As systems administrators we are often tasked with implementing countermeasures to mitigate risks that we can’t completely address. The intent of this post is to cover methods of reducing the risk presented by having Remote Desktop Services (formerly Terminal Services) available on the network.
The risks that I will cover are:
- Man in the Middle attacks
- Sniffing / Traffic capture
- Brute Force Attacks
- Information Disclosure