Remote Control Security
Remote control must be done through the network. The local computer is the issuing end of the manipulating instruction, which is called the controlling end or the client. The non-local controlled computer is called the controlled end or the server end. "Remote" is not the same as long distance. The master and the controlled end can be in the same room in the same local area network, or they can be two or more computers connected to the Internet at any location.
application:
A computer system technical service engineer or manager can configure, install, maintain, monitor, and manage a remotely controlled target maintenance computer or a network system that requires maintenance and management. This solves the problem that service engineers must be able to solve in the field. It greatly reduces the maintenance cost of computer application systems, minimizes user losses, and achieves high efficiency and low cost.
Example: More and more companies have a special liking for remote control for various reasons. The bosses like to be able to check the operation of the company's equipment anytime, anywhere, such as how much production, how much electricity today, but also because of the current economic form, some companies like remote maintenance, monitoring plc, PC and so on! Under such circumstances, remote control has become more and more influential to our lives. However, when it comes to remote control, there are still many people who are worried about viruses and worry about Trojans. They worry that remote control software has done a back door. Computers were illegally invaded, resulting in many important security issues such as theft or loss of important data.
harm:
In the case of illegal remote control software distributed in the form of virus replication, the Trojan virus type is common.
1. Conventional remote control software and Trojans use a client to control the server through the network. The console can be a WEB, a mobile phone, or a computer. It can be said where the control end is embedded and where it can become a client. The same is true for the server;
2. Conventional remote control software and Trojans can perform remote resource management, such as file upload and download modification;
3. Conventional remote control software and Trojans can perform remote screen monitoring, keyboard logging, process and window viewing.
1. Trojans are destructive: such as DOS attacks, downloader functions, formatting hard drives, broilers, and proxy functions;
2. Trojan hidden: The most significant feature of the Trojan is the concealment, that is, the server is hidden, is not displayed on the accused's desktop, is not perceived by the accused, this will undoubtedly increase the risk of Trojans, It also provides a convenient way for Trojans to steal passwords.
Summary: Remote control and Trojans are very similar in function. Trojans can be understood as remote control software with malicious functions. In addition, the remote control for enterprise management should be benign, the server is visible, otherwise it is not much different from the Trojans, you know, many harmful operations, such as delete files, keyboard records, not just Trojans privilege.
Precaution:
1. We can choose the software provided by regular service providers so that we can prevent viruses! For example, Siemens wincc's mobile client has a high level of network security!
2. Peer-to-peer authorization mode, in which the remote party sends a remote control request, and remote assistance functions such as QQ, MSN, NetMeeting, etc. belong to this type of application.
3, based on the authorization code or license file access mode, in the case of the other party authorized to conduct secure remote access and control, the main feature is that the remote control does not require the other party to click the confirmation, suitable for remote unattended application scenarios . The old PCAnywhere, KDT, Association XT800, and Windows Remote Desktop all use this approach;
4, centralized licensing model, one-time authorization, long-lasting, the management side can access any computer that has been authorized at any time. This is particularly suitable when the maintenance of the terminal machine is large. For example, companies do remote monitoring and maintenance of internal employees' computers or servers.