Re: Terminal services
From: Steve Foster [SBS MVP] (steve.foster_at_picamar.co.uk)
Date: 05/20/04
- Next message: Phil S.: "Re: SBS 2K3 Multi Nics"
- Previous message: Mark Mancini: "Re: Terminal services"
- In reply to: Mark Mancini: "Re: Terminal services"
- Next in thread: Mark Mancini: "Re: Terminal services"
- Reply: Mark Mancini: "Re: Terminal services"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 19 May 2004 18:36:28 -0700
Mark Mancini wrote:
> STeve, no, you DON'T need a VPN to add security to TS.....it will only
> REDUCE it. TS should be setup with high encryption for 128 bit
> encryption. He is using it for admin purposes, and shouldn't need
> access to LAN resources. While he is an admin, he maybe accessing it
> from his family computer and putting a PC on a company LAN like that
> is LESS secure than SBC.
The default configuration for a VPN connection is more secure than
direct TS, and offers much more functionality.
The default for TS is to not lock out administrator accounts, no matter
how many attempt to logon, whereas with a VPN it's easy to have a
separate account just for the VPN tunnel.
I know it's possible to make changes to mitigate against these, but
those are not the default settings, and the maximum security with
default settings will come from the use of VPN rather than direct TS.
Who's to say the original poster doesn't need remote access to LAN
resources... When I'm doing remote administrative tasks for my
customers, I often have a need to reach out to the internal network.
-- Steve Foster [SBS MVP] --------------------------------------- MVPs do not work for Microsoft. Please reply only to the newsgroups.
- Next message: Phil S.: "Re: SBS 2K3 Multi Nics"
- Previous message: Mark Mancini: "Re: Terminal services"
- In reply to: Mark Mancini: "Re: Terminal services"
- Next in thread: Mark Mancini: "Re: Terminal services"
- Reply: Mark Mancini: "Re: Terminal services"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
