adam's notes

Other Remote Access Tools

Enterprise monitoring suites are designed for environments with large numbers of hosts.

Other protocols and software tools are available for accepting incoming connections to non-Windows devices and can be more suitable for management of SOHO networks:

Screen-sharing Software

Third party alternatives to MSRA/QuickAssist:

  • TeamViewer
  • LogMeIn

How it Works

  • Designed to work over HTTPS TCP/443 across internet
    • secure because connection is encrypted
    • easier to implement because it does not require special firewall rules
  • Some are installed locally, others can be executed non-persistantly
  • user grants access to a helper by giving them a PIN code generated by the local software installation

Weakness

Social engineering attacks to get access.

Remedy:

  • in enterprise environment, use a specific out-of-band verification method for users to confirm they are being contacted by authorized techinician

Video-conferencing Software

  • E.g., Microsoft Teams, Zoom
  • usually includes a screen-share client
    • some allow participants to be granted control of the share
  • can be configured to share a single window or whole desktop
  • share has the privileges of the signed-in user
    • so apps cannot perform administrative-level configuration
    • useful for demonstrating a task or observing the user while reproducing a support issue

File Transfer Software

  • Setting up a network file share can be relatively complex
  • Consequently, OS vendors have developed other types of file transfer software:

AirDrop

  • supported by Apple iOS and macOS
  • uses Bluetooth to establish a Wi-Fi Direct connection between the devices for the duration of the file transfer
  • connection is secured by the Bluetooth pairing mechanism and Wi-Fi encryption

Nearby Sharing

  • Microsoft’s version of AirDrop
  • introduced in Windows 10 (1803)

Nearby Share

  • Bluetooth-enabled sharing for Android devices

Virtual Private Networks

  • Remote desktop or SSH establishes a connection to a single host over the network
  • a virtual private network (VPN) establishes a tunneled link that joins your local computer to a remote network

Important

VPN could be used as an additional layer of security

  • E.g., you could establish a VPN link and then use remote desktop to connect to a host on the private network
    • This avoids having to open remote desktop ports on the network’s firewall

Graph View

Backlinks