{"id":443,"date":"2009-06-27T23:05:12","date_gmt":"2009-06-27T17:35:12","guid":{"rendered":"https:\/\/www.qadit.com\/blog\/?p=443"},"modified":"2009-06-27T23:05:12","modified_gmt":"2009-06-27T17:35:12","slug":"10-steps-to-secure-remote-access-software","status":"publish","type":"post","link":"https:\/\/qadit.com\/blog\/10-steps-to-secure-remote-access-software\/","title":{"rendered":"10 Steps To Secure Remote Access Software"},"content":{"rendered":"<p>Remote access software has many useful areas of application like internal IT support, vendor support for software \/ hardware, accessing office computer from home pc, webinars, etc. However, remote access usage comes with a plethora of security concerns. In this article, I am enlisting some of the basic security measures to be taken by users of remote access software to protect their information assets.<!--more--><\/p>\n<ol type=\"1\">\n<li>Administrator account name in the host (remote) computer      should be changed from the default name.<\/li>\n<li>Default and unused user accounts in the host computer      should be disabled.<\/li>\n<li>Account password complexity and account lockout for      unsuccessful logon attempts should be configured on the host computer.<\/li>\n<li>When the client computer tries to access the host      computer, the remote access application should prompt for a password.      Password may be changed after every remote usage.<\/li>\n<li>Strong encryption (128 bit key) should be enabled for      remote desktop sessions. Remote connections should be tunneled through      secure encrypted protocol such as SSL or SSH. This protects the users from      man-in-the-middle attacks.<\/li>\n<li>Access to host computer should be restricted through IP      filtering (i.e. only specified IP addresses can access the host computer)<\/li>\n<li>Event viewer logs should be enabled and monitored      frequently to check if anyone is trying to log in. Firewall logs too can      be reviewed to check who have accessed the host computer.<\/li>\n<li>Most client side software (module residing on the computer      which accesses the remote computer) have a feature to save entered      passwords. This feature should never be used.<\/li>\n<li>In Windows OS, remote access software needs &#8220;Terminal      Services&#8221; \/ &#8220;Remote Desktop Services&#8221; to be running. Users may set these      services (Start &gt; Control Panel &gt; Administrative Tools &gt;      Services) to manual and start the service whenever needed. These services      may be stopped or disabled when not in use.<\/li>\n<li>Physical security measures available for the host computer      should be made available to the client computer.<\/li>\n<\/ol>\n","protected":false},"excerpt":{"rendered":"<p>Remote access software has many useful areas of application like internal IT support, vendor support for software \/ hardware, accessing office computer from home pc, webinars, etc. However, remote access usage comes with a plethora of security concerns. In this article, I am enlisting some of the basic security measures to be taken by users &hellip; <\/p>\n<p class=\"link-more\"><a href=\"https:\/\/qadit.com\/blog\/10-steps-to-secure-remote-access-software\/\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;10 Steps To Secure Remote Access Software&#8221;<\/span><\/a><\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false},"version":2}},"categories":[13],"tags":[51,29,56,33],"class_list":["post-443","post","type-post","status-publish","format-standard","hentry","category-network","tag-information-security","tag-qadit","tag-remote-access","tag-security"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9AH7Q-79","_links":{"self":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts\/443","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/comments?post=443"}],"version-history":[{"count":0,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts\/443\/revisions"}],"wp:attachment":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/media?parent=443"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/categories?post=443"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/tags?post=443"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}