Tilted Forum Project Discussion Community - View Single Post

Dilbert1234567 · 03-19-2007, 09:05 PM

are you forwarding the proper ports through PAT(NAT) on the router.

it's UDP port 3389

some further thoughts:

you need to beef up security if you are going to open this port and leave it open, first limit the number of login failures to a small number before locking the account for a few minutes, this will limit the ability to brute force it, second use a strong password.

next we want to force encryption, MS likes backwards compatibility at the expense of security. open you group policy editor

run:
%SystemRoot%\system32\gpedit.msc /s

browse administrative template > windows components > terminal services > encryption. enable set client connection encryption level and set it to high.

03-19-2007, 09:05 PM	#2 (permalink)
Dilbert1234567 Devils Cabana Boy Location: Central Coast CA	are you forwarding the proper ports through PAT(NAT) on the router. it's UDP port 3389 some further thoughts: you need to beef up security if you are going to open this port and leave it open, first limit the number of login failures to a small number before locking the account for a few minutes, this will limit the ability to brute force it, second use a strong password. next we want to force encryption, MS likes backwards compatibility at the expense of security. open you group policy editor run: %SystemRoot%\system32\gpedit.msc /s browse administrative template > windows components > terminal services > encryption. enable set client connection encryption level and set it to high. __________________ Donate Blood! "Love is not finding the perfect person, but learning to see an imperfect person perfectly." -Sam Keen Last edited by Dilbert1234567; 03-19-2007 at 09:30 PM.. Reason: Automerged Doublepost