XP Pro RDP vulnerable over the internet?

VirtualLarry · Dec 18, 2010

http://www.oxid.it/downloads/rdp-gbu.pdf

I went looking for info on MITM attacks against RDP and found this PDF. Doesn't sound too good. I wanted to set up a remote-accessable server at my apt, so I can login remotely and do work while I'm at a friend's house. Was thinking of using RDP. Now I'm not so sure that's safe.

Edit: Found this, seems to have solutions for the MITM issue.
http://blogs.msdn.com/b/rds/archive...ion-to-prevent-man-in-the-middle-attacks.aspx

I can't figure out if XP Pro SP3 or Win7 Pro can implement those schemes, it seems like they are only for servers.

CptCrunch · Dec 19, 2010

if you want to do RDP to home from work, you can do 2 options with relative security and safety.

1) VPN. Build a vpn server, log in, RDP

2) RDP. RDP to a high port, like 45123, but tell your router to forward 45123 to 3389 for x.x.x.x. This will probably require DDWRT or Tomato, unless your stock firmware can forward ports

2b) alternatively, see http://support.microsoft.com/kb/306759

RebateMonger · Dec 19, 2010

The original link was written in 2005.

When using the latest Remote Desktop client with the latest versions of Windows, you can require server authentication. I'm hardly an expert in this, but I believe this should prevent man-in-the-middle attacks.

Also, remote access to your PCs through Windows Home Server uses the same remote access system as Windows Small Business Server which is also invulnerable to MITH attacks.

And, as mentioned, an SSL VPN tunnel will also prevent MITM attacks.

XP Pro RDP vulnerable over the internet?

VirtualLarry

No Lifer

CptCrunch

Golden Member

RebateMonger

Elite Member

TRENDING THREADS