Page 2 of 2 FirstFirst 12
Results 21 to 39 of 39

Thread: Router and Software

  1. #21
    Official Photographer Dakota's Avatar
    Join Date
    Oct 2000
    Location
    Vancouver, Wa
    Posts
    5,694
    Yes. And not to mention that a hacker really wanting to hack something is not going to waste their time on someone's little home system that's locked pretty tight. There's much bigger fish to fry.

    But, if they would happen to find the right ports, they'd toss you a trojan that they could call up later for a DDOS attack. With you behind your router and running a personal firewall, the chances of this happening are pretty extreme, especially if you're a 'normal' user.

    And what I mean by normal is that you're not out there scarfing warez and making enemies on IRC or some such nonsense.

    Everyone is vulnerable to some degree, but you can control that very easily and there's no need for you to be paranoid about being attacked with what you are doing and the setup you're running. You're pretty darn safe.
    We Remember...
    9|11
    40 miles SW of Mt. St. Helens

  2. #22
    Member pewterdawg's Avatar
    Join Date
    Jun 2001
    Location
    Tampa Bay
    Posts
    50
    cool...that's all i want...be safe! all i want to do is email, a little surfing and play some Diablo, not have to build fortresses

  3. #23
    Official Photographer Dakota's Avatar
    Join Date
    Oct 2000
    Location
    Vancouver, Wa
    Posts
    5,694
    And stay in touch with SG. With all the resources this site has -- read: people in the know -- you'll learn all you can right here about anything broadband.
    We Remember...
    9|11
    40 miles SW of Mt. St. Helens

  4. #24
    Official Photographer Dakota's Avatar
    Join Date
    Oct 2000
    Location
    Vancouver, Wa
    Posts
    5,694
    Originally posted by Ken
    Good answers Blue Jetta!

    Thanks Boss! You guys have learned me well.
    We Remember...
    9|11
    40 miles SW of Mt. St. Helens

  5. #25
    Member pewterdawg's Avatar
    Join Date
    Jun 2001
    Location
    Tampa Bay
    Posts
    50
    thanks for all's help

  6. #26
    Having run a honey pot project similar to Lance Spitzner's (http://project.honeynet.org very good site to learn about advanced security, attack methods, detection, and plus Lance is just a dam good guy, etc). I can tell you that an unprotect Windows box with an open c:\ share will last no more then 24 hours on the internet before being compromised. Unpatched Linux boxes probably even less time given the leading hacker probe I see is RPC scans (port 111) which is a probe to look for unpatched Linux boxes to hack and root. Your Linksys Router is very good protection for people trying to hack you and by default all 65,535 ports are protected. About the only way someone can hack you is to social engineer you, ie get you to install their evil software.

    We built Link Logger such that people can see what is happening at their Linksys. How much traffic there is, where that traffic is going, what traffic is arriving and from where, and what bad traffic there is, and something about the evil traffic (what it is, etc). Add on top of that a traffic analysis tool, reports and graphs and we hope that Link Logger helps you to understand your internet traffic.

  7. #27
    Member pewterdawg's Avatar
    Join Date
    Jun 2001
    Location
    Tampa Bay
    Posts
    50
    i notice that scans on one 1 computer are getting stopped by ZA
    while on another it looks like stopping at router and no peeep from ZA?

  8. #28
    Are your forwarding ports to that machine or have it in the DMZ??

  9. #29
    Member pewterdawg's Avatar
    Join Date
    Jun 2001
    Location
    Tampa Bay
    Posts
    50
    no i used the defaults. the only thing different is that machine has Instant messenger and Napster on it.

  10. #30
    Could you give a sample??

  11. #31
    Member pewterdawg's Avatar
    Join Date
    Jun 2001
    Location
    Tampa Bay
    Posts
    50
    SPI: Disable


    Block WAN Request: Enabled
    Multicast Pass Through: Enabled
    IPSec Pass Through: Enabled
    PPTP Pass Through: Disable
    Remote Management: Disable
    Remote Upgrade: Disable
    MTU: Enable Size: 1500

  12. #32
    Sorry, I meant a sample of your zonealarm alarms.

  13. #33
    Member pewterdawg's Avatar
    Join Date
    Jun 2001
    Location
    Tampa Bay
    Posts
    50
    oh, ok

    they are just 27234 port scans to 24.92.xx.xx.xxx


    ZA also blocks attempts from each comp from connecting to each other.

    should i check the box "adapter subnets"

    3com etherlink PCI= (192.168.1.1) which is the address of the router?

  14. #34
    Member pewterdawg's Avatar
    Join Date
    Jun 2001
    Location
    Tampa Bay
    Posts
    50
    do the settings look right for the linksys?

    what is Ipsec passthrough?

  15. #35
    Member pewterdawg's Avatar
    Join Date
    Jun 2001
    Location
    Tampa Bay
    Posts
    50
    I don't use Napster either, but my 14 yo daughter does, i tried disabling it and telling her that it was down, but shes too smart for that one. "Dad, what did you do to Napster"?

  16. #36
    Regular Member W_I_Z_K_I_D's Avatar
    Join Date
    Jun 2001
    Location
    !!!Your Computer-You Just Dont Know It YeT!!!
    Posts
    363

    Talking

    hi GuYs:rotf

    While we are on the topic of ROUTERS i was wondering (and HOPING)to see if there were any freeware ones that you knew of.>?
    i think that it would be AwSoMe if there was...
    is there.>?
    !!!What Man Can Make
    Man Can Brake!!!

    Windows XP ( Service Pack 2 )
    Pentium 4 (3) GHz
    2.00 GB of RAM

    ** Zone Allarm Pro
    ** AVG Anti Virus
    ** Cookie Wall
    ** Pop Up Stopper
    ** Spy Bot
    ** Spy Ware Blasster
    ** Add Aware se Pro
    ** Ccleaner
    ** Clean Up
    ** Port Bloacker
    ** Tweek UI WIn XP
    ** Port Scanner


    Dialup 56k
    DialUp-Syd.IPrimus....56k(Motorola internal Modem)

  17. #37
    Member pewterdawg's Avatar
    Join Date
    Jun 2001
    Location
    Tampa Bay
    Posts
    50
    Ken, she has her own. Napster is on her computer, it's connected to the router...also wife's has computer also connected to router.
    therein lies the problem. security for the whole network. that's what i'm trying to figure out. i read the article on Netbui. should i use that?

    thanks,

    ralph

  18. #38
    Member pewterdawg's Avatar
    Join Date
    Jun 2001
    Location
    Tampa Bay
    Posts
    50
    ok i'll give it a try...thanks

    i noticed that the firmware update for linksys has a new item.
    SPI: i should enable Stateful packet inspection: correct

    man i've been reading everything i can find on the net, lots of different opinions. can you reccomend a book or two? is there "Networking and Security for Dummies?

  19. #39
    I enabled SPI, and I would recommend that other people should as well. NOTE that enabling SPI will stop any forwarded ports. So if you need port forwarding, do not enable SPI. Triggers still work correctly with SPI enabled.

    Blake

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •