Home page logo

basics logo Security Basics mailing list archives

RE: RDP Client for Windows
From: "Halverson, Chris" <chris.halverson () encana com>
Date: Thu, 18 Dec 2003 10:58:10 -0700

This is a message of clarification. 

We are not connecting to a terminal server, the connection is from a users
home PC to a windows XP Pro workstation (users office PC).  We currently
have implemented Citrix, but not all the applications required by users are
scripted and running on the citrix server, so for those users that require
those applications that are not running via citrix we allowed them to
connect to the office computer via remote desktop connection.  Security
concerns arise when the users can map their home drives to in the office PC
and access and download any document.

I hope this clears things up.

We are currently requiring the use of Remote Desktop Connections for
numerous users to access their office computers from home.  The connections
are running through a secure VPN tunnel and are working as designed, with
one exception.  We do not want users accessing there home hard drives
through this method.  With the RDP client by default the sharing of the home
drives is unchecked, but is very easy to enable it and then users can
transfer internal documents onto a home computer or allow Viruses from the
home computer onto the Corporate Network.

Any thoughts on how to rectify this?

Group Policy is definately out of the question, we cannot push group
policy to the users home PC's.



You can block mounting user's drives on the server in user properties. 
By default it is not blocked.


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]