Penetration Testing mailing list archives
Re: TS/3389 risk on Internet
From: Lennart Sorth <Lennart.Sorth () uni-c dk>
Date: Fri, 29 Oct 2004 08:53:19 +0200
net sec wrote:
Does anyone know if the login/password is sent in clear text for TS authentication?
Well, its certainly sent unencrypted, if not clear text. You can install Cygwin on the DC, and tunnel tcp-3389 through a SSH connection. This way the security is provided by, and can be maintained by means of the Cygwin SSH implementation. And if you use ssh compression, it is usually even faster than doing the TS directly. Best regards Lennart Sorth UNI-C Denmark
Current thread:
- Re: TS/3389 risk on Internet Lennart Sorth (Nov 01)
- <Possible follow-ups>
- Re: TS/3389 risk on Internet Adam Jones (Nov 01)
- Re: TS/3389 risk on Internet Jeffrey Clark (Nov 01)
- RE: TS/3389 risk on Internet Keith T. Morgan (Nov 01)
- RE: TS/3389 risk on Internet Peadro, Jeff (AIS) (Nov 01)
- Re: TS/3389 risk on Internet Tim (Nov 03)
- Re: TS/3389 risk on Internet Travis Potter (Nov 01)
- Re: TS/3389 risk on Internet Neale Green (Nov 03)
- Re: TS/3389 risk on Internet Davide Carnevali (Nov 01)
- RE: TS/3389 risk on Internet sk3tch (Nov 03)
- RE: TS/3389 risk on Internet Todd Towles (Nov 03)