🩺 Vitals
- 📦 Version: 1.4.6 (Released 2026-03-05)
- 🚀 Velocity: Active (Last commit 2026-05-04)
- 🌟 Community: 113.5k Stars · 17.0k Forks
- 🐞 Backlog: 116 Open Issues
🏗️ Profile
- Official: rustdesk.com
- Source: github.com/rustdesk/rustdesk
- License: AGPL-3.0 (Core) | Custom (Pro)
- Deployment: Docker | Native Install
- Data Model: Local / Self-Hosted Relay
- Jurisdiction: Singapore 🇸🇬 / Cayman Islands 🇰🇾 (Purslane Ltd)
- Compliance (SaaS): N/A (No managed SaaS tier)
- Compliance (Self-Hosted): Self-Hosted (User Managed)
- Complexity: Medium (3/5) - Relay server setup and encrypted key pairing required
- Maintenance: Low (2/5) - Stable binary; lightweight relay infrastructure
- Enterprise Ready: Moderate (3/5) - E2EE and relay included; SSO, auditing, and device management require paid Pro tier
1. The Executive Summary
What is it? RustDesk is an open-core remote desktop platform written in Rust, serving as a self-hostable alternative to TeamViewer and AnyDesk. Developed by Purslane Ltd (Singapore/Cayman Islands), it allows IT teams to operate a fully private support infrastructure by self-hosting the rendezvous (hbbs) and relay (hbbr) servers — ensuring session data never transits third-party infrastructure. The AGPL-3.0 community core covers remote access; centralized device management, OIDC/SSO, and compliance-grade session auditing are gated behind the proprietary Pro tier.
The Strategic Verdict:
- 🔴 For Regulated Industries Requiring Formal Audit Trails: Caution. Advanced session logging and auditing — required for HIPAA, ISO 27001, and legal hold compliance — are restricted to the paid Pro tier. Assess the enterprise tax before committing the community edition to regulated workloads.
- 🟢 For Security-Critical IT Teams: Strong Buy. Self-hosting both relay servers eliminates third-party data transit risk entirely. The AGPL-3.0 core is fully sovereign, and even the community edition delivers E2EE and a fully private relay — a structural advantage over any cloud-only remote support vendor.
2. The "Hidden" Costs (TCO Analysis)
| Cost Component | TeamViewer (SaaS) | RustDesk (Self-Hosted) |
|---|---|---|
| License Fee | ~$50+/mo per technician | $0 (AGPL-3.0 Core) |
| Session Data Privacy | Transits TeamViewer infrastructure | Zero-transit (private relay) |
| SSO / Audit Logs | Enterprise tier | Paid Pro tier |
| Relay Infrastructure | Managed SaaS | Low-cost VPS |
3. The "Day 2" Reality Check
🚀 Deployment & Operations
- Installation: Portable binaries for all major platforms (Windows, macOS, Linux, mobile) — no installation required for client use. Relay and rendezvous servers deploy via Docker Compose with encrypted key pairing configuration.
- Scalability: The rendezvous server is lightweight and handles thousands of concurrent sessions on modest hardware. High-availability multi-relay configurations are supported in the community edition, though centralized management requires the Pro tier.
🛡️ Security & Governance (Risk Assessment)
- Jurisdiction & Geopolitics (Singapore 🇸🇬 / Cayman Islands 🇰🇾): Purslane Ltd is incorporated in Singapore, outside US CLOUD Act jurisdiction — no forced data handover to US intelligence agencies applies. The Pro licence governing law is bound to the Cayman Islands. Singapore operates under the Personal Data Protection Act (PDPA) and regional intelligence-sharing frameworks; organisations with strict EU data sovereignty requirements should self-host both relay servers rather than rely on any vendor-managed infrastructure.
- The Compliance Shift: RustDesk has no managed SaaS tier and publishes no compliance certifications. Self-hosting both the rendezvous and relay servers transfers the full compliance posture to the operator — network security, firewall configuration, encryption key management, and session audit logging are exclusively the operator's responsibility. Advanced session logging and auditing required for regulated compliance frameworks (HIPAA, ISO 27001) are restricted to the paid Pro tier; the community edition cannot satisfy formal audit requirements without supplementary tooling.
- License Risk (AGPL-3.0 & The Pro Ceiling): The AGPL-3.0 core is OSI-approved with a strong copyleft network clause — any modification to RustDesk served over a network triggers mandatory source code disclosure. The Pro tier gates centralized address book, device management, web client access, OIDC/SSO, and advanced session logging behind a proprietary commercial licence. The enterprise tax is concentrated precisely in the capabilities most critical for IT governance: teams deploying the community edition at scale will encounter the Pro ceiling at their first compliance or SSO requirement.
4. Market Landscape
🏢 Proprietary Incumbents
- TeamViewer: The dominant commercial remote support platform. Per-technician licensing costs compound at scale, and all session data transits TeamViewer's infrastructure by default — a compliance blocker for regulated industries.
- AnyDesk: A lightweight alternative to TeamViewer. Fully proprietary with no self-hosting option; session data transits AnyDesk's relay infrastructure regardless of data residency requirements.
🤝 Open Source Ecosystem
- Apache Guacamole: A clientless, browser-based remote desktop gateway supporting RDP, VNC, and SSH — no client installation required on the end user's machine.