• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 314
  • Last Modified:

Terminal Server 2008 Security

Terminal Server is a big security risk, although also is a good technology; if you deploy 2008 it looks like it can be made into a web part in WSS 3.0.  The only issue is what are the best methods to secure it without a vpn if there are any?  I've read different deployment scenerios but looking for something that is both economical and wont impair performance.
0
Jack_son_
Asked:
Jack_son_
  • 2
  • 2
2 Solutions
 
lamaslanyCommented:
Is there a VoIP component to this question?

As for publishing your Terminal Servers you can use the TS Gateway role.    
0
 
Jack_son_Author Commented:
Sorry, didnt mean to label as VOIP.  Actually would be nice to include it now that you mention it.  

Is the Gateway role a good security measure?
0
 
lamaslanyCommented:
It is as good as an SSL-VPN connection.
0
 
Jack_son_Author Commented:
So it is as secure as SSL-VPN?  
0
 
tigermattCommented:

All communications to Terminal Services via a TS Gateway server take place over the Internet to the TS gateway over an encrypted SSL tunnel. This is as secure as any other form of SSL encryption you will come across, and works in the same way as encrypted websites which handle sensitive information work.

The connection from the TS Gateway out to the remote Terminal Server endpoint runs on standard Terminal Services, so may not have such strong encryption.

TS Gateway is a very secure system to implement, and it also makes it more convenient to remotely access any computer/server with Remote Desktop/Terminal Services enabled, without the need to open a good deal of ports through the firewall. You can connect to the TS Gateway and then hop on from there to the destination PC you want to use.

-Matt
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now