Remote Desktop - Security Hole?

[airbourne]

We have recently upgraded to a windows 2000 server environment, with some 2003 member servers and XP clients. I have discovered the Remote Desktop feature and I love it. One of the other admins here is stonewalling me on trying to implement it. I have the same permissions company wide, so the IT director would be the final decision.

This other admin alludes to "security holes" but cannot provide specifics. If there are any admins out there that can possibly enlighten me. I really like the tool and want to use it over the pokey DAMEWARE, but I don't want to create a sceurity hole. Is it just they don't like change, or is this really a hole?

I use all the MS tools for network administration, such as Active Directory and other handy tools, so I have no need for DAMEWARE. I ask that the responses please be limited to security hole concerns with either DAMEWARE or the XP REMOTE DESKTOP.

Thanks.

 

[theoxyde]

Remote desktop is just Terminal Server with newer packaging. As long as permissions are set up properly and TS/RD isn't exposed outside the firewall, I am unaware of any major security issues.

 

[airbourne]

If the only local user account is the local admin and guest is disabled, and we do not ADD any remote access, then the only accounts able to use this feature are the local admin and domain admins, correct?

 

[theoxyde]

Sounds about right.