rec.autos.simulators

OT: Linksys router vulnerability

Bria

OT: Linksys router vulnerability

by Bria » Sat, 09 Nov 2002 19:12:59

For those who use Linksys routers on home based LANs, this might be
interesting:

http://www.racesimcentral.net/
news.html?s=articles/20021104/linksys_vulnera

Brian

JTBur

OT: Linksys router vulnerability

by JTBur » Sat, 09 Nov 2002 22:32:34

Makes me wonder if any product is NOT at risk of being hacked.


http://smallbusiness.yahoo.com/business_technology/technology_news/so...

Todd Walke

OT: Linksys router vulnerability

by Todd Walke » Sat, 09 Nov 2002 23:25:43



If you just keep remote management turned off, you're fine...

--
________________________
Todd Walker
http://twalker.d2g.com
________________________

Uwe Schuerkam

OT: Linksys router vulnerability

by Uwe Schuerkam » Sat, 09 Nov 2002 23:34:41


> Makes me wonder if any product is NOT at risk of being hacked.

There probably aren't many (and then there's social
engineering), but it pays to have an easily patchable and /
upgradable platform for this task with good support from the
community, read: Linux, Net/OpenBSD, whatever.

Regards,

Uwe

--
mail replies to Uwe at schuerkamp dot de ( yahoo address is spambox)
Uwe Schuerkamp //////////////////////////// http://www.schuerkamp.de/
Herford, Germany \\\\\\\\\\\\\\\\\\\\\\\\\\ (52.0N/8.5E)
GPG Fingerprint:  2E 13 20 22 9A 3F 63 7F  67 6F E9 B1 A8 36 A4 61

Steve Garrot

OT: Linksys router vulnerability

by Steve Garrot » Sun, 10 Nov 2002 00:46:50

The only unhackable computer is not connected to the Internet, or even
turned on.

SLG :-)


>Makes me wonder if any product is NOT at risk of being hacked.



>> For those who use Linksys routers on home based LANs, this might be
>> interesting:

>http://smallbusiness.yahoo.com/business_technology/technology_news/so...
>> news.html?s=articles/20021104/linksys_vulnera

>> Brian

(All spelling errors are intentional and are there to show new
and improved ways of spelling old words. Grammatical errors are
due to too many English classes/teachers)
Schoone

OT: Linksys router vulnerability

by Schoone » Sun, 10 Nov 2002 01:30:47

The Linksys is patchable and the problem is easily fixed, just a matter of
proper settings.  Same thing as leaving your doors unlocked.



> > Makes me wonder if any product is NOT at risk of being hacked.

> There probably aren't many (and then there's social
> engineering), but it pays to have an easily patchable and /
> upgradable platform for this task with good support from the
> community, read: Linux, Net/OpenBSD, whatever.

> Regards,

> Uwe

> --
> mail replies to Uwe at schuerkamp dot de ( yahoo address is spambox)
> Uwe Schuerkamp //////////////////////////// http://www.schuerkamp.de/
> Herford, Germany \\\\\\\\\\\\\\\\\\\\\\\\\\ (52.0N/8.5E)
> GPG Fingerprint:  2E 13 20 22 9A 3F 63 7F  67 6F E9 B1 A8 36 A4 61

Mitch_

OT: Linksys router vulnerability

by Mitch_ » Sun, 10 Nov 2002 01:56:54

The newest Linksys (BesfrX41) included Stateful Packet Inspection.  The old
Besfr41 did not.  It also had an underpowered CPU which causes frequent
lockups  requiring a hard reset.  But in the words of so many here "Linksys
rocks" LOL..

Mitch


http://smallbusiness.yahoo.com/business_technology/technology_news/so...

Bria

OT: Linksys router vulnerability

by Bria » Sun, 10 Nov 2002 03:30:33

I personaly prefer the WinRoute software.
Schum

OT: Linksys router vulnerability

by Schum » Sun, 10 Nov 2002 04:31:00

You forgot the workhorse OS Uwe ;) freeBSD :)

Couldn't resist.

Cheers,
Schumi



> > Makes me wonder if any product is NOT at risk of being hacked.

> There probably aren't many (and then there's social
> engineering), but it pays to have an easily patchable and /
> upgradable platform for this task with good support from the
> community, read: Linux, Net/OpenBSD, whatever.

> Regards,

> Uwe

> --
> mail replies to Uwe at schuerkamp dot de ( yahoo address is spambox)
> Uwe Schuerkamp //////////////////////////// http://www.schuerkamp.de/
> Herford, Germany \\\\\\\\\\\\\\\\\\\\\\\\\\ (52.0N/8.5E)
> GPG Fingerprint:  2E 13 20 22 9A 3F 63 7F  67 6F E9 B1 A8 36 A4 61

JTBur

OT: Linksys router vulnerability

by JTBur » Sun, 10 Nov 2002 05:58:55

Where's the patch then? I don't believe the article is very old and it said
something about Linksys being not available for comment.

Todd


> The Linksys is patchable and the problem is easily fixed, just a matter of
> proper settings.  Same thing as leaving your doors unlocked.




> > > Makes me wonder if any product is NOT at risk of being hacked.

> > There probably aren't many (and then there's social
> > engineering), but it pays to have an easily patchable and /
> > upgradable platform for this task with good support from the
> > community, read: Linux, Net/OpenBSD, whatever.

> > Regards,

> > Uwe

> > --
> > mail replies to Uwe at schuerkamp dot de ( yahoo address is spambox)
> > Uwe Schuerkamp //////////////////////////// http://www.schuerkamp.de/
> > Herford, Germany \\\\\\\\\\\\\\\\\\\\\\\\\\ (52.0N/8.5E)
> > GPG Fingerprint:  2E 13 20 22 9A 3F 63 7F  67 6F E9 B1 A8 36 A4 61

JTBur

OT: Linksys router vulnerability

by JTBur » Sun, 10 Nov 2002 06:03:08

Thanks, Todd. I wonder what all the fuss is about then. Isn't this a default
setting?




> > For those who use Linksys routers on home based LANs, this might be
> > interesting:

http://smallbusiness.yahoo.com/business_technology/technology_news/so...
Schoone

OT: Linksys router vulnerability

by Schoone » Sun, 10 Nov 2002 06:20:21

The patch is to turn off the remote admin feature with latest firmware.

"To guard against this vulnerability, iDefense recommends upgrading the
router firmware to version 1.42.7 or later
(http://www.linksys.com/download/firmware.asp). That and subsequent firmware
versions appear to eliminate the vulnerability..."


> Where's the patch then? I don't believe the article is very old and it
said
> something about Linksys being not available for comment.

> Todd



> > The Linksys is patchable and the problem is easily fixed, just a matter
of
> > proper settings.  Same thing as leaving your doors unlocked.




> > > > Makes me wonder if any product is NOT at risk of being hacked.

> > > There probably aren't many (and then there's social
> > > engineering), but it pays to have an easily patchable and /
> > > upgradable platform for this task with good support from the
> > > community, read: Linux, Net/OpenBSD, whatever.

> > > Regards,

> > > Uwe

> > > --
> > > mail replies to Uwe at schuerkamp dot de ( yahoo address is spambox)
> > > Uwe Schuerkamp //////////////////////////// http://www.schuerkamp.de/
> > > Herford, Germany \\\\\\\\\\\\\\\\\\\\\\\\\\ (52.0N/8.5E)
> > > GPG Fingerprint:  2E 13 20 22 9A 3F 63 7F  67 6F E9 B1 A8 36 A4 61

Schoone

OT: Linksys router vulnerability

by Schoone » Sun, 10 Nov 2002 06:21:45

Just the media trying to put fear into their readers mind.  Fear sells
better.
It's a good point to make sure this is set but the article makes it seem
like there is no fix and half the world is impacted.


> Thanks, Todd. I wonder what all the fuss is about then. Isn't this a
default
> setting?





> > > For those who use Linksys routers on home based LANs, this might be
> > > interesting:

http://smallbusiness.yahoo.com/business_technology/technology_news/so...
Ming

OT: Linksys router vulnerability

by Ming » Sun, 10 Nov 2002 08:38:07



{clip}

The write up from iDefense is a bit more accurate:

"Additionally the iDEFENSE advisory, 10.31.02a: Denial of Service
Vulnerability in Linksys BEFSR41 EtherFast Cable/DSL Router, has been
udpated to reflect an official vendor response from Linksys.  Also,
the analysis section has been refined to address some inaccuracies
from people reporting on this in the press.

http://www.idefense.com/advisory/10.31.02a.txt"

If you're using IE/OE6SP1 and not concerned about the 30+ known and
unpatched exploits, a little DoS is the least of your worries.

TDRacin

OT: Linksys router vulnerability

by TDRacin » Sun, 10 Nov 2002 09:40:57

"this is not that big of a deal....dos or ddos attacks will not
compromise the internal network..the worst it will do is crash the
router....this can happen to any router on the market..throw enough junk
at it and it will either lock up, reboot, or just have all available
bandwidth taken up.  I would be concerned if the router allowed access
to the internal network..shich this does not.  Nice to know but not
enough to get worried about."     Some guy on an Adelphia PowerLink ng

Relax, and don't believe everything you hear on the internet.   lol


http://smallbusiness.yahoo.com/business_technology/technology_news/so...


1. NR2k2 OT. Linksys Cable Router HELP

2. OT: Racing behind a Linksys router question

3. router router or plunge router?

4. Vendo Router Linksys wrt54g v2.2

5. InternetRaceFinder & Linksys Router?

6. Linksys Router Firmware update (v1.37)

7. Linksys Router/Firewall and GPL/VROC

8. linksys router,gpl,n4,heat config?

9. N4 - Linksys Router

rec.autos.simulators is a usenet newsgroup formed in December, 1993. As this group was always unmoderated there may be some spam or off topic articles included. Some links do point back to racesimcentral.net as we could not validate the original address. Please report any pages that you believe warrant deletion from this archive (include the link in your email). RaceSimCentral.net is in no way responsible and does not endorse any of the content herein.