Boston Linux & Unix (BLU) Home | Calendar | Mail Lists | List Archives | Desktop SIG | Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings
Linux Cafe | Meeting Notes | Linux Links | Bling | About BLU

BLU Discuss list archive


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: home router flaws



 > From http://www.gnucitizen.org/blog/hacking-the-interwebs
>> Also, keep in mind that 99% of home routers are vulnerable to this attack 
>> as all of them support UPnP to one degree or another. 

Matthew Gillen wrote: 
> This is one of the reasons why I use a linux box as my firewall, instead of 
> an end-consumer router... 

OK, but that seems pretty easy to guard against. Turn off UPnP. 

Similarly, you'd think there would be a ton of exploits using XSS that 
hit the admin web interface on consumer routers. To thwart that change 
the default password and/or IP address of the router's admin page. 

  -Tom 

-- 
Tom Metro 
Venture Logic, Newton, MA, USA 
"Enterprise solutions through open source." 
Professional Profile: http://tmetro.venturelogic.com/

-- 
This message has been scanned for viruses and 
dangerous content by MailScanner, and is 
believed to be clean. 

_______________________________________________ 
Discuss mailing list 
[hidden email] 
http://lists.blu.org/mailman/listinfo/discuss
 


BLU is a member of BostonUserGroups
BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Valid HTML 4.01! Valid CSS!



Boston Linux & Unix / webmaster@blu.org