Leaving RDP ports open is a notorious security risk, especially if they're on the default 3389. Without an explicit mention to limit remote access, our docs may encourage users to add a security rule with a 0.0.0.0 CIDR. At the worst this could mean compromised VMs, or at the very least an annoying email from IU's information security office.
jlf599
commented
1 year ago
Leaving RDP ports open is a notorious security risk, especially if they're on the default 3389. Without an explicit mention to limit remote access, our docs may encourage users to add a security rule with a
0.0.0.0CIDR. At the worst this could mean compromised VMs, or at the very least an annoying email from IU's information security office.