LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices

Reply
 
Search this Thread
Old 12-04-2009, 12:04 PM   #1
mlev
LQ Newbie
 
Registered: Dec 2009
Posts: 10

Rep: Reputation: 1
Question rdesktop to secure Win server (using SSL certs)


Getting connection reset or time out when trying to rdesktop to a Win2003 server that has been upgraded to use SSL for server authentication. (See http://technet.microsoft.com/en-us/l...10(WS.10).aspx). Works fine connecting to other Win2003 servers, just not the secured ones.

I'm using Rdesktop version 1.6.0 on Linux Fedora and also SUSE. To connect to the secure servers, Windows clients use the updated RDP client - version 5.2.

As a workaround, I attempted to set up an SSL tunnel for rdesktop but wasn't successful in connecting through that either:
ssh username@10.10.10.10 -L 1024:winserver.work.org:3389

rdesktop localhost:1024

Has anyone been able to use rdesktop to connect to a win server that has been configured to use SSL server authentication for RDP connections?

Last edited by mlev; 12-04-2009 at 12:11 PM.
 
Old 12-04-2009, 12:23 PM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,414

Rep: Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966
SSH isn't SSL, that's not an SSL tunnel you're creating. AFAIK, rdesktop doesn't support ssl, so is never going to connect to an SSL socket. I don't know in what what SSL is being used, but if you are able to use a generic SSL tunnel, try stunnel in a similar way you're using SSH, but connecting directly the 3389.
 
Old 12-04-2009, 01:10 PM   #3
uteck
Member
 
Registered: Oct 2003
Location: Elgin,IL,USA
Distribution: Sidux, LinHES, and Mythbuntu
Posts: 209

Rep: Reputation: 32
Have you tried the -E option?
-E Disable encryption from client to server. This sends an encrypted login packet, but everything after this is unencrypted (including interactive logins).
 
Old 12-04-2009, 02:04 PM   #4
mlev
LQ Newbie
 
Registered: Dec 2009
Posts: 10

Original Poster
Rep: Reputation: 1
Thank you for the fast assistance.

acid_kewpie: Yes, that makes sense -- I need an SSL connection, not SSH. I will test stunnel ... need to read up on it a bit to get it configured correctly.

uteck: rdesktop -E would not connect.

I have located other requests, on the web, for a linux remote desktop client that is equivalent to the updated RDP 5.2 client for XP, capable of connecting to Windows servers that use TLS/SSL server authentication. (see http://ubuntuforums.org/archive/index.php/t-310813.html) It seems that rdesktop in itself does not include TLS/SSL support.

HOBlink jwt for Linux may be a possibility.
 
  


Reply

Tags
rdesktop


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
rdesktop to MS server that uses SSL server authentication? mlev Linux - Software 0 12-04-2009 11:56 AM
SSL certs watcher69b Linux - Security 2 03-28-2009 10:34 AM
SSL certs/keys location BEBigBear Linux - Security 6 01-04-2009 09:03 AM
Installing SSL Certs on Server with Apache2 over CentOS Arty Ziff Linux - Newbie 3 01-02-2009 03:31 AM
multiple ssl certs, single apache server? hank43 Linux - Software 0 01-26-2005 04:56 PM


All times are GMT -5. The time now is 12:14 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration