Security Basics mailing list archives
Re: router question...
From: Mike Sweeney <mikesweeney () packetattack com>
Date: Tue, 24 Jan 2006 13:06:16 -0800
On Jan 23, 2006, at 12:02 PM, Yousef Syed wrote:
Personally, I've had anumber of problems with common-off-the-shelf Routers/firewalls.From wireless encryption no longer working after updating the firmware(Belkin 54g) to Passwords refusing to be set (Dlink MIMO Wireless Router). <sigh> Smoothwall never gave me any such problems... They may not be as "userfriendly" or easy to use, but atleast Smoothwall style firewalls actually work. I keep Smoothwall as the outside gateway, simply because I no longer trust these COTS routers/firewalls.
The most successfull home user router/firewall so far has been m0n0wall built on a WISP platform. Bullet proof, never dies, serves DHCP just fine across multiple platforms and just plain works. Total cost was about two hundred dollars (US) which was the WISP board and case. Very small footprint. Smaller than a PIX 501.
MikeS
ys On 21/01/06, Dave <dlaud.flux () gmail com> wrote:I had an odd experience yesterday and was wandering if anyone could helpshed some light on it...I run a webserver that I keep behind a router/firewall. The router is astandard store bought Linksys BEFSX41. The firewalls NAT feature is disabled so someone on the local LAN can access the server via it's Internet domain name. The routers 'remote administration' feature is disabled so no one outside the LAN can log into the config page. The problem: Yesterday a couple of the websites being hosted on theserver were basiclly unavailable. At first we were thinking DoS of somesort but no evidence in the servers logs to support this as far as I know. At any rate, when I would try to access the problem page I was greeted with the router log in prompt! I (using a local machine) log into the router to verify that the 'remote administration' option isdissabled...it was. So why when I tried to access the troubled websitevia domain name (www.troubled_site.com) I was greeted with my routers log in prompt? The routers firmware is up to date...I call linksys and asked if they knew what it could be. they did not know. I looked for and asked ifanyone knew of any exploit code that could do this to this router...noluck (doesnt mean it doesnt exist). So why was my router (for a short time only) prompting website visitors with it's log in prompt? Any ideas / comments appreciated. dave--------------------------------------------------------------------- ------EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The Norwich University program offers unparalleled Infosec managementeducation and the case study affords you unmatched consulting experience.Tailor your education to your own professional goals with degreecustomizations including Emergency Management, Business Continuity Planning,Computer Emergency Response Teams, and Digital Investigations. http://www.msia.norwich.edu/secfocus--------------------------------------------------------------------- -------- Yousef Syed "One senior official said the consultancy "doesn't have the greatest of reputations among civil servants. They come and state the bleeding obvious using Powerpoint"."---------------------------------------------------------------------- -----EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The Norwich University program offers unparalleled Infosec managementeducation and the case study affords you unmatched consulting experience.Tailor your education to your own professional goals with degreecustomizations including Emergency Management, Business Continuity Planning,Computer Emergency Response Teams, and Digital Investigations. http://www.msia.norwich.edu/secfocus---------------------------------------------------------------------- -----
--------------------------------------------------------------------------- EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINEThe Norwich University program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Tailor your education to your own professional goals with degree customizations including Emergency Management, Business Continuity Planning, Computer Emergency Response Teams, and Digital Investigations.
http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- router question... Dave (Jan 23)
- Re: router question... Tom Yarrish (Jan 24)
- Message not available
- Re: router question... Brian Loe (Jan 24)
- Re: router question... PCSC Information Services (Jan 24)
- Re: router question... Yousef Syed (Jan 24)
- Re: router question... Mike Sweeney (Jan 25)