Administrator access, your FlashRDP server is as secure as you make it. Luckily, securing your Windows Windows RDP only takes a few minutes. Here are the three most important things you should do right after logging in.
Change the Default RDP Port
By default, RDP uses port
3389. Bots scan this port constantly. Changing it to a custom port (like 49152) drops brute-force attempts to near zero.- Open PowerShell as Administrator.
- Run this command, replacing
49152with any number between 1024 and 65535:
- Allow your new port through the Windows Firewall:
- Restart your FlashRDP server from the control panel. When connecting next time, add the port to your IP (e.g.,
192.168.1.50:49152).
Create a New User and Disable 'Administrator'
Bots always try to log in using the username
Administrator. If you disable that account entirely, their attacks will fail instantly.- Open Computer Management > Local Users and Groups > Users.
- Right-click in the empty space and select New User. Give it a unique name (e.g.,
MaxTech) and a strong password. - Right-click your new user, select Properties > Member Of, and add them to the
AdministratorsandRemote Desktop Usersgroups. - Log out, log back in with your new user, and then right-click the default
Administratoraccount to disable it.