How to Secure RDP?

Recently, at work, we were discussing about different ways to secure RDP (Remote Desktop). Some were of the opinion that it is not at all secure. Some were of the view that it is secure as it has SSL included by default in Windows 2008.

I then remembered about many ways that can help us. I have tried to list them down here.

1. Set a default list of user accounts that can connect to the computer.
2. Set a default list of computers allowed to connect to the computer.
3. Configure encryption levels
4. Set permissions for users and groups on the terminal server.
5. Restrict the number of client sessions that can remain active on the server.
6. Use SSL to enforce server identity checking and end-to-end data encryption for RDP.

You can also use a software such as Secure RDP that can also help you a lot.

Related External Links

• SWAT's blog » Jaunty Jackalope (9.04) jumped into the spotlight

Related External Links

• SWAT's blog » Jaunty Jackalope (9.04) jumped into the spotlight

Random Posts

• December 6, 2009 -- ipt_pkd: The port knock detector!
  If you have read our last few posts, you already what a port knock is. We had mentioned about it her...
• March 12, 2010 -- samagraph-sql.txt
  Samagraph CMS suffers from a remote SQL injection vulnerability that allows for authentication bypas...
• August 9, 2010 -- UPDATE: Skipfish-1.55b!
  Skipfish has been updated yet again! The latest release is Skipfish-1.55b! “Skipfish is a fully aut...
• December 28, 2009 -- Norton PC Checkup – Free scan computer for security and performance problems
  What does Norton PC Checkup do?Norton PC Checkup will check for Viruses, spyware, malware and ot...
• January 27, 2010 -- WITOOL: A web SQL Injection Tool!
  WITOOL is a SQL injection tool powered by .NET (2.0), for SQL Server, Oracle, Error Base and Union B...
• June 1, 2009 -- Kismet: A 802.11 layer2 Intrusion detection system
  What NetworkMiner is for the Windows network, Kismet is for the Wireless Network. As you know, Netwo...
• September 2, 2010 -- UPDATE: Laudanum 0.2!
  You can find our first post regarding Laudanum here. Now, the author has updated the tool to Laudanu...
• November 1, 2009 -- Security Compliance Management Toolkit Series – Updated with windows 7
  Solution Accelerator is designed to help your organization meet its security and compliance requirem...
• April 25, 2010 -- nctjobsportal-sqlxss.txt
  NCT Jobs Portal Script suffers from a cross site scripting vulnerability. It also suffers from a rem...

Tagged as: How to Secure RDP, How to Secure Remote Desktop