Firewall Wizards: RE: RDP and security

From: <GChen_at_allianz.ca>
Date: Tue, 6 Jan 2004 09:20:47 -0500

Windows 2003 Server may fixed the issue. It supports SSL for Terminal
Services over the web.

                      TSimons_at_Delphi-Tech.com
                      Sent by: To: morty_at_frakir.org
                      firewall-wizards-admin_at_honor.i cc: firewall-wizards_at_nfr.com
                      csalabs.com Subject: RE: [fw-wiz] RDP and security


                      01/05/2004 08:24 AM

In our eyes the biggest design flaw is that there is no authentication
prior
to the windows authentication. PCs in a locked office are more secure than
a Terminal Server out on the public internet... because you need a key to
get into the office.

-----Original Message-----
From: Mordechai T. Abzug [mailto:morty_at_frakir.org]
Sent: Friday, November 21, 2003 12:48 AM
To: firewall-wizards_at_nfr.com
Subject: [fw-wiz] RDP and security

Anyone have any strong opinions on the security of RDP (Microsoft's
terminal server/remote desktop protocol)? Poking around on the net, I
see that they've had at least one design flaw that supposedly hasn't
been fixed (ie. server identification.) Any other design problems?

Thanks!

- Morty
_______________________________________________
firewall-wizards mailing list
firewall-wizards_at_honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards_at_honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

*******************************

This e-mail and any files transmitted with it are confidential and may be
privileged and are intended solely for the use of the individual or entity
to whom they are addressed. If you have received this e-mail in error,
please notify the sender immediately. Please note that any views or
opinions presented in this e-mail are solely those of the author and do not
necessarily represent those of Allianz Canada. Allianz Canada accepts no
liability for any damage caused by the transmission of this e-mail.

Ce courriel et tous fichiers qui l'accompagneraient sont confidentiels et
peuvent faire l'objet d'un privil�ge. Ils sont destin�s uniquement � la
personne ou � l'entit� � qui ils sont adress�s. Si vous avez re�u ce
courriel par erreur, veuillez en avertir l'exp�diteur imm�diatement.
Veuillez noter que tous points de vue ou opinions contenus dans ce courriel
sont uniquement ceux de l'auteur et ne repr�sentent pas n�cessairement ceux
d'Allianz Canada. Allianz Canada rejette toute responsabilit� au titre de
dommages entra�n�s par la transmission de ce courriel.

_______________________________________________
firewall-wizards mailing list
firewall-wizards_at_honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Received on Jan 06 2004