certificate before allowing connection.
          Please do show your appreciation to those who assist you by leaving Rep Point https://www.petri.com/forums/core/im.../icon_beer.gif

          Comment


          • #6
            Re: Best Way to Secure Terminal Services

            tehcamel;

            the reason i'm asking is because of this thread i started http://forums.petri.com/showthread.php?t=56889, some people say it was an inside job, and some say outside, so i'm trying to figure out how they got in, they can't telnet, the only way is one of those software programs, or i could just be bored one day, and start typing in addresses. i figure if there are millions of people on the internet, maybe 500 people were bored and just started typing in address, 1 of those 500 people(sure it would be alot more), would come across an address that brought up someones desktop.

            and when you say, "a certificate won't stop me using brute force.. unless you also expect a client certificate before allowing connection", not sure what you mean by a client cerificate before allowing connection. Now when you use the word "also" i'm assuming that whole sentence would be using 2 certificates? what are they and how.

            yuval14;

            over my head, could you explain, what is TMG/UAG/SSL VPN and use OTP + Active Directory user/password.

            thanks

            Comment


            • #7
              Re: Best Way to Secure Terminal Services

              SSL VPN:

              http://searchsecurity.techtarget.com/definition/SSL-VPN

              OTP:

              http://en.wikipedia.org/wiki/One-time_password
              Best Regards,

              Yuval Sinay

              LinkedIn: https://www.linkedin.com/in/yuval14, Blog: http://blogs.microsoft.co.il/blogs/yuval14

              Comment


              • #8
                Re: Best Way to Secure Terminal Services

                so would the ssl vpn be like cisco vpn client. and then use private address to connect to server instead of public?
                Last edited by Kobe 310; 9th September 2011, 13:42.

                Comment


                • #9
                  Re: Best Way to Secure Terminal Services

                  Yes and no Cisco VPN usually doesnt provides a secure and easy solution like Juniper SSL VPN...
                  Best Regards,

                  Yuval Sinay

                  LinkedIn: https://www.linkedin.com/in/yuval14, Blog: http://blogs.microsoft.co.il/blogs/yuval14

                  Comment

                  Working...
                  X