Ticket #158 (new enhancement)

Opened 9 months ago

Last modified 9 months ago

Firewall outgoing

Reported by: skynetbbs Assigned to:
Priority: critical Milestone:
Component: Webinterface Keywords:
Cc:

Description

Most isp routers are allowing access to it's managment interface. Most isp routers are listening to it's "public ip" which is allowed to be accessed from FON_AP. although ISP's limit internet -> local from port 1 -> 1024... a Fonero could access someones router from FON_AP as they are from the internal side... And hence FON allows "public ip" access... this is a security risk...

could somehow this risk be taken away by Freewlan? using "uamdisallowed"? or using the public ip from the "dyndns" service?

Change History

04/01/08 15:19:31 changed by Crazor

In my opinion, this is not FreeWLAN's nor FON's fault. I think it is insane for a router to allow being managed from the internet. This has been a broad issue here in Germany with routers from T-Com, IIRC. But nevertheless this is in the sole responsibility of the "vulnerable" (read: misconfigured) router and should not lead to further firewall confusion for FON/FreeWLAN users.

04/19/08 22:49:22 changed by

  • milestone deleted.

Milestone 0.9.5 deleted