Presentation is loading. Please wait.

Presentation is loading. Please wait.

Remote Desktop Security Raghav Chawla, Jon Ussery Group 20.

Published byKelley Maxwell Modified over 9 years ago

Similar presentations

Presentation on theme: "Remote Desktop Security Raghav Chawla, Jon Ussery Group 20."— Presentation transcript:

1 Remote Desktop Security Raghav Chawla, Jon Ussery Group 20

2 What is Remote Desktop? Remote administration software Remote administration software Ran on foreign host’s server Ran on foreign host’s server Displayed locally Displayed locally

3 Motivation Very popular Very popular Increasingly mobile society Increasingly mobile society Need to access home/work PCs Need to access home/work PCs Extremely vulnerable Extremely vulnerable Easy to exploit these vulnerabilities Easy to exploit these vulnerabilities Complete access Complete access

4 How Does it Work? For Microsoft services: For Microsoft services: Terminal services allow user to access data and applications on a remote computer Terminal services allow user to access data and applications on a remote computer Different than appstreaming, as computations are processed on remote pc Different than appstreaming, as computations are processed on remote pc

5 History (Microsoft software) Terminal services were introduced in Windows NT 4.0 Terminal services were introduced in Windows NT 4.0 Vastly improved in Windows 2000 Vastly improved in Windows 2000 Vista has new developments as well Vista has new developments as well Clipboard Clipboard Audio Audio

6 Differences In client versions of Windows OS, only one user can be logged in at a time In client versions of Windows OS, only one user can be logged in at a time In the server version, concurrent sessions are allowed In the server version, concurrent sessions are allowed Terminal Services provide for remote software access Terminal Services provide for remote software access

7 In Action Runs on port 3389 Runs on port 3389 Includes ActiveX control Includes ActiveX control Winlogon.exe authenticates user Winlogon.exe authenticates user Keyboard and mouse inputs are transmitted via TCP connection Keyboard and mouse inputs are transmitted via TCP connection Virtual Channels allow other devices to work (such as printers, audio, etc.) Virtual Channels allow other devices to work (such as printers, audio, etc.)

8 Some Software Distributions Microsoft Remote Desktop Connection Microsoft Remote Desktop Connection RealVNC RealVNC TightVNC TightVNC Apple Remote Desktop (for Apple pc’s) Apple Remote Desktop (for Apple pc’s) GoToMyPC GoToMyPC

9 Software Comparison

10 The Lab Hacking into remote desktop Hacking into remote desktop Remotely Enabling remote desktop Remotely Enabling remote desktop Multiuser remote desktop hack Multiuser remote desktop hack Hacking through a firewall Hacking through a firewall Security measures Security measures

11 Hacking into Remote Desktop Transferred WinVNC files on remote pc Transferred WinVNC files on remote pc Used RegINI.exe to load data (password, socket connections) into registry Used RegINI.exe to load data (password, socket connections) into registry Installed VNC through command prompt Installed VNC through command prompt

12 Enable Remote Desktop via Network Use Regedit to connect to the Network registry Use Regedit to connect to the Network registry

13 Find client machine on network Find client machine on network After a few registry edits, remote desktop functionality will be available After a few registry edits, remote desktop functionality will be available

14 Multiuser Desktop Hack Boot Windows in safe mode Boot Windows in safe mode Changed terminal services settings Changed terminal services settings Replaced termsrv.dll files with alternate Replaced termsrv.dll files with alternate

15 Multiuser Hack (cont.) Changed some registry settings Changed some registry settings Finally, tweak Terminal Services settings Finally, tweak Terminal Services settings

16 Hacking Through A Firewall Useful if port 3389 is blocked Useful if port 3389 is blocked Used Putty to setup a tunnel for accessing RDC Server Used Putty to setup a tunnel for accessing RDC Server

17 Security Measures Limit users who can log on remotely Limit users who can log on remotely

18 Security Measures (cont.) Set an account lockout policy Set an account lockout policy

19 Security Measures (cont.) Require passwords and at least 128-bit encryption Require passwords and at least 128-bit encryption Run - %SystemRoot%\system32\gpedit.msc /s Run - %SystemRoot%\system32\gpedit.msc /s

20 Security Measures (cont.) Change the RDP port number Change the RDP port number Edit registry as follows: Edit registry as follows: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp

21 Other Tools

22 Loopback!

23 Any Questions?

Download ppt "Remote Desktop Security Raghav Chawla, Jon Ussery Group 20."

Similar presentations

CONNECTING REMOTE PC WITHOUT ANY SOFTWARE USING CHROME WEB BROWSER WITH ITS ADD-ON/EXTENSION FOR REMOTE ACCESS HASSLE FREE ACCESS USING A COMMON GMAIL.

CONNECTING REMOTE PC WITHOUT ANY SOFTWARE USING CHROME WEB BROWSER WITH ITS ADD-ON/EXTENSION FOR REMOTE ACCESS HASSLE FREE ACCESS USING A COMMON GMAIL.
Objectives Overview Define an operating system

Objectives Overview Define an operating system
Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.

Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.
PC Anywhere By: Neil Meharu Jewel Libid Pete Ramirez Lynn Hy.

PC Anywhere By: Neil Meharu Jewel Libid Pete Ramirez Lynn Hy.
Chapter One The Essence of UNIX.

Chapter One The Essence of UNIX.
Understand Virtualized Clients 10753 Windows Operating System Fundamentals LESSON 2.4.

Understand Virtualized Clients Windows Operating System Fundamentals LESSON 2.4.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
Internet Applications: Telnet, Ping and Traceroute.

Internet Applications: Telnet, Ping and Traceroute.
11 ADMINISTERING MICROSOFT WINDOWS SERVER 2003 Chapter 2.

11 ADMINISTERING MICROSOFT WINDOWS SERVER 2003 Chapter 2.
Guide To UNIX Using Linux Third Edition

Guide To UNIX Using Linux Third Edition
Hands-On Ethical Hacking and Network Defense Second Edition Chapter 6 Enumeration.

Hands-On Ethical Hacking and Network Defense Second Edition Chapter 6 Enumeration.
Hands-On Microsoft Windows Server 2008 1 Connecting Through Terminal Services Terminal server – Enables clients to run services and software applications.

Hands-On Microsoft Windows Server Connecting Through Terminal Services Terminal server – Enables clients to run services and software applications.
Server 2008 Terminal Services and Remote Desktop Services Basic application access is possible without Citrix, and Server 2008 R2 adds on some key features.

Server 2008 Terminal Services and Remote Desktop Services Basic application access is possible without Citrix, and Server 2008 R2 adds on some key features.
Terminal Server © N. Ganesan, Ph.D.. Reference Thin-Client Concept Thin-Client concept tutorial.

Terminal Server © N. Ganesan, Ph.D.. Reference Thin-Client Concept Thin-Client concept tutorial.
Terminal Services Terminal Services is the modern equivalent of mainframe computing, in which servers perform most of the processing and clients are relatively.

Terminal Services Terminal Services is the modern equivalent of mainframe computing, in which servers perform most of the processing and clients are relatively.
File sharing. Connect the two win 7 systems with LAN card Open the network.

File sharing. Connect the two win 7 systems with LAN card Open the network.
11 SYSTEMS ADMINISTRATION AND TERMINAL SERVICES Chapter 12.

11 SYSTEMS ADMINISTRATION AND TERMINAL SERVICES Chapter 12.
MCTS GUIDE TO MICROSOFT WINDOWS 7 Chapter 14 Remote Access.

MCTS GUIDE TO MICROSOFT WINDOWS 7 Chapter 14 Remote Access.
Windows XP tests at DESY Henner Bartels W2K HTASC Coordination Committee CERN, December 3 rd – 4 th.

Windows XP tests at DESY Henner Bartels W2K HTASC Coordination Committee CERN, December 3 rd – 4 th.
Getting Connected to NGS while on the Road… Donna V. Shaw, NGS Convocation.

Getting Connected to NGS while on the Road… Donna V. Shaw, NGS Convocation.

Similar presentations

Ads by Google