RE: FYI: FW: [fw-wiz] Re: Home/SOHO "Firewall" Routers
- From: "John Tolmachoff \(Lists\)" <johnlist@xxxxxxxxxxxxxxxxxxx>
- To: "'[ISAserver.org Discussion List]'" <isalist@xxxxxxxxxxxxx>
- Date: Tue, 15 Jun 2004 18:57:18 -0700
One thing I can say, a true hardware firewall, not some lower grade
want-to-be-all router with added firewall functions, are always a better
choice if you truly need a hardware firewall.
John Tolmachoff
Engineer/Consultant/Owner
eServices For You
> -----Original Message-----
> From: Greg Mulholland [mailto:gregstelatel@xxxxxxxxxxx]
> Sent: Tuesday, June 15, 2004 6:14 PM
> To: [ISAserver.org Discussion List]
> Subject: [isalist] RE: FYI: FW: [fw-wiz] Re: Home/SOHO "Firewall" Routers
>
> http://www.ISAserver.org
>
> Tom, I can say my hardware routers/firewall boxes have given me more
trouble
> than I care to mention. Someone once told me they weren't susceptible to
> exploits like a software firewall was, hmmmmmmmmm
>
>
> Greg Mulholland
> "Firmware Upgrader"
>
>
>
> -----Original Message-----
> From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxx]
> Sent: Wednesday, 16 June 2004 11:08 AM
> To: [ISAserver.org Discussion List]
> Subject: [isalist] FYI: FW: [fw-wiz] Re: Home/SOHO "Firewall" Routers
>
> http://www.ISAserver.org
>
> Repeat after me: "hardware" firewalls are more security than software
> firewalls, hardware firewalls are more secure than software firewalls....
>
> (you get what you pay for too):
>
> 1. Linksys WiFi Gateway Remote Attack Risk Slashdot URL:
> <http://tinyurl.com/yuh8j>
>
> "According to InternetNews.com, a tech consultant discovered that even if
> you turn the remote administration feature off on a Linksys WRT54G -- the
> single bestselling Wi-Fi device in the world -- you can still remotely
> access it through ports 80 and 443. Linksys sets the HTTP username to
> nothing and password to 'admin' on all of its devices by default. Web site
> scanning from anywhere in the world to devices that have routable
> Internet-facing addresses would allow script kiddie remote access, at
which
> point you could flash the unit with new firmware, extract the WEP or WPA
> key, or just mess up someone's configuration and change the password."
>
> 2. Netgear's silly fix for Netgear Router backdoor Slashdot URL:
> <http://tinyurl.com/2ffcf>
>
> An anonymous reader writes "Recently Slashdot reported that the Netgear
> router has as WLAN backdoor. According to this report by the news service
of
> the German publisher Heise Netgear "fixed" the problem with a firmware
> update. And what is the fix? According to Heise, they didn't remove the
> backdoor at all. Instead they just changed the login information! They
> replaced the old user name 'super' with 'superman', and changed the old
> password to '21241036'. "
>
> 3. Benkin Routers route user to Censorware Ad Slashdot URL:
> <http://tinyurl.com/ysdd4>
>
> The Register has a story today about Belkin routers redirecting their
users'
> network traffic. To me, this seems like the logical next step after
> top-level domain name servers piping ads to your browser. Now the routers
> themselves hijack the traffic they are supposed to, uh, route -- and
you'll
> love where they send you instead. But it's OK because you can opt out.
> Incidentally, the Crystal Ball Award goes to Seth Finkelstein, who in
> 2001 quoted John Gilmore's famous aphorism about the internet, and asked
> "What if censorship is in the router?"
>
> _Vin
>
>
> _______________________________________________
> firewall-wizards mailing list
> firewall-wizards@xxxxxxxxxxxxxxxxxx
> http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
>
>
>
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Other Internet Software Marketing Sites:
> World of Windows Networking: http://www.windowsnetworking.com Leading
> Network Software Directory: http://www.serverfiles.com
> No.1 Exchange Server Resource Site: http://www.msexchange.org Windows
> Security Resource Site: http://www.windowsecurity.com/ Network Security
> Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions:
> http://www.ntfaxfaq.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion List as:
> gregstelatel@xxxxxxxxxxx To unsubscribe visit
> http://www.webelists.com/cgi/lyris.pl?enter=isalist
>
>
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Other Internet Software Marketing Sites:
> World of Windows Networking: http://www.windowsnetworking.com
> Leading Network Software Directory: http://www.serverfiles.com
> No.1 Exchange Server Resource Site: http://www.msexchange.org
> Windows Security Resource Site: http://www.windowsecurity.com/
> Network Security Library: http://www.secinf.net/
> Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion List as:
> johnlist@xxxxxxxxxxxxxxxxxxx
> To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Other related posts:
