Re: Terminal services

I have a few follow up questions to your response.

If you don't have a desktop in the office where are you logging into? Right
now we login directly to our desktops and I don't want anyone to have the
abiltiy to login to the server directly. Do they have a virtual desktop?

VPN, I know what it stands for but don't really know exactly what it is. Is
it different than terminal services?

Regarding the weak passwords, that is part of what I didn't understand when
talking with our IT guy. My argument was the same as yours, that regardless
of where you are connecting, the password is either strong or it isn't. He
was saying something about the accounts in the SBS box being able to access
more?? and that accounts in the TS box could be locked down more?? I really
didn't follow what he was saying. Is there a legitimate securtiy issue that
would warrant the additional box and the added expense?



"Lanwench [MVP - Exchange]" wrote:

>
>
> In news:883CC70A-5690-45E2-8B59-B698ACB72FFB@xxxxxxxxxxxxx,
> MCL <MCL@xxxxxxxxxxxxxxxxxxxxxxxxx> typed:
> > I'm am prefacing my question by stating that I am not an IT person
> > and have limited knowledge about this stuff and would appreciate that
> > any responses are geared toward the layperson.
> >
> > We are running SBS2003 and are using terminal services to login to our
> > individual workstations from remote locations. This was setup by our
> > IT consultant. However, he told us that this is not a very secure
> > way to do this (multiplte open ports in the firewall??, weak
> > accounts??) and suggested that we get another server box to act as
> > the terminal server which is networked into our SBS box.
> >
> > Another option was a Citrix solution for loging in from any PC using
> > a web browser.
> >
> > What are the relevant security issues, if any? Comments about the
> > Citrix solution?
> >
> > Thanks.
>
> In addition to the other replies -
> Terminal Services is great, and if you have a lot of people who want remote
> access, it's definitely the way to go. They don't need a desktop in the
> office. You don't need Citrix, either - you can use it, but you don't have
> to. You can control access to it via VPN or not, as you choose.
>
> Re weak accounts - you need to address that, regardless. Force complex
> passwords, 8-char minimum, regular changes (every 90 days would be my
> minimum).
>
>
>
.

Relevant Pages

  • try not to injure the institutions very, spring them again
    ... Are you preferred, I mean, springing in response to missing marbles? ... accounts it too, the follower will tackle up the supporting loch. ... Frank approximately establishs them too. ... remain me enforcing without your general cottage. ...
    (rec.sport.hockey)
  • Re: TOC numbering problem for me.
    ... Thank you for your response. ... Your suggestion - short and brief is a far cry of support. ... APPLICATION ACCOUNTS NOT ALLOWED ON ANY SYSTEM - ALL 23 ...
    (microsoft.public.word.newusers)
  • RE: Logon window issues
    ... You can verify connectivity by pinging from the client to Terminal ... and from Terminal Services to the client by IP address. ... You can try pinging by using a fixed packet size of 1472 bytes with the ... > command until you receive a response. ...
    (microsoft.public.windows.server.sbs)
  • Jobs for Accountant and HR
    ... gives U positive response. ... Pls pass this message to Ur friend also ... 1.Maintaining and closing books of accounts on a monthly basis and ...
    (soc.retirement)
  • Jobs for Accountant and HR
    ... gives U positive response. ... Pls pass this message to Ur friend also ... 1.Maintaining and closing books of accounts on a monthly basis and ...
    (soc.retirement)
Quantcast