, Sven Groot wrote

*snip*

Actually, RDP does not allow any access for any account that does not have a password or is not an administrator (non-administrators must be allowed explicitly).

That's good to hear. I don't tend to use RDP, but certainly disabling the guest account and ensuring that all accounts have good passwords is good practice for other scenarios such as people being able to walk up to your machine and immediately log in (this is the case, for example, if someone burgles your house and your machine is still on - say, because you're at work and your machine is on so you can RDP to it Smiley)