Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

In the several decades since, nothing has stopped them from coming out with a "RDP v2."

I trust SSH to be public-facing. Don't have the right private key? Pound sand. You're not getting in.

I trust RDP to allow someone to break into my machine, get admin privileges, and infect / bot it, likely in under an hour.

Smart cards rolls eyes



Smart cards is just certificate-based authentication really.

Microsoft did indeed fail hard - if they just made certificate authentication easy to configure on stand-alone machines like SSH key authentication is (and allow to keep the key as a file if desired, instead of in a smart card), a lot of pwnage would've been avoided.


You can set up RD Gateway to leverage MFA.

https://learn.microsoft.com/en-us/entra/identity/authenticat...


That’s why you have an vpn or the rdp gateway instead of exposing the machines directly to internet.


Iirc you can enable Remote Desktop and block public access and connect over an SSH tunnel. Newer versions of Windows include an SSH server.




Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: