Is it safe to use remote access tools to grant system access?

In this SearchSecurity.com Q&A, security expert Joel Dubin discusses remote access tools and examines whether or not these products can have negative effects.

Joel Dubin

Will using a remote access control product have any effect on Windows file permissions or shares? Does remotely logging on to a server (via a remote access control tool) give users the same rights/permissions as having physical access to the server? Can files on that server be altered?

Remote access tools have no effect on Windows file permissions and shares. Users will have the same rights and permissions as if they were physically in front of the machine and, yes, files can be altered.

There are two types of tools for remote access -- software tools and hosted services. Software tools require the...

Step 2 of 2:

You forgot to provide an Email Address.

This email address doesn’t appear to be valid.

This email address is already registered. Please login.

You have exceeded the maximum character limit.

Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

application to be installed on both the host and remote computers. These include Symantec Corp.'s pcAnywhere, the open-source RealVNC and Windows Remote Desktop.

Hosted services, on the other hand, are subscription-based. After registering the host computer, the user logs onto the service's Web site to access their host computer from any browser in any location. Since hosted services are Web-based, they don't require the installation of software on the remote computer. Hosted solutions include GoToMyPC and LogMeIn.

The whole point of these tools, whether they are software- or Web-based, is to provide complete system access from multiple locations. For security, hosted services use SSL, and software tools can use various authentication schemes to prevent unauthorized access.

Beyond that, the best advice is to use the same protection for your Windows files and shares as you would if you had physical access to the machine. Set rights and permissions locally on files to the levels you require, and permit access only to approved groups and individuals.

For more information:

Learn the best practices for securing remote access endpoints with this five-point strategy.

In this Q&A, find out how enterprise single sign can provide authentication for remote logons.

This was last published in July 2007

Windows IIS server hardening checklist

Learn to set up and use PowerShell SSH remoting

Same-origin policy: How did Adobe Flash Player's implementation fail?

Sharing is caring: Sharing VMs in VMware Workstation 12

Please create a username to comment.

Prevent cloud account hijacking with 3 key strategies

Security for SaaS applications starts with collaboration

An inside look at the CCSP cloud security cert

Teleworkers need enhanced home internet access in the US

5G network security concerns and how to prepare for them

Network monitoring market converges with security analytics

5 blockchain use cases in finance that show value

What CIOs need to know about hardening IT infrastructure

Enterprise architect job still requires IT in critical role

Microsoft updating look, features in Outlook for macOS

Evaluate if Chromebooks are secure enough for business use

Set up Windows Remote Desktop on a Mac device

How public cloud vendors tackle confidential computing

An introduction to Alibaba cloud offerings

The cloud shared responsibility model for IaaS, PaaS and SaaS

VMware wants to decouple the telco technology stack

Skoda Auto transforms network infrastructure to accelerate business growth

Julian Assange would be held with convicted terrorist Abu Hamza in supermax prison, court hears

Related Resources

Dig Deeper on Secure remote access

Windows IIS server hardening checklist

Learn to set up and use PowerShell SSH remoting

Same-origin policy: How did Adobe Flash Player's implementation fail?

Sharing is caring: Sharing VMs in VMware Workstation 12

Related Q&A from Joel Dubin

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.