Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
Home
Discussion GroupsWindows Server 2003Windows 2000Windows NTSmall Business ServerVirtual ServerExchange ServerIISHost Integration ServerISA ServerSMSWSUSMOMWindows Media ServerSecurityCertification
Related Topics
SQL ServerMS WindowsMS OfficePC HardwareMore Topics ...
Windows Server Forum / Windows 2000 / Terminal Services / January 2005

Tip: Looking for answers? Try searching our database.

Remote Desktop Port Address on a PDA

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
StuffJustHapens - 28 Jan 2005 10:14 GMT
Just to give our friendly crackers another minor challenge, we've
changed the default port for RDP sessions on all our servers. (VPN
tunnelling next on the list but changing the port was a quick and dirty
option I could do right away).

All working OK for desktops, but now I discover that the Client on my
PDA iPAQ 4150 witn WM2003 won't accept a port identifier on the IP
address line so there goes my mobile support option --AAARGH!

I understand from a bit of searching that there was a registry tweak for
 PPC2002 but that it doesn't work with 2003.

Any ideas? Is there a third party client that works OK??

Thanks
Reply to this Message
Vera Noest [MVP] - 28 Jan 2005 20:53 GMT
Haven't checked this personally, but someone posted this info some
weeks ago:

Follow these steps to customize your Pocket PC to use any port you
want.

1. Download & install a Pocket PC Registry Editor
(http://www.bitsinside.com)
2. Add the following key to the registry on your Pocket PC:

HKEY_CURRENT_USER\Software\Microsoft\Terminal Services\Default
Server Port : dword=3389

Change 3389 to your new port number.

--
Vera Noest
MCSE, CCEA, Microsoft MVP - Terminal Server
http://hem.fyristorg.com/vera/IT
--- please respond in newsgroup, NOT by private email ---

StuffJustHapens <StuffJustHappens@youkaytwodotnetuk2.net> wrote on
28 jan 2005 in microsoft.public.win2000.termserv.clients:

> Just to give our friendly crackers another minor challenge,
> we've changed the default port for RDP sessions on all our
[quoted text clipped - 13 lines]
>
> Thanks
Reply to this Message
Patrick Rouse - 29 Jan 2005 06:05 GMT
In all honesty, changing the port number won't stop any capable of cracking
passwords or hacking your system from getting in, it will only prevent script
kiddies with no knowledge from seeing what they can get into.  Anyone with a
good port scanner and time on their hands can find whatever they desire to
look hard enough for.

RDP is as secure on port 3389 as HTTPS, and very few people change that
port.  If you are paranoid about security the only truely hackerproof
solution is one that uses PKI, i.e. IPSec/L2TP VPN, as certificate checking
is done and secure tunnel are established before credentials are exchanged.  
NO cert, no connection, no option to try to supply credentials.

PPTP VPN for remote users of Terminal Server is a total waste of overhead,
man hours, and in most cases makes a system less secure, because you expose
your system to any bad things running on remote systems.

VPN is only safe if:

1.  It IPSec/L2TP
2.  It's managed on both ends (i.e. you control the firewall on both sides).

If you implement a VPN without these two things, then you're fooling
yourself in thinking it's secure.

Patrick Rouse
Microsoft MVP - Terminal Server
http://www.workthin.com

> Haven't checked this personally, but someone posted this info some
> weeks ago:
[quoted text clipped - 37 lines]
> >
> > Thanks
Reply to this Message
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2009 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.