Solved

Securing Remote desktop

Posted on 2010-08-26
4
413 Views
Last Modified: 2013-11-21
I want to let prospective companies look at an application server inside our network, but restrict them from downloading or removing any of the code. Programmers generally know how to get around restrictions. The server is 2003 Standard edition, and I've created a user that is only a member of remote desktop users. I've also prevented local drive mapping and clipboard via Terminal Service Configuration.

What about ftp via browser or command line?

What other methods would a person use?

What else should i be doing?
0
Comment
Question by:zen_68
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 7

Expert Comment

by:simonseztech
ID: 33531036
You have a few options here.

Here 2 options that I know will work.
You can install 2X Application Server (http://www.2x.com/applicationserver/) that let other only remote the application (not the whole desktop). They have a free version up to 5 connection.

You can also check ThinApp (from VMware) it's an application streaming technologie (http://www.vmware.com/products/thinapp/).
0
 
LVL 7

Accepted Solution

by:
simonseztech earned 500 total points
ID: 33531080
You can also "lockdown" your windows 2003 remote desktop via group policy (http://support.microsoft.com/kb/278295)
0
 
LVL 31

Expert Comment

by:Cláudio Rodrigues
ID: 33543122
Well they can for example print stuff. So you should disable that.
The reality is they can always do PRINT SCREEN if they really want to steal information. Cumbersome, yes, it is. But can be done.

Cláudio Rodrigues
Microsoft MVP - Remote Desktop Services
Citrix CTP
0
 

Author Comment

by:zen_68
ID: 33561921
hmmmm...looking for a bit deeper info.
0

Featured Post

Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Case Summary: In this Article we introduce the new method to configure the default user profile using Automated profile copy with sysprep rather than the old ways such as the manual copy of a configured profile to default user profile Old meth…
1. Boot PC and press F10, select storage options and change the compatibility from “AHCI” to “IDE”, save and exit 2. Boot PC and press F12 3. Upon PXE display of searching for DHCP server, press Pause break to obtain MAC address 3. Open Configu…
In this video, viewers are given an introduction to using the Windows 10 Snipping Tool, how to quickly locate it when it's needed and also how make it always available with a single click of a mouse button, by pinning it to the Desktop Task Bar. Int…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question