Re: Router Access

[Michael J McCafferty <mike () m5computersecurity com>]

    Since you said Linksys, I am gonna make the assumption that this is a small
site, using that linksys as the "firewall" as well as router. I'll also assume
that there are no other firewalls and no DMZ.
    You also didn't specify if you meant physical access or login access to the
router.

The 0wner of the router could:

1) Establish a VPN with an unauthorized remote site

2) Set up port forwarding to a host inside. Essentially just put a host on the
Internet.

3) Just generally screw it up. Default the config, change the config. 

4) Change the password so the admin can't get in to it (also wont' discover the
config change).

5) I hear that people are putting Linux on Linksys routers. Maybe they could do
that.

Quoting Sherwyn Williams <sherwill22 () tmail com>:

> This might be a dumb question but here goes!
>
>      once someone gets access to a say linksys for instance apart from 
> setting up remote access to the router, or getting the clients real 
> ipaddress, what else can someone do. I am doing a pentest, and I want to 
> show what are some of the ways that someone can use the router acess to 
> the advantage.
>
>
>
> Sherwyn Williams
> Technical Consultant
> (917) 650-5139
> Sherwill22 () tmail com


-- 
************************************************************ 
Michael J. McCafferty 
Principal, Security Engineer 
M5 Hosting
858-576-7325 Voice 
http://www.m5hosting.com 
************************************************************

----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.