funsec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Routers

From: "Dr. Neal Krawetz" <hf () hackerfactor com>
Date: Sun, 27 Nov 2005 11:39:16 -0700 (MST)
On Sun Nov 27 10:24:57 2005, Martin Wehlou wrote:


On 27 Nov 2005, at 15:40, Rob, grandpa of Ryan, Trevor, Devon &  
Hannah wrote:


  - Disable UPnP (I hate this protocol)


Interesting.  I don't think I've got anything net-connected that  
requires it.  Might
one ask why the hatred?  (And also how to diable, if non-obvious?)


Well, AFAIK, it is intended to let applications configure the  
firewall automatically, so they can work transparently.  Great idea,  
having your app open inbound ports for you, so you don't need to worry.

Except... that app that is doing it may not actually be one you  
wanted to have. IOW, trojans now can control your firewall. Oops.


Gee... And I just didn't like the router generating all that continual
traffic on my network.
*grin*

(No virus yet?  I'll check back in a few seconds.  Any virus now?)

Most home firewalls have a "Disable UPnP option" (a few have "Enable").
I have not seen any firewall that supports UPnP without a disable option.

                                        -Neal
--
Neal Krawetz, Ph.D.
Hacker Factor Solutions
http://www.hackerfactor.com/

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.
Previous By Date Next
Previous By Thread Next

Current thread: