New security warnings in Windows

Microsoft has updated its Remote Desktop security mechanism. Now, when opening RDP files, users are shown more detailed warnings and gain greater control over access to device resources.

❓ Which permissions are now controlled

The key change is that most sensitive permissions are now disabled by default and require explicit user approval. This applies to mechanisms that redirect local resources into a remote session. After the update, the following resources are user-controlled: 🟠file system; 🟠clipboard; 🟠devices (printers, USB devices, smart cards); 🟠audio and video devices.

⚙️ How protection works now

When an RDP file is opened, the system displays a list of requested permissions. Even if these are specified in the file itself, they are not enabled automatically. The user must manually confirm which resources they are willing to share with the remote system.

The system also clearly distinguishes RDP files based on publisher trust level.

If the file is signed, the user will see the name of the organization or developer, which can be verified against a valid signing certificate.

If the signature is missing or cannot be validated, the file is treated as coming from an unverified publisher. In this case, the system displays a warning about an unknown source, emphasizing that it is not possible to confirm who created or modified the file.

💬 Discuss