{Disarmed} Re: [Leaplist] {Disarmed} Connecting to router
Aaron Morrison
ae4ko at amsat.org
Tue Sep 16 21:57:23 EDT 2008
And one more just to nail it down...
Change the default password on your routers (well, anything that has a
default password)!
There is known code (javascript in web pages) that will exploit
default passwords and change settings (such as default DNS servers)
which is a Genuine(TM) Bad Thing (TM).
NOTE:
See http://www.grc.com/sn/sn-080.txt for a transcript of show that
mentions this (go to grc.com/securitynow for all available content)
Also, I tried to find the SANS newsletter that Steve referenced, but
could not find what article he referred to in the archives.
--am
On 16 Sep 2008, at 17:03, Gray Frost wrote:
> Thanks,
>
> I see your point.
>
> On Tue, Sep 16, 2008 at 2:18 PM, John Simpson <jms1 at jms1.net> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
>
> On 2008-09-16, at 1109, Gray Frost wrote:
>
> How do I configure my home router from somewhere outside on the
> Internet.
>
>
> >From my own home network I would just type in MailScanner warning:
> numerical links are often malicious: 192.168.0.1 at the browser and
>
> then get to the admin log in utility screen. I know what the IP
> address is
> to get to my computer from outside shelling in (well I am able to
> ssh in
> that is). I am not sure how to get to the router utility from the
> outside?
>
> with many routers, you can't.
>
> some routers have an option to enable remote administration, however
> of those which have this option, every one of them turns it off by
> default.
>
> the reason for this is that allowing remote administration of your
> router is, to put it bluntly, almost always a very bad idea. if you
> allow remote administration of the router, and a "bad guy" knows
> about a bug in the router's web interface (say, a buffer overflow,
> or a default password) then you've just given that "bad guy" full
> access to any machine on your network.
>
> what i normally do is have a linux machine inside the firewall, with
> a tunnel allowing SSH to come through the firewall to that
> machine... and then i use SSH port forwarding to access anything
> inside the network, including the router itself if need be... as
> long as you're careful and the changes you're making on the router
> don't end up rebooting the router, it can work- i've done it before.
>
>
> - --------------------------------------------------------
> | John M. Simpson -- KG4ZOW -- Programmer At Large |
> | http://www.jms1.net/ <jms1 at jms1.net> |
> - --------------------------------------------------------
> | Hope for America -- http://www.ronpaul2008.com/ |
> - --------------------------------------------------------
>
>
>
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.8 (Darwin)
>
> iEYEARECAAYFAkjP+HEACgkQj42MmpAUrRrb1QCgrpaYL5JqHY05eteFNnYt/g/8
> svUAoIH4WURq/uNuXQnWUINMRDpb0W4D
> =nDBx
> -----END PGP SIGNATURE-----
>
>
> --
> This message has been scanned for viruses and
> dangerous content by MailScanner, and is
> believed to be clean.
>
> _______________________________________________
> Leaplist mailing list
> Leaplist at leap-cf.org
> http://lists.leap-cf.org/mailman/listinfo/leaplist
>
>
>
> --
>
> Gray
>
> " Don't think you are, know you are."
>
>
> --
> This message has been scanned for viruses and
> dangerous content by MailScanner, and is
> believed to be clean. _______________________________________________
> Leaplist mailing list
> Leaplist at leap-cf.org
> http://lists.leap-cf.org/mailman/listinfo/leaplist
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.leap-cf.org/pipermail/leaplist/attachments/20080916/5f680e0e/attachment.html
More information about the Leaplist
mailing list