5
I recently purchased an iPhone and downloaded the RDP Lite application, which allows me to remote into my home computer. Typically, I've always used LogMeIn for remoting and always had the built-in Windows option disabled.
Now, what's to stop someone from running some sort of brute-force login attack on the administrator account of my machine? Are there safeguards in place to prevent this?
John Rasch
Posted 2009-07-23T19:45:56.553
Reputation: 316
5
Here's a good document on some of the attacks and mitigations. It's a bit dated, but interesting. In addition to changing your port, you should also change the name of your Administrator account and set up a honey pot dummy account.
JP Alioto
Posted 2009-07-23T19:45:56.553
Reputation: 6 278
2
Make sure that you're using a secure password.
Change the default RDP port on your computer from 3389 to something different. That can make it less obvious that your RDP port is open.
Rename the Administrator account (link for XP)
Chris Thompson
Posted 2009-07-23T19:45:56.553
Reputation: 4 765
Nice document, even shows the tool he's using to perform the attacks – John Rasch – 2009-07-23T20:02:57.200