The LockerGnome article links to a article on Microsoft.com, but that link doesn't work anymore. I haven't seen the original article first hand, so I can't comment on specifics. However, Windows 2003's out-of-the-box Terminal Server client authentication mechanism uses the "standard" Windows authentication process. While this entire process can easily be encrypted, it uses more than one port which causes complications through firewalls. (Just for the record, pure 443-based connections are possible, but they require IPSec and other technologies that complicate the issue.) This SSL-based Terminal Server authentication will be a welcome feature of Service Pack 1.