<div>
Thanks. &nbsp;I guess logmein has the same issues (only a risk if you transfer files?)<br />
<br />
Mike
</div>


Thanks.  I guess logmein has the same issues (only a risk if you transfer files?)

Mike

<div>
Glad to hear that about logmein. &nbsp;I've always hoped that a virus/wormed person I was logmein'd &nbsp;into could not harm me.
</div>


Glad to hear that about logmein.  I've always hoped that a virus/wormed person I was logmein'd  into could not harm me.

<div>
Thanks everyone!<br />
<br />
I'm glad that our VPN approach, only allowing the RDP port, seems safe!<br />
<br />
Mike
</div>


Thanks everyone!

I'm glad that our VPN approach, only allowing the RDP port, seems safe!

Mike

<div>
<div class="content wysiwyg-content">
Can a virus-infected XP laptop harm our network via VPN if we only allow RDP port from the VPN subnet?<br />
<br />
We have a user who has declared his intent to use XP even after microsoft ends support for XP. &nbsp;Because he has never gotten a virus, he isn't worried. &nbsp;<br />
<br />
He said we shouldn't worry about him because we only allow RDP from our VPN subnet to the rest of the network. &nbsp;So, even if he had a virus or worm, it can't affect us.<br />
<br />
THOUGHTS?<br />
<br />
Thanks,<br />
Mike
</div>
</div>


Can a virus-infected XP laptop harm our network via VPN if we only allow RDP port from the VPN subnet?

We have a user who has declared his intent to use XP even after microsoft ends support for XP.  Because he has never gotten a virus, he isn't worried.  

He said we shouldn't worry about him because we only allow RDP from our VPN subnet to the rest of the network.  So, even if he had a virus or worm, it can't affect us.

THOUGHTS?

Thanks,
Mike

RDP-only VPN safe from virus?

A virtual private network (VPN) is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or travelling users access to a central organizational network securely. VPNs encapsulate data transfers using secure cryptographic methods and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.

Remote access may refer to the connection to a data-processing system from a remote location, for example through a virtual private network remote desktop software, terminal emulation, or the activation of features of a business telephone system from outside the business's premises.

Remote Access

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.