RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.
Bug 1075697 - rdesktop cannot connect to systems using RDP version 6 or newer
Summary: rdesktop cannot connect to systems using RDP version 6 or newer
Keywords:
Status: CLOSED WONTFIX
Alias: None
Product: Red Hat Enterprise Linux 6
Classification: Red Hat
Component: rdesktop
Version: 6.5
Hardware: All
OS: Linux
medium
medium
Target Milestone: rc
: ---
Assignee: Ondrej Holy
QA Contact: Desktop QE
URL:
Whiteboard:
Depends On:
Blocks: 1075802 1172231
TreeView+ depends on / blocked
 
Reported: 2014-03-12 15:34 UTC by Joe Wright
Modified: 2018-12-05 17:39 UTC (History)
6 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2015-10-08 11:44:34 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)

Description Joe Wright 2014-03-12 15:34:09 UTC 
Description of problem:
rdesktop is unable to connect to systems using RDP version 6 or newer

Version-Release number of selected component (if applicable):
rdesktop-1.7.1-1.el6.x86_64

How reproducible:
- At will

Steps to Reproduce:
1. Configure Windows 7, 8, server 2008 or server 2012 to allow remote desktop connections, using default settings (or any version of windows that require RDP v6 or newer). This should be the radio button with the following text: "Allow connections only from computers running Remote Desktop with Network Level Authentication (more secure)"
2. Configure users allowed to connect to the system (Administrator should be enabled by default, assuming the Administrator account is not disabled)
3. Attempt to connect to the Windows system using rdesktop


Actual results:
- Receive the following error message:
 "ERROR: recv: Connection reset by peer"


Expected results:
-Establish remote graphical console session to the Windows system.

Additional info:
- rdesktop will work if the radio button with the text "Allow connections from computers running any version of Remote Desktop (less secure)." This is because the Windows system is allowing connections from clients using any version of RDP

- This has also been tested using an upstream version of rdesktop acquired from repoforge.org (http://pkgs.repoforge.org/rdesktop/   package: rdesktop-1.8.1-0.1.el6.rfx.x86_64) This package produces the following error:
"Failed to connect, CredSSP required by server."
Comment 2 Tomas Pelka 2014-03-12 17:41:31 UTC 
Joe,

would be possible to try freerdp (xfreerdp binary) which should be a (better) replacement for rdesktop introduced in rhel6.5?

Tom
Comment 3 Joe Wright 2014-03-12 20:56:51 UTC 
Tom,

That alternative has been recommended, however there is no clear notification that rdesktop is being or planning to be deprecated in favour of xfreerdp. AFAIK rdesktop is not available in RHEL 7 BETA, which also has xfreerdp, but I don't want to pass judgement on rdesktop based on this alone.

From what I've looked at in upstream, there's requests for RDPv6.x support, however information on whether or not upstream is going to move forward with it is very unclear.

What's specifically needed is some clarity on the future of rdesktop. If we continue to support it: something definitive that rdesktop will never support RDPv6.x, or add support; if not, something official that it's being deprecated in favour of xfreerdp.

-Joe
Comment 4 Tomas Pelka 2014-03-13 06:46:35 UTC 
(In reply to Joe Wright from comment #3)
> Tom,
> 
> That alternative has been recommended, however there is no clear
> notification that rdesktop is being or planning to be deprecated in favour
> of xfreerdp. AFAIK rdesktop is not available in RHEL 7 BETA, which also has
> xfreerdp, but I don't want to pass judgement on rdesktop based on this alone.
> 
> From what I've looked at in upstream, there's requests for RDPv6.x support,
> however information on whether or not upstream is going to move forward with
> it is very unclear.
> 
> What's specifically needed is some clarity on the future of rdesktop. If we
> continue to support it: something definitive that rdesktop will never
> support RDPv6.x, or add support; if not, something official that it's being
> deprecated in favour of xfreerdp.
> 
> -Joe

I see your point, lets ask Kevin.
Comment 13 Ondrej Holy 2015-10-08 11:44:34 UTC 
Freerdp was added in RHEL 6.5 exactly from this reason (Bug 951696). Rdesktop lacks support for newer protocol versions and rdesktop upstream is almost dead. Freerdp is a replacement for rdesktop in RHEL 7. Please use freerdp if you need RDP 6 features...
Comment 14 Paul Stauffer 2015-10-09 13:53:20 UTC 
Can someone provide an explanation for why this bug was closed WONTFIX?  Comment 3 was seeking clarity on the future of rdesktop. Was it decided to formally deprecate it in favor of xfreerdp?  Has upstream stated that it will never support RDP6?  Some details here would be helpful.
Comment 15 David Tonhofer 2016-01-12 12:22:02 UTC 
Additional notes if someone drops by:

Running rdesktop to W2012R2 from Fedora 23 (rdesktop-1.8.3-2.fc23) gives the "Failed to connect, CredSSP required by server." message.

CredSSP == Credential Security Support Provider, a provider for the Windows SSP (basically, its the PAM?)

  * https://en.wikipedia.org/wiki/Security_Support_Provider_Interface
  * https://msdn.microsoft.com/en-us/library/windows/desktop/bb931352%28v=vs.85%29.aspx

A short intro on why this thing:

  * https://www.virtuesecurity.com/blog/enable-network-level-access-windows-rdp/

At 

http://sourceforge.net/p/rdesktop/support-requests/198/ 

we read:

------
The server requires CredSSP and there are two options were the first option is the easy way,

1) Downgrade security on Windows server to accept SSL/TLSv2

2) Make sure to initialize a kerberos ticket to be able to connect using CredSSP. There are a lot of guides out there how to do configure a linux kerberos client for Windows Active Directory.

Kind Regards,

Henrik Andersson
------

I have no idea on  how to do (2) but package "freerdp" which provides "xfreerdp" seems to work for me.

Manual at

https://github.com/awakecoding/FreeRDP-Manuals/blob/master/User/FreeRDP-User-Manual.markdown

Otherworldy Windows command line syntax: 

xfreerdp /v:$SERV:$PORT /size:1920x1080 /u:$USER /p:$PASS /compression
Comment 16 Ondrej Holy 2016-01-12 13:23:23 UTC 
Sorry, I made Comment 13 private by mistake. The comment contains explanation why I closed the bug.

Credssp requires libgssglue library which is deprecated upstream and thus it doesn't make sense to port credssp functionality...
Note You need to log in before you can comment on or make changes to this bug.