RDP Security

  • Thread starter Thread starter dlw
  • Start date Start date
D

dlw

I have port 3389 on the firewall forwarded to a win3k
server to do RDP. This seems like a fairly common
business practice. How secure is that? What are the
risks of doing that, compared to going over a VPN?
 
All 3389 does is provide RDP... So if that is open to the Internet, the
entire Internet has the ability to connect to a TS session and attempt to
login... So, strong passwords and religious account management are key.
You can furthur secure it if you have a set of static IP's where the RDP
sessions will be coming from, lock down the firewall to only accept incoming
3389 packets from those ip's. Although, most org's find this impracticle...
 
Back
Top