Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 58
  • Last Modified:

Substitutes for Rdp (to remote from Windows to Linux)

Can anyone suggest any freewares that enables Windows users to 'Rdp' into a
Linux (say RHEL or Ubuntu)?

Ideally it
a) supports encryption &
b) allows me to do copy/paste between the Windows & the Linux
0
sunhux
Asked:
sunhux
  • 6
  • 3
  • 2
  • +1
4 Solutions
 
Neil RussellTechnical Development LeadCommented:
Linux with X windows on it or to a command shell?
If running X windows then an X11 client on windows.
If to the command prompt then putty.exe and use ssh to connect.
0
 
TechieMDCommented:
x2go is probably your best bet. The link provided gives detailed installation and configuration instructions as well.
0
 
ArneLoviusCommented:
There is a free X11 server for windows xming http://www.straightrunning.com/XmingNotes/

X11 over SSH is as secure as SSH (very)

However, I also use xrdp http://www.xrdp.org/ to provide access to a Linux desktop over RDP using just the native RDP client on Windows, and will usually have better performance in a WAN environment.

VNC is another option
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
sunhuxAuthor Commented:
My intention is to set up a Linux laptop/PC in each dept so that users in each
dept could remote into their respective dept's Linux to browse Internet.

We have been hit by ransomware & malwares when users' Windows PCs
browse internet or they click on URL given in the email.

Not command prompt as don't want users to fiddle with Unix commands.
Thanks for the solutions;  ideally once user remote into the Linux, they
can auto launch a browser or they can paste the URL from their Windows
Outlook email into the browser.

Thing is I'm concerned with files transfer from the Linux back to their
Windows esp if the files downloaded are 'infected'
0
 
ArneLoviusCommented:
A nice idea, but how will you stop people from just running a browser on their own computer ?

The better solution is to reduce your attack surface.

Do any of your users run as Local Admin ? or Power Users ?

What anti-virus/ant-malware do you run ?

Have you looked at solutions such as cryptoprevent ?

have you thought about reversing your idea, have everyone with Linux desktops and access a locked down RDS server for Windows applications ?
0
 
Neil RussellTechnical Development LeadCommented:
"A nice idea, but how will you stop people from just running a browser on their own computer ?"

Block port 80/8080/443 etc from EVERYWHERE except allowed machines maybe?
0
 
sunhuxAuthor Commented:
>how will you stop people from just running a browser on their own computer ?
Yes, block the 3 ports or we use our proxy to block users & only a few selected
'highly' trusted sites could be allowed.

PCs/laptops that access prod servers are blocked completely from accessing Internet

Our users don't hv Admin nor Power Users rights
0
 
sunhuxAuthor Commented:
Thing is there is very much less malwares & crypto that run on Linux:
I have 2 ex-colleagues who run their laptops on RHEL while a couple of
kids on MAC OSX : they never need to have any AV on their laptops
& never get into AV issues even though the kids use their MACs to
watch movies at  highly malicious sites like gooddrama.net

Fireeye also told me in their IOC assessment & engagement, they only
look at Windows : I've personally seen malwares/viruses uploaded to
UNIX/RHEL servers but they do nothing there as they can't execute
nor exploit
0
 
sunhuxAuthor Commented:
> malwares/viruses uploaded to UNIX/RHEL servers
I mean malwares/viruses that attack Windows but not UNIX
0
 
sunhuxAuthor Commented:
> The better solution is to reduce your attack surface.
We have been using a top-brand proxy that auto-updates malicious sites from
their intelligence site, plus a Network IPS (from a top vendor) plus AV in our
PCs/laptops : still get infected
0
 
sunhuxAuthor Commented:
Users using Linux Desktop : I'm afraid that's too big a change for them:
they are used to MS Office & Outlook & some their apps clients
(like SAP & Citrix etc etc).

For tech/IT staff, maybe but not for users
0
 
ArneLoviusCommented:
sounds like your firewall is capable

if you're still seeing infections when people are not local admins, and you have a filtering proxy and AV, then I would suggest that one or both is not configured correctly, I not infrequently see AV installed, but effectively not working, the most frequent is people that whitelist directories (or the whole C: drive)  "for performance"...
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 6
  • 3
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now