I have a question about our Citrix security.
Our setup here is that our Citrix server is open on the firewall through the normal port. This is the only port open.
Our remote home users have Citrix program neighbourhood installed. From here they have setup an ICA connection connecting to the public IP of our Citrix server. The connection uses Citrix's DEFAULT basic encryption level.
Now I've been told this is a breach of security, because when the users enter there username & password this isn't secure enough, and is being sent over in clear text ? I thought the default basic encryption would take care of this ?
Maybe I should set the encryption level higher on the server and remote users ICA connection ?