GIAC Security Essentials Certification (GSEC) — Question 44

Which of the following is NOT a recommended best practice for securing Terminal Services and Remote Desktop?

Answer options

• A. Require TLS authentication and data encryption whenever possible.
• B. Make sure to allow all TCP 3389 traffic through the external firewall.
• C. Group Policy should be used to lock down the virtual desktops of thin-client users.
• D. Consider using IPSec or a VPN in addition to the RDP encryption if you are concerned about future RDP vulnerabilities.

Correct answer: B

Explanation

The correct answer is B because allowing all TCP 3389 traffic through the external firewall poses a security risk by exposing the Remote Desktop Protocol to potential attacks. In contrast, options A, C, and D are all recommended practices that enhance security by ensuring encrypted connections and limiting access.