Question. For remote headless Windows servers which can only be accessed internally by specific people via RDP, is there really an added security benefit for locking the session after the "standard" 1

misterchief117@kbin.social to

Infosec@kbin.social · 1 year ago

Question. For remote headless Windows servers which can only be accessed internally by specific people via RDP, is there really an added security benefit for locking the session after the “standard” 15 minutes? Going back to the lock screen doesn’t prevent RDP session hijacking if someone really wanted to do that.

Not only do we work remotely the majority of the time, our work computers already lock after 15 minutes of being idle.

Am I missing something here?

#infosec

You must log in or register to comment.

Chat

Infosec@kbin.social

infosec@kbin.social

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !infosec@kbin.social

This magazine is dedicated to discussions on cybersecurity, network security, and information security. Whether you are an IT professional, a cybersecurity enthusiast, or simply concerned about online privacy and security, this is the place for you. Here you can share your knowledge, ask for advice, and discuss the latest news and trends in the world of cybersecurity. From encryption and malware to risk management and digital forensics, this category covers a wide range of topics related to information security. Join the conversation and let’s work together to keep our online world safe and secure.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

1 user / day
1 user / week
1 user / month
47 users / 6 months
37 local subscribers
35 subscribers
135 Posts
22 Comments
Modlog

mods: