Question : Problem: The Security Implications of Running RDP

I am trying to understand what the security risks and implications that would be associated with running RDP across the internet without using VPN. Assuming Windows 2003 sever and using the high encryption setting?

Answer : Problem: The Security Implications of Running RDP

1) Every man and dog knows about 3389, so don't open it on the external side.
Hackers will use the path of least resistance, unless there is something in particular that they are looking for on your network.

You can use your own meaningful scheme if you have multiple servers.
eg) 192.168.1.100 = external port 57100
192.168.1.101 = external port 57101

2) A few more risks I can think of
a) User leaves workstation faling to close session
b) Someone spies on user typing password.
- But I don't think these additional to running accross VPN.

BTW: You should notice a speed increase outside of VPN!

Random Solutions

Problem: Maximum length of fiber LC-LC multi mode network cable

Problem: Trying to determine if my power infrastructure can accomadate a new blade enclosure

Problem: Back-up is failing on a specific server...

Problem: my Dell 9100 dimension

Problem: 10/100mbps NIC card only works at 10mbps on a 10/100mbps hub?

Problem: Checksum error

Problem: Routing between 2 NICs on the Windows 2003 Server R2

Problem: Insufficient online or nearline media is available to start job

Problem: "0 software updates found" for April 2009 even though Microsoft released the updates two days ago

Problem: Is there such thing as "RAID Ready" Hard drive?