We do have a TCP connection, but that's a whole different kettle of fish.

The idea here is that a client can make a TCP connection to a whole group.

So it wasn't even possible to have an encrypted TCP connection.

So all you're really doing is making a TCP connection.

Rather, a direct TCP connection is used, making use of port 5723 for these communications.

But they don't know what TCP connection it's going to be.

Well, every single one of those is a new TCP connection that has to start out slow and ramp itself up.

And so the concept is that we have a single TCP connection.

And they can't be spoofed because these are TCP connections.

But in normal case the TCP connection is full duplex.