Since the days of Vista and Windows 2008 Microsoft has provided a new mechanism for securing RDP connections with what they call Network Level Authentication, this uses Microsoft CredSSP Protocol to authenticate and negotiate credential type before handing off the connection to RDP Service.ĬredSSP first establishes an encrypted channel between the client and the target server by using Transport Layer Security (TLS). The protocol has seen a work in 2011 that abused week passwords and it’s features to copy files and infect other machines and now in 2012 there is a remote code execution bug in the protocol it self. Recently there has been a lot of attention given to the Remote Desktop Protocol for attacker.
0 Comments
Leave a Reply. |