nanog mailing list archives
Re: Spitballing IoT Security
From: Mike Meredith <mike.meredith () port ac uk>
Date: Thu, 27 Oct 2016 10:04:55 +0100
On Thu, 27 Oct 2016 07:59:00 +0200, Eliot Lear <lear () ofcourseimright com> may have written:
Well yes. uPnP is a problem precisely because it is some random device asserting on its own that it can be trusted to do what it wants. Had
From my own personal use (and I'm aware that this isn't a general solution), I'd like a device that sat on those uPnP requests until I logged into the admin interface to review them. Now if you could automate _me_ then it might become more generally useful :- uPnP(ssh, for admin access) -> f/w f/w -> uPnP device: Don't be silly.
But if instead of a pet feeder we're talking about a home file sharing system or a video camera where you don't want to share the feed into the cloud? There will be times when people want inbound connections. We need an architecture that supports them.
As someone who manages an application-based firewall, every problem looks like it would be easier to solve using an application-based firewall :) -- Mike Meredith, University of Portsmouth Principal Systems Engineer, Hostmaster, Security, and Timelord!
Attachment:
_bin
Description: OpenPGP digital signature
Current thread:
- Spitballing IoT Security, (continued)
- Spitballing IoT Security Ronald F. Guilmette (Oct 24)
- Re: Spitballing IoT Security Jared Mauch (Oct 24)
- Re: Spitballing IoT Security Matthias Waehlisch (Oct 24)
- Re: Spitballing IoT Security Jared Mauch (Oct 25)
- Re: Spitballing IoT Security Ronald F. Guilmette (Oct 25)
- Re: Spitballing IoT Security Jean-Francois Mezei (Oct 25)
- Re: Spitballing IoT Security Aled Morris (Oct 25)
- Re: Spitballing IoT Security Bruce Curtis (Oct 25)
- Re: Spitballing IoT Security Ronald F. Guilmette (Oct 25)
- Re: Spitballing IoT Security Eliot Lear (Oct 26)
- Re: Spitballing IoT Security Mike Meredith (Oct 27)
- Re: Spitballing IoT Security Mel Beckman (Oct 27)
- Re: Spitballing IoT Security Eliot Lear (Oct 28)
- RE: Spitballing IoT Security Keith Medcalf (Oct 27)
- RE: Spitballing IoT Security bzs (Oct 27)
- Re: Spitballing IoT Security Jim Hickstein (Oct 28)
- Re: Spitballing IoT Security bzs (Oct 28)
- Re: Spitballing IoT Security Stephen Satchell (Oct 28)
- Re: Spitballing IoT Security bzs (Oct 29)
- Re: Spitballing IoT Security Eric S. Raymond (Oct 29)
- Re: Spitballing IoT Security bzs (Oct 29)