Wednesday, February 18, 2009

Windows remote desktop security

I've been wondering about how secure Windows Remote Desktop actually is, and it seems like you can be pretty protected with some common sense and few changes.
Here are a few tips that I have found while searching:
  • As default all administrators has remote desktop access, so it is a good idea to change the Administrator users name to a different name.

    1. It is found in: Control Panel -> Administrative Tools -> Local Security Policy -> Local Policies -> Security Options
    2. Find: "Accounts: Rename administrator account" in the list, and right click and Properties.
    3. You are able to rename the administrator name here, and then restart the computer.
    4. While your in the Local Policies you can change the values in the Account Policies to be as you want it, like changing the: Account lockout threshold to a few attempts.
  • Another thing is to change the default port number of remote desktop which is 3389, it can be changed the following way.
    1. Go to: Start -> Run -> write "regedit" -> press OK.
    2. Go to the following folder: HKEY_LOCAL_MACHINE -> System -> CurrentControlSet -> Control -> TerminalServer -> WinStations -> RDP-Tcp
    3. Find: "PortNumber" in the list, and right click and "Modify..."
    4. Write your desired port number and remember to add ":PortNumber" at the end of the URL when connecting to your Remote Desktop, and be sure to check if the firewall port is open.

No comments:

Post a Comment