Penetration Testing mailing list archives

Re: TS/3389 risk on Internet

From: Lennart Sorth <Lennart.Sorth () uni-c dk>
Date: Fri, 29 Oct 2004 08:53:19 +0200

net sec wrote:

Does anyone know if the login/passwordis sent in clear text for TS authentication?


Well, its certainly sent unencrypted, if not clear text.

You can install Cygwin on the DC, and tunnel tcp-3389 through
a SSH connection. This way the security is provided by, and
can be maintained by means of the Cygwin SSH implementation.

And if you use ssh compression, it is usually even faster
than doing the TS directly.


Best regards

Lennart Sorth
UNI-C
Denmark

Current thread:

Re: TS/3389 risk on Internet Lennart Sorth (Nov 01)
- <Possible follow-ups>
- Re: TS/3389 risk on Internet Adam Jones (Nov 01)
- Re: TS/3389 risk on Internet Jeffrey Clark (Nov 01)
- RE: TS/3389 risk on Internet Keith T. Morgan (Nov 01)
- RE: TS/3389 risk on Internet Peadro, Jeff (AIS) (Nov 01)
  - Re: TS/3389 risk on Internet Tim (Nov 03)
- Re: TS/3389 risk on Internet Travis Potter (Nov 01)
  - Re: TS/3389 risk on Internet Neale Green (Nov 03)
- Re: TS/3389 risk on Internet Davide Carnevali (Nov 01)
- RE: TS/3389 risk on Internet sk3tch (Nov 03)
- RE: TS/3389 risk on Internet Todd Towles (Nov 03)