Re: Personal Data and Security

In article <jollyroger-8308E5.21452521082009@xxxxxxxxxxxxxxxxxxx>,
Jolly Roger <jollyroger@xxxxxxxxx> wrote:

I'm not talking about local wireless clients, Nick. I'm talking about
people on the internet who may access your router from the internet side
of it. You realize your router presents itself to the rest of the world
through your cable/DSL modem, right? It has its own real-world external
IP address, and any Joe Blow can talk to it through that real world IP
address. If you don't bother to assign a secure password to the router,
and through some mishap, your router allows someone on the internet side
to access the configuration pages, you are toast.

Not in all cases. Many routers distinguish between LAN and WAN access
to the configuration page and can disable access from the WAN side
(so-called "remote configuration").

I never enable remote configuration. When I find it necessary to
maintain a remote router configuration, I open a secure VNC connection
using SSH tunneling, and access the router through a machine local to
the router.

--
Tom Stiller

PGP fingerprint = 5108 DDB2 9761 EDE5 E7E3 7BDA 71ED 6496 99C0 C7CF
.

Quantcast