In addition, You can install cygwin(www.cygwin.com) with openssh and tunnel terminal services through openssh(very simple to do with putty). And then use your router or firewall to block port 3389. -Eddie B.
On Tue, 25 Jan 2005 14:38:30 -0600, Curt Purdy <purdy at tecman.com> wrote: > The problem with terminal server is not any vulnerablities that can be > exploited, but the fact that administrator can be bruteforced (6 attempts > followed by reconnect) and that it is screaming its existence on port 3889. > If you use it, definitely change the port in the registry. >>You can use the local security policy to prevent administrators from >>logging in via terminal services and then enable "run as" for >>administrative tasks...which should be done anyway. Changing the >>port >>number is another good step though. >> >>-- >>Jonathan _______________________________________________ Join Excite! - http://www.excite.com The most personalized portal on the Web! _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
