Security question about remote desktop...

[rudder]

This is a home network. I currently have remote desktop setup so I can access my home server during the day. It is running server 2008 and port 3389 is forwarded through the linksys wrt54g. I'll also mention this is a DSL connection.

Are there any major security issues will leaving this enabled? I know I will be the target of scans and such and was worried with port 3389 showing up. I only have one accont enabled and it has a very strong password.

This is an energy efficient server and I do have the option of setting up a cisco vpn router but that is another device that will need to be running. Although I don't think it will use a whole lot of juice either.

Any better options like pcanywhere?

 

[JackMDS]

Remoe DeskTop s Encypted by default.

http://support.microsoft.com/kb/275727

A Port has to be open that how Millions are using it.

 

[rudder]

I did not even think about the encryption... but good to know! I was concerned with any remote desktop exploits. A brute force attack won't work (or will take a long, long time)because of the password I am using so I am not too concerned there.

A friend also mentioned nettop (?). A remote desktop program where you can configure the port. Maybe I can hide it way up there in the 60,000's!

 

[skyking]

I don't use it that often, so I have a strong password and a nonstandard port on my router. I log into the router and forward ports as needed, and close them when I am done.

 

[JackMDS]

rudder, if you are an Hidden port for the World bank I would worry about it.

Home user with good password and encryption Nah.

If you want to change the default port.

http://support.microsoft.com/kb/306759

 

[stash]

Since you're running 2008, you should be using TS Gateway: https://technet.microsoft.com/.../library/cc731264.aspx

It sends RDP over SSL, so you just have to forward 443.

Another good link: http://www.dscoduc.com/post/20...-using-TS-Gateway.aspx