[SATLUG] OT: Router-related question

redpill toddwbucy at grandecom.net
Wed Feb 10 14:38:36 CST 2010


On Wed, 2010-02-10 at 14:34 -0600, Bruce Dubbs wrote: 
> redpill wrote:
> 
> > Does the above scenario require a directed attack against a specific AP?
> 
> > Yes, but given that it is now easier (and safer for the thief) to crack
> > your AP's encryption then it is for him to kick in your front door,
> > maybe we should all be a bit more paranoid. 
> 
> > In my view leaving the
> > gateway routers ssh port open, even if only internally and for specific
> > IP and MAC, is tantamount to leaving the front door key under the flower
> > pot on the front porch.  This is especially true if the WIFI AP is on
> > the very same router/firewall that the ssh port is open on, a very
> > common setup for home gateway routers.
> 
> So don't use wifi.  Ethernet cable isn't expensive.
> 
>    -- Bruce
exactly what I would recommend, but at the very least one should place
wifi APs within a DMZ.
Todd



More information about the SATLUG mailing list