8 Dec
2013
8 Dec
'13
midnight
On Dec 9, 2013, at 1:33 AM, Nathan Mercer
If you really want to expose RDP natively on the internet without a VPN, Some best practices here: Rename administrator account Create another account you are actually going to use Consider changing the default RDP port 3389 (hardly security here as its still easy to find) Enforce encryption RDP using TLS Enforce NLA (Network Level Authentication)
This is asking for a DDoS as all the various bots find your box and start hammering away at it . . .
;>
RDP simply shouldn't be exposed to the Internet.
-----------------------------------------------------------------------
Roland Dobbins