http://www.mobydisk.com/techres/securing_remote_desktop.html
I’ve been looking for a way to secure my RDP session from work/friend’s PCs to my home Vista64 box to secure the initial logon process (encrypted password etc) and not just the session itself (default behaviour) and I came across the above link that some of you may find useful.
I prefer to use Vista’s NLA but only Vista and Windows 7 machines can gain access remotely to the PC then even with the updated RDP client v6 for XP.
Using the guide in the link enables 128bit encryption of a non network Level Authenticated RDP session and also allows you to force a password prompt every time so disabling the choice of remembering the password on the client machine.
Also some local security policy tweaks to further secure your admin account(s) from a remote logon brute force attempt via the rdp port.
I can now use rdp with NLA disabled and be sure that the session is safe from my work’s XP machine without having to do it from my netbook using NLA and having to put up with a low resolution
I’ve been looking for a way to secure my RDP session from work/friend’s PCs to my home Vista64 box to secure the initial logon process (encrypted password etc) and not just the session itself (default behaviour) and I came across the above link that some of you may find useful.
I prefer to use Vista’s NLA but only Vista and Windows 7 machines can gain access remotely to the PC then even with the updated RDP client v6 for XP.
Using the guide in the link enables 128bit encryption of a non network Level Authenticated RDP session and also allows you to force a password prompt every time so disabling the choice of remembering the password on the client machine.
Also some local security policy tweaks to further secure your admin account(s) from a remote logon brute force attempt via the rdp port.
I can now use rdp with NLA disabled and be sure that the session is safe from my work’s XP machine without having to do it from my netbook using NLA and having to put up with a low resolution