Rdp or teamviewer?

poosemon · 24 Nov 2012 at 23:57

I made a bit of a rookie noob error when setting up my media server, I have a windows xp box running 24/7 and was trying to set up rdp access...

Therefore I got the service going, restricted the admin account access, set it to lock account after 3 invalid attempts etc and port forwarded the default port. Was working brilliantly on the iPad and mobile so left it be.

The next morning the admin accounts were locked so assume someone/something was trying to access my network only one evening after opening it up to the no-ip service as not got a static ip!

Have since closed the port forward until a better solution is resolved, so is it going to be secure enough to just choose another random port, or is it likely that this is going to happen again? Or should i switch to teamviewer unattended or is this program susceptible to the same kind if attacks?

Thank you for any help!

bremen1874 · 25 Nov 2012 at 01:10

If you're going to use a RDP connection it really needs to be over a VPN. Changing the port from the default will help to some extent, but won't change the underlying problem.

Teamviewer, LogMeIn, GoToMyPC, etc. are a better options if a VPN connection isn't available.

poosemon · 25 Nov 2012 at 09:47

Do they still allow admin changes and installing applications etc?

Redgie · 25 Nov 2012 at 10:00

That seems might convinient to get an attempt so quickly. Did you check your logs to see where the attempt originated from?

What you could do is use IP tables to restrict access to areas you know you'll be (Generic country wide IP's or static ones if you know where you'll be accessing from remains static).

I've been using mine fully open for a few years now and aside from the odd login attempt I've had no trouble, and when they do try to login, they normally just give it one attempt then leave, nothing that bothers me!

VPN's are great for security, but if you're like me, you may sometimes wish to retrieve a file from somewhere you're not normally at, like a friends house, while at a customers house or at a one off place of work. Having to join a VPN or find a way to bypass it would be a real pain for one-offs like that!

KIA · 25 Nov 2012 at 10:00

poosemon said:
Do they still allow admin changes and installing applications etc?

Yes, if it's installed as a service.

The history of RDP security isn't pretty. At the very least, you should have "Allow connections only from computers running Remote Desktop with Network Level Authentication" enabled.