I have been exploring using SSH as the protocol to access a Remote Desktop Application for my customers. Every time I ask someone what the disadvantages or risks are, I get a long winded response that usually does not make sense to me. Here is my proposed scenario:
Terminal Services box with SSH Server on it (or possibly on another box). Clients will use freeware SSH client to tunnel RDP through to the SSH Server which will forward it to the Terminal Services box on the same machine. Some of the SSH clients have the ability to embed an encrypted UserName/Password in the client profile, that only the admin (me) would know. So they would need that profile file (essentialy like a certificate I think) plus a UserName/Password to access Remote Desktop.
I am trying to accomplish several goals:
Keep costs down and keep it simple
We have tried other solutions like SSL VPN or IPSec VPN etc, but each has it's drawbacks (too complex, too many extra machines to maintain etc.)
This SSH thing sounds too good to be true. Is it and why?
Please advise...
Thanks in advance!!!
Terminal Services box with SSH Server on it (or possibly on another box). Clients will use freeware SSH client to tunnel RDP through to the SSH Server which will forward it to the Terminal Services box on the same machine. Some of the SSH clients have the ability to embed an encrypted UserName/Password in the client profile, that only the admin (me) would know. So they would need that profile file (essentialy like a certificate I think) plus a UserName/Password to access Remote Desktop.
I am trying to accomplish several goals:
Keep costs down and keep it simple
We have tried other solutions like SSL VPN or IPSec VPN etc, but each has it's drawbacks (too complex, too many extra machines to maintain etc.)
This SSH thing sounds too good to be true. Is it and why?
Please advise...
Thanks in advance!!!
