Originally Posted by
oneant
Although, that kind of "hacking" relies on a lack of technical knowledge of the user, much like phishing. If you're careful and pay attention to what you're connecting to and what's going on, you're pretty safe.
How so?
Truly I am not trying to go tit for tat, I want to try and understand where you are coming from and what I might be missing.
If someone is executing a man in the middle attack on you, you will not know it. So no amount of caution will prevail.
I am very pragmatic about security, but personally I think thats the point of security. Anything less is just risk and its up to each person to decide how acceptable that risk is. But to make that decision, you have to be well informed. I dont want people thinking that Remote Desktop (or VNC for that matter) is a totally secure solution, when it in fact it is quite flawed. Now that said, people may look at everything and say "well, I dont want to get involved in a VPN setup, I understand that someone can easily get my remote desktop password but I'm willing to accept that" the at least they are making a relatively informed decision.