Re: [PLUG] How to confirm my router is safe

2018-04-25 Thread Russell Senior
On Wed, Apr 25, 2018 at 7:30 AM, Louis Kowolowski wrote: > MAC filtering is a low bar, for sure. However, its still a bar, and it > will trip some people. > 802.1x is much better. Captive portal may be reasonable, depends on what > the capabilities of the AP are. > If

Re: [PLUG] How to confirm my router is safe

2018-04-25 Thread Louis Kowolowski
On Apr 25, 2018, at 8:24 AM, Tomas Kuchta wrote: > > Every time I hear about MAC address filter - I wonder who are we trying to > secure the network from. > > It can make things difficult for friends who we not only need to tell your > password, but also go to the

Re: [PLUG] How to confirm my router is safe

2018-04-25 Thread Tomas Kuchta
Every time I hear about MAC address filter - I wonder who are we trying to secure the network from. It can make things difficult for friends who we not only need to tell your password, but also go to the office, turn on the PC, figure out their MAC and white list it. Quit a bit of a hassle for

Re: [PLUG] How to confirm my router is safe

2018-04-24 Thread Dick Steffens
On 04/24/2018 09:32 PM, Russell Senior wrote: President Obama and a kid are sitting at a school cafeteria lunch table. Kid says: "My dad says you are spying on all of us"; Obama says: "He's not your father." They got me the day I forgot to put on my tin foil hat. -- Regards, Dick Steffens

Re: [PLUG] How to confirm my router is safe

2018-04-24 Thread Russell Senior
President Obama and a kid are sitting at a school cafeteria lunch table. Kid says: "My dad says you are spying on all of us"; Obama says: "He's not your father." On Tue, Apr 24, 2018 at 9:28 PM, Dick Steffens wrote: > On 04/24/2018 05:07 PM, Ben Koenig wrote: > >>

Re: [PLUG] How to confirm my router is safe

2018-04-24 Thread Dick Steffens
On 04/24/2018 08:14 PM, Larry Brigman wrote: The second piece that I saw was to turn off upnp protocol. Akamai(sp?) has a white paper about it and a list affected routers. I'll check that out. Thanks to all folks who responded to my question. I learned a few things, but am grateful earlier

Re: [PLUG] How to confirm my router is safe

2018-04-24 Thread Dick Steffens
On 04/24/2018 05:07 PM, Ben Koenig wrote: https://www.opb.org/news/article/npr-sounding-the-alarm- about-a-new-russian-cyber-threat/ <...> Dear God. You just linked to an HTTPS website that contains insecure content. I examined the source code for that web page, and nearly drowned in the

Re: [PLUG] How to confirm my router is safe

2018-04-24 Thread Dick Steffens
On 04/24/2018 03:21 PM, Louis Kowolowski wrote: I'd also run by https://www.grc.com/x/ne.dll?bh0bkyd2 and make sure it doesn't find anything. It passed the File Sharing test. On the Common Ports test all are either labeled as Stealth or Closed. Also,

Re: [PLUG] How to confirm my router is safe

2018-04-24 Thread Dick Steffens
On 04/24/2018 03:16 PM, Russell Senior wrote: https://www.us-cert.gov/ncas/alerts/TA18-106A There is some discussion of SOHO routers but none of the vulnerabilities mentioned apply to you. They mention: Telnet (typically Transmission Control Protocol (TCP) port 23, but traffic can be

Re: [PLUG] How to confirm my router is safe

2018-04-24 Thread Dick Steffens
On 04/24/2018 02:38 PM, Russell Senior wrote: The NPR story is mostly regurgitated press release from scare mongers. Not surprising. The network infrastructure it looks like they are talking about is in the core of the internet, big cisco and juniper routers and the like. If anything, the

Re: [PLUG] How to confirm my router is safe

2018-04-24 Thread Dick Steffens
On 04/24/2018 02:27 PM, Russell Senior wrote: Attitude Adjustment is pretty old. OpenWrt has a pretty good firewall by default, so remote access should be difficult. You should take note of which packages you have installed, Nothing beyond the default. backup your settings, and then you

Re: [PLUG] How to confirm my router is safe

2018-04-24 Thread Dick Steffens
On 04/24/2018 02:26 PM, Rich Shepard wrote: Brian Krebs had a blog post on this a while ago. The key thing to do -- unless I'm badly mistaken -- is to change the admin's password from the factory default. That one I knew about when I got the router, and it has a password only I know. And it

Re: [PLUG] How to confirm my router is safe

2018-04-24 Thread Larry Brigman
The second piece that I saw was to turn off upnp protocol. Akamai(sp?) has a white paper about it and a list affected routers. On Tue, Apr 24, 2018, 5:07 PM Ben Koenig wrote: > > https://www.opb.org/news/article/npr-sounding-the-alarm- > > about-a-new-russian-cyber-threat/

Re: [PLUG] How to confirm my router is safe

2018-04-24 Thread Ben Koenig
> https://www.opb.org/news/article/npr-sounding-the-alarm- > about-a-new-russian-cyber-threat/ > > It recommends following your router manufacturer's guidance on making sure > the router is secure. It doesn't say specifically what to search for. I > have a Buffalo WZR-600DHP running OpenWrt LuCI,

Re: [PLUG] How to confirm my router is safe

2018-04-24 Thread Louis Kowolowski
On Apr 24, 2018, at 4:26 PM, Rich Shepard wrote: > > On Tue, 24 Apr 2018, Dick Steffens wrote: > >> OPB has an article about router vulnerability. >> https://www.opb.org/news/article/npr-sounding-the-alarm-about-a-new-russian-cyber-threat/ >> >> It recommends

Re: [PLUG] How to confirm my router is safe

2018-04-24 Thread Russell Senior
https://www.us-cert.gov/ncas/alerts/TA18-106A There is some discussion of SOHO routers but none of the vulnerabilities mentioned apply to you. They mention: Telnet (typically Transmission Control Protocol (TCP) port 23, but traffic can be directed to a wide range of TCP ports such as 80,

Re: [PLUG] How to confirm my router is safe

2018-04-24 Thread Russell Senior
The NPR story is mostly regurgitated press release from scare mongers. The network infrastructure it looks like they are talking about is in the core of the internet, big cisco and juniper routers and the like. If anything, the NSA noticed because their surveillance tools are already embedded in

Re: [PLUG] How to confirm my router is safe

2018-04-24 Thread Russell Senior
Attitude Adjustment is pretty old. OpenWrt has a pretty good firewall by default, so remote access should be difficult. You should take note of which packages you have installed, backup your settings, and then you could try installing this, the most recent release version:

Re: [PLUG] How to confirm my router is safe

2018-04-24 Thread Rich Shepard
On Tue, 24 Apr 2018, Dick Steffens wrote: OPB has an article about router vulnerability. https://www.opb.org/news/article/npr-sounding-the-alarm-about-a-new-russian-cyber-threat/ It recommends following your router manufacturer's guidance on making sure the router is secure. It doesn't say

[PLUG] How to confirm my router is safe

2018-04-24 Thread Dick Steffens
OPB has an article about router vulnerability. https://www.opb.org/news/article/npr-sounding-the-alarm-about-a-new-russian-cyber-threat/ It recommends following your router manufacturer's guidance on making sure the router is secure. It doesn't say specifically what to search for. I have a