Re: Remote Desktop Security Question

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

I have read several articles and postings on the subject of RDC security
but I have not seen this topic addressed... would you be so kind as to
humor me?

I was using RDC from work to access my PC at home until the net admins
blocked the port I was using.

The security folks were comforted with my explanation of my security
practices at home (I use hardware firewalls, AV is running 24/7 and
updated daily, and strong passwords), but the rule stands.

The question is, assuming the worst, could an RDC host possibly
compromise an RDC client, assuming the host is compromised in some
horrific way?

Yes it is possible. After you make RDP connection with your host, there is
an encrypted channel of communication between both computers. Host has
access to many client resources like registry, disks etc. A trojan code
running on host can damage or alter your client machine.


.

Relevant Pages

  • Re: SSH Fingerprint Validation and Authentication
    ... >the user to a possible compromise, but how does this initial warning ... If the user contacts me and asks "what is your SSH RSA ... Surely you don't think that SSH can help you figure out if a host has ... say agrees with what his client has printed, ...
    (comp.security.ssh)
  • Re: Remote Desktop Security Question
    ... I was using RDC from work to access my PC at home until the net admins ... The question is, assuming the worst, could an RDC host possibly ... compromise an RDC client, assuming the host is compromised in some ... access to many client resources like registry, ...
    (microsoft.public.windowsxp.work_remotely)
  • Re: SSH Fingerprint Validation and Authentication
    ... >>the user to a possible compromise, but how does this initial warning ... > say agrees with what his client has printed, ... the more severe warning/error you get when there is a mismatch ... > that an ignorant admin has changed the remote host key (and this is most ...
    (comp.security.ssh)
  • RE: ICS clients cannot connect
    ... I've got this from the ICS host: ... I turned off ICS host and then enabled it. ... the client and entered "ipconfig /release". ... goto one of the client machines and do the same, ...
    (microsoft.public.windowsxp.general)
  • Re: HTTPS; SSL-Tunnel
    ... Referring Server Destination Host Name Transport MIME Type Object Source ... Source Proxy Destination Proxy Bidirectional Client Host Name Filter ... > SSL-tunnel OFT Website anonymous Internal External ...
    (microsoft.public.isa)