philippe_44 wrote: > All my untrusted devices run on a separated WiFi network that has its > own public IP (my ISP allows me to have two) because I agree with you, > all these gadgets are, intentionally or not, security disasters. Re SB, > one other thing is that you're stuck to older WPA and your WiFi is > subject to KRACK or similar attacks vectors. One option is to run your > SB system in the same "dirty pool" as your other gadgets. Yeah, I actually run my SBs on an `open` wifi with the LMS machine acting as the AP (hostapd). I have a MAC address restriction on it though and the address pool is completely filled. There is also a restrictive firewall that runs both ways, only allowing ports 80,3483,9000,9090 TCP and 67,68,53,3483,17784 UDP, so anyone managing to gain access to this wifi SSID despite the installed barriers will quickly get bored to hell and leave.
------------------------------------------------------------------------ gordonb3's Profile: http://forums.slimdevices.com/member.php?userid=71050 View this thread: http://forums.slimdevices.com/showthread.php?t=115017 _______________________________________________ discuss mailing list [email protected] http://lists.slimdevices.com/mailman/listinfo/discuss
