Subj : Re: New Releases for July 2024
To   : poindexter FORTRAN
From : jack phlash
Date : Mon Jul 29 2024 06:08 pm

on 29 Jul 2024, poindexter FORTRAN said...
 
 pF> RDP isn't encrypted, so you're sending data in cleartext. It'd been a
 pF> while since I dealt with RDP, I think it's doing some level of
 pF> obfuscation of user creds.

Err. RDP is (or can be) in fact encrypted. As far as I recall, it always has supported it too, but I believe available encryption methods, defaults, etc. have changed over the years with newer versions of Windows, service packs, etc. (as is the way.) Then again, if we're talking XP specifically, there's probably some vulnerabilities out there for it by now.

 pF> There's a version of UltraVNC that does encryption through a plugin, but
 pF> it's not quite as nice as using RDP.

One place I worked years ago had tightVNC everywhere assuming it was encrypted for reasons unbeknown to me. Moved them over to UltraVNC with encryption. It worked pretty well, all in all.

 pF> Actually, forget what I said - looks like RDP uses DES 56 or 128 bit
 pF> envryption. That, plus locking down port 3389 to specific source
 pF> addresses should be sufficient for most needs. RDP must have been
 pF> encryptionless back in the day.

IIRC the default in 2000 or at least XP is to fallback to not using it for compatibility, or something silly like that, so you'd have to change some things around to force its use. I'm working from memory here though, so I might be talking out of my ass. :)

|07j |15A C K |07p |15H L A S H |07!
|08[https://jackphla.sh]

--- Mystic BBS v1.12 A47 2021/12/25 (Windows/32)
 * Origin: d i s t o r t i o n // d1st.org (911:1423/0)

.