[SATLUG] OT: Router-related question
toddwbucy at grandecom.net
Wed Feb 10 14:38:36 CST 2010
On Wed, 2010-02-10 at 14:34 -0600, Bruce Dubbs wrote:
> redpill wrote:
> > Does the above scenario require a directed attack against a specific AP?
> > Yes, but given that it is now easier (and safer for the thief) to crack
> > your AP's encryption then it is for him to kick in your front door,
> > maybe we should all be a bit more paranoid.
> > In my view leaving the
> > gateway routers ssh port open, even if only internally and for specific
> > IP and MAC, is tantamount to leaving the front door key under the flower
> > pot on the front porch. This is especially true if the WIFI AP is on
> > the very same router/firewall that the ssh port is open on, a very
> > common setup for home gateway routers.
> So don't use wifi. Ethernet cable isn't expensive.
> -- Bruce
exactly what I would recommend, but at the very least one should place
wifi APs within a DMZ.
More information about the SATLUG