Re: .NET 4.0.30319
I accept that both VPN and RDP solutions present a risk BUT the VPN solution should have methods to significantly mitigate some of those risks.
The first question to ask is what stops any user accessing a VPN/RDP solution - if it is only the username/password then you have a problem.