By relying on Google’s authentication (2FA, YubiKeys, Passkeys), CRD forces a layer of security that a poorly configured SSH key or a weak VNC password cannot match. You don't have to worry about brute-force attacks on port 22 if port 22 isn't even open to the world. The "attack surface" moves from your router to Google's identity management, which is likely safer than your home network.
It may not be the tool of choice for hard-core sysadmins managing a fleet of enterprise servers, but for the individual user? It represents the ultimate freedom. It decouples your Linux machine from your physical location, turning any computer with a web browser into a terminal for your personal Linux empire. chrome remote desktop linux