Wazua
»
Market
»
Technical
»
Unprofessional ISPs
Rank: Elder Joined: 12/17/2009 Posts: 3,583 Location: Kenya
|
I think I am looking at the current scenario from a biased point of view, yes it's good to secure your router - lakini the alarm created is needless, for a typical installation supporting pcs and mobile devices - there is nothing to be worried about even if by chance someone managed to log into your router, a logger can not be installed on your pc via the router nor can your files be stolen via the same.
But I am not an IT expert, so not in a position of authority to discuss access via the router, through the ftp server on the router to your pictures folder on your pc.
|
|
|
Rank: New-farer Joined: 8/26/2014 Posts: 63
|
@nakuja I would be very concerned if someone unauthorized gained access to my router. That gives them entire access to my network, be it at home or in the office. And yes, your files can be stolen in this manner. Imagine an intruder having access to your main door at home; what wouldn't they be unable to do in your house? Be careful.
|
|
|
Rank: Member Joined: 5/6/2011 Posts: 391 Location: Nairobi
|
nakujua wrote:I think I am looking at the current scenario from a biased point of view, yes it's good to secure your router - lakini the alarm created is needless, for a typical installation supporting pcs and mobile devices - there is nothing to be worried about even if by chance someone managed to log into your router, a logger can not be installed on your pc via the router nor can your files be stolen via the same.
But I am not an IT expert, so not in a position of authority to discuss access via the router, through the ftp server on the router to your pictures folder on your pc. Actually you should be very concerned ... once someone has access to your router especially one which has vpn capability, port forwarding etc they can create havoc on your network, open back doors and all manner of horrors on your network . Intruder is able to see all connected devices, thus can check for all running services , if a vulnerability is found they can easily push a script on your devices and that's it , next time you double click on what you think is Microsoft word .... Lets all be responsible and just be sure to ask your installer for all your credentials and change them. Be sure to change 1. Wifi SSID ( wireless network name ) and password ...most likely they use the same all over 2. router management credentials ( most devices come with a friendly explanation on the right that explains what each setting does ) "You can't have everything. Where would you put it?" - Stephen Wright
|
|
|
Rank: Member Joined: 11/10/2010 Posts: 281 Location: Nairobi
|
Security is usually tiered. It takes more than an insecure router to access files on any device. Just because someone can see how many computers are on the network and the wifi ssid and password does not grant access to files.
Infact the most you can do with that is attempt a phishing hack which most antiviruses will catch.
Just because you enter the bank, doesn't mean that you have access to the vault.
Secure your vault. if it bothers you, put your important data offline.
|
|
|
Rank: New-farer Joined: 1/3/2015 Posts: 86 Location: Bomet
|
The fear mongering on this thread is getting ridiculous. Will you apply these measures when you visit a friend? Or how about public wifi?
In the domain of IT, security should not limit usability.
|
|
|
Rank: Member Joined: 2/27/2014 Posts: 454 Location: Republic of Enchantment.
|
|
|
|
Rank: Member Joined: 5/6/2011 Posts: 391 Location: Nairobi
|
madhaquer wrote:Security is usually tiered. It takes more than an insecure router to access files on any device. Just because someone can see how many computers are on the network and the wifi ssid and password does not grant access to files.
Infact the most you can do with that is attempt a phishing hack which most antiviruses will catch.
Just because you enter the bank, doesn't mean that you have access to the vault.
Secure your vault. if it bothers you, put your important data offline. hah hah hah ..you cannot be serious! Go ahead and reset your enterprise routers to default then post back. The simple fact that someone can actually see your network is doom. "You can't have everything. Where would you put it?" - Stephen Wright
|
|
|
Rank: Elder Joined: 12/17/2009 Posts: 3,583 Location: Kenya
|
Speculz wrote:nakujua wrote:I think I am looking at the current scenario from a biased point of view, yes it's good to secure your router - lakini the alarm created is needless, for a typical installation supporting pcs and mobile devices - there is nothing to be worried about even if by chance someone managed to log into your router, a logger can not be installed on your pc via the router nor can your files be stolen via the same.
But I am not an IT expert, so not in a position of authority to discuss access via the router, through the ftp server on the router to your pictures folder on your pc. Actually you should be very concerned ... once someone has access to your router especially one which has vpn capability, port forwarding etc they can create havoc on your network, open back doors and all manner of horrors on your network . Intruder is able to see all connected devices, thus can check for all running services , if a vulnerability is found they can easily push a script on your devices and that's it , next time you double click on what you think is Microsoft word .... Lets all be responsible and just be sure to ask your installer for all your credentials and change them. Be sure to change 1. Wifi SSID ( wireless network name ) and password ...most likely they use the same all over 2. router management credentials ( most devices come with a friendly explanation on the right that explains what each setting does ) as I said I think I am biased,  but honestly, how on earth will the intruder place a script on your pc via the router that looks like ms word and how will vpn and port forwarding enable them to cause havoc on your android, ios windows 8 home network. the alarm is uncalled for, if you can secure your router go ahead it advisable - but its nothing I would loose sleep over if someone managed to log into my home router
|
|
|
Rank: Elder Joined: 12/17/2009 Posts: 3,583 Location: Kenya
|
Uhondo wrote:@nakuja I would be very concerned if someone unauthorized gained access to my router. That gives them entire access to my network, be it at home or in the office. And yes, your files can be stolen in this manner. Imagine an intruder having access to your main door at home; what wouldn't they be unable to do in your house? Be careful. now how will they steal my pictures on my android phone connected to my home router, as I said there is no need for alarm, for a kawaida home setup,actually my worry would be more on the online actions of the users - the router is the first line of defense in the network, don't undermine that small box - in its default settings it provides decent security for the kawaida home setup.
|
|
|
Rank: Member Joined: 5/6/2011 Posts: 391 Location: Nairobi
|
nakujua wrote:Speculz wrote:nakujua wrote:I think I am looking at the current scenario from a biased point of view, yes it's good to secure your router - lakini the alarm created is needless, for a typical installation supporting pcs and mobile devices - there is nothing to be worried about even if by chance someone managed to log into your router, a logger can not be installed on your pc via the router nor can your files be stolen via the same.
But I am not an IT expert, so not in a position of authority to discuss access via the router, through the ftp server on the router to your pictures folder on your pc. Actually you should be very concerned ... once someone has access to your router especially one which has vpn capability, port forwarding etc they can create havoc on your network, open back doors and all manner of horrors on your network . Intruder is able to see all connected devices, thus can check for all running services , if a vulnerability is found they can easily push a script on your devices and that's it , next time you double click on what you think is Microsoft word .... Lets all be responsible and just be sure to ask your installer for all your credentials and change them. Be sure to change 1. Wifi SSID ( wireless network name ) and password ...most likely they use the same all over 2. router management credentials ( most devices come with a friendly explanation on the right that explains what each setting does ) as I said I think I am biased, but honestly, how on earth will the intruder place a script on your pc via the router that looks like ms word and how will vpn and port forwarding enable them to cause havoc on your android, ios windows 8 home network. the alarm is uncalled for, if you can secure your router go ahead it advisable - but its nothing I would loose sleep over if someone managed to log into my home router :) Nakujua im not an expert either but, simple scenario , The person will create a vpn network on your router , join your network with his machine, scan your network for vulnerabilities or known exploits, use the same , most of us do not have important data BUT , he could also sniff your network and initiate a man in the middle attack , as you connect to your internet banking .... :) as I said mimi si expert so maybe no cause for alarm :) "You can't have everything. Where would you put it?" - Stephen Wright
|
|
|
Rank: Member Joined: 5/6/2011 Posts: 391 Location: Nairobi
|
Speculz wrote:nakujua wrote:Speculz wrote:nakujua wrote:I think I am looking at the current scenario from a biased point of view, yes it's good to secure your router - lakini the alarm created is needless, for a typical installation supporting pcs and mobile devices - there is nothing to be worried about even if by chance someone managed to log into your router, a logger can not be installed on your pc via the router nor can your files be stolen via the same.
But I am not an IT expert, so not in a position of authority to discuss access via the router, through the ftp server on the router to your pictures folder on your pc. Actually you should be very concerned ... once someone has access to your router especially one which has vpn capability, port forwarding etc they can create havoc on your network, open back doors and all manner of horrors on your network . Intruder is able to see all connected devices, thus can check for all running services , if a vulnerability is found they can easily push a script on your devices and that's it , next time you double click on what you think is Microsoft word .... Lets all be responsible and just be sure to ask your installer for all your credentials and change them. Be sure to change 1. Wifi SSID ( wireless network name ) and password ...most likely they use the same all over 2. router management credentials ( most devices come with a friendly explanation on the right that explains what each setting does ) as I said I think I am biased, but honestly, how on earth will the intruder place a script on your pc via the router that looks like ms word and how will vpn and port forwarding enable them to cause havoc on your android, ios windows 8 home network. the alarm is uncalled for, if you can secure your router go ahead it advisable - but its nothing I would loose sleep over if someone managed to log into my home router :) Nakujua im not an expert either but, simple scenario , The person will create a vpn network on your router , join your network with his machine, scan your network for vulnerabilities or known exploits, use the same , most of us do not have important data BUT , he could also sniff your network and initiate a man in the middle attack , as you connect to your internet banking .... :) as I said mimi si expert so maybe no cause for alarm :) Please remember we are talking about changing the default admin credentials ,as you said by default the settings are usually ok for the home network, but think of what would happen if the settings were changed. "You can't have everything. Where would you put it?" - Stephen Wright
|
|
|
Rank: Member Joined: 11/10/2010 Posts: 281 Location: Nairobi
|
@speculz my home router is actually at defaults so anyone at home can connect to it. My email, my files and other data are not and that is what matters.
Just because you change your username and password does not mean that the router cannot be brute forced open. But then what happens next?
Security is tiered and understanding what is being secured and how that is being done is more important than worrying about the password on my router.
|
|
|
Rank: Elder Joined: 12/17/2009 Posts: 3,583 Location: Kenya
|
Speculz wrote:madhaquer wrote:Security is usually tiered. It takes more than an insecure router to access files on any device. Just because someone can see how many computers are on the network and the wifi ssid and password does not grant access to files.
Infact the most you can do with that is attempt a phishing hack which most antiviruses will catch.
Just because you enter the bank, doesn't mean that you have access to the vault.
Secure your vault. if it bothers you, put your important data offline. hah hah hah ..you cannot be serious! Go ahead and reset your enterprise routers to default then post back. The simple fact that someone can actually see your network is doom. 
|
|
|
Rank: Veteran Joined: 11/11/2006 Posts: 971 Location: Home
|
Geoffrey managed to login into my Router. He even told me the name of my SSID. Well, folks on Zuku, better secure your routers. Those who are arguing, provide your Zuku IP addresses so that it be put to test. Thanks for the alert, those who are in doubt, continue so but you have been warned.
|
|
|
Rank: Member Joined: 5/6/2011 Posts: 391 Location: Nairobi
|
madhaquer wrote:@speculz my home router is actually at defaults so anyone at home can connect to it. My email, my files and other data are not and that is what matters.
Just because you change your username and password does not mean that the router cannot be brute forced open. But then what happens next?
Security is tiered and understanding what is being secured and how that is being done is more important than worrying about the password on my router. Have you done a brute force? most people are not bothered to do so due to the effort vs reward, they just check if you are using default creds and thats it ( why make it easy for someone to come in, if you were to use this principle , the please do go ahead and leave your gate and front door open, just because the people in the inside can get out ), Please note we are not talking of SSID or local network, we are talking of someone in China or Russia or jkuat on a coffee break who has done an nmap scan of the zuku block of ips. Good for you for not having your data online. :) "You can't have everything. Where would you put it?" - Stephen Wright
|
|
|
Rank: New-farer Joined: 1/3/2015 Posts: 86 Location: Bomet
|
Theres no shame in admitting IT security is beyond your level of expertise. Internet facing routers, SOHO or otherwise are insecure by design and trivial to attack. These are like the fake "solex" padlocks that every burglar in Nairobi can open with no effort.
|
|
|
Rank: Elder Joined: 12/17/2009 Posts: 3,583 Location: Kenya
|
Speculz wrote:nakujua wrote:Speculz wrote:nakujua wrote:I think I am looking at the current scenario from a biased point of view, yes it's good to secure your router - lakini the alarm created is needless, for a typical installation supporting pcs and mobile devices - there is nothing to be worried about even if by chance someone managed to log into your router, a logger can not be installed on your pc via the router nor can your files be stolen via the same.
But I am not an IT expert, so not in a position of authority to discuss access via the router, through the ftp server on the router to your pictures folder on your pc. Actually you should be very concerned ... once someone has access to your router especially one which has vpn capability, port forwarding etc they can create havoc on your network, open back doors and all manner of horrors on your network . Intruder is able to see all connected devices, thus can check for all running services , if a vulnerability is found they can easily push a script on your devices and that's it , next time you double click on what you think is Microsoft word .... Lets all be responsible and just be sure to ask your installer for all your credentials and change them. Be sure to change 1. Wifi SSID ( wireless network name ) and password ...most likely they use the same all over 2. router management credentials ( most devices come with a friendly explanation on the right that explains what each setting does ) as I said I think I am biased, but honestly, how on earth will the intruder place a script on your pc via the router that looks like ms word and how will vpn and port forwarding enable them to cause havoc on your android, ios windows 8 home network. the alarm is uncalled for, if you can secure your router go ahead it advisable - but its nothing I would loose sleep over if someone managed to log into my home router :) Nakujua im not an expert either but, simple scenario , The person will create a vpn network on your router , join your network with his machine, scan your network for vulnerabilities or known exploits, use the same , most of us do not have important data BUT , he could also sniff your network and initiate a man in the middle attack , as you connect to your internet banking .... :) as I said mimi si expert so maybe no cause for alarm :) my whole concern with all this exploits, man in the middle, hacking, creating vpns and somehow managing to make all the pcs on the network join in that vpn, is that its causing alarm for nothing. for a kawaida home setup there is nothing to worry about, you are better off worrying about the sites you visit, and updating your antivirus - especially if you are using ms windows nodes. its easy walking along hapo mutindawa in umoja, marveling at the beautiful sofas, seeing all the flimsy mbao structures they are stored in at night, but its another thing altogether tying stealing those sofas.
|
|
|
Rank: Member Joined: 5/6/2011 Posts: 391 Location: Nairobi
|
nakujua wrote:Speculz wrote:nakujua wrote:Speculz wrote:nakujua wrote:I think I am looking at the current scenario from a biased point of view, yes it's good to secure your router - lakini the alarm created is needless, for a typical installation supporting pcs and mobile devices - there is nothing to be worried about even if by chance someone managed to log into your router, a logger can not be installed on your pc via the router nor can your files be stolen via the same.
But I am not an IT expert, so not in a position of authority to discuss access via the router, through the ftp server on the router to your pictures folder on your pc. Actually you should be very concerned ... once someone has access to your router especially one which has vpn capability, port forwarding etc they can create havoc on your network, open back doors and all manner of horrors on your network . Intruder is able to see all connected devices, thus can check for all running services , if a vulnerability is found they can easily push a script on your devices and that's it , next time you double click on what you think is Microsoft word .... Lets all be responsible and just be sure to ask your installer for all your credentials and change them. Be sure to change 1. Wifi SSID ( wireless network name ) and password ...most likely they use the same all over 2. router management credentials ( most devices come with a friendly explanation on the right that explains what each setting does ) as I said I think I am biased, but honestly, how on earth will the intruder place a script on your pc via the router that looks like ms word and how will vpn and port forwarding enable them to cause havoc on your android, ios windows 8 home network. the alarm is uncalled for, if you can secure your router go ahead it advisable - but its nothing I would loose sleep over if someone managed to log into my home router :) Nakujua im not an expert either but, simple scenario , The person will create a vpn network on your router , join your network with his machine, scan your network for vulnerabilities or known exploits, use the same , most of us do not have important data BUT , he could also sniff your network and initiate a man in the middle attack , as you connect to your internet banking .... :) as I said mimi si expert so maybe no cause for alarm :) my whole concern with all this exploits, man in the middle, hacking, creating vpns and somehow managing to make all the pcs on the network join in that vpn, is that its causing alarm for nothing. for a kawaida home setup there is nothing to worry about, you are better off worrying about the sites you visit, and updating your antivirus - especially if you are using ms windows nodes. its easy walking along hapo mutindawa in umoja, marveling at the beautiful sofas, seeing all the flimsy mbao structures they are stored in at night, but its another thing altogether tying stealing those sofas. :) Haya . How about if ... you get a job as a guard at those mbao structures, and one night ... you make of with the sofas? Anyway I rest my case :) Btw Zuku connects a lot of businesses .... "You can't have everything. Where would you put it?" - Stephen Wright
|
|
|
Rank: Member Joined: 11/10/2010 Posts: 281 Location: Nairobi
|
@speculz, Scaremongering gets alot of IT guys security related work but I am not convinced that an insecure router can lead to loss of data, it takes much more than that.
Considering the fact that this small box just passes the packets to another box and another box until they get to my destination, a would be hacker has more to gain initiating his mitm attack closer to the destination where there are more gains than at the source.
I won't loose sleep over some idiot phishing through cable customers' routers. Just like you mentioned effort vs reward.
The real gold is sitting elsewhere and the real data thieves know that.
|
|
|
Rank: Veteran Joined: 11/11/2006 Posts: 971 Location: Home
|
madhaquer wrote:@speculz my home router is actually at defaults so anyone at home can connect to it. My email, my files and other data are not and that is what matters.
Just because you change your username and password does not mean that the router cannot be brute forced open. But then what happens next?
Security is tiered and understanding what is being secured and how that is being done is more important than worrying about the password on my router. Someone malicious can lock you out of your network. From the router, they can block MAC addresses of your gadgets from accessing the network. You will be wondering what hit you. I don't have to steal your data but that is enough nuisance. The vulnerable routers also include Corporates. I also rest my case on this topic, at least i learnt my lesson.
|
|
|
Wazua
»
Market
»
Technical
»
Unprofessional ISPs
Forum Jump
You cannot post new topics in this forum.
You cannot reply to topics in this forum.
You cannot delete your posts in this forum.
You cannot edit your posts in this forum.
You cannot create polls in this forum.
You cannot vote in polls in this forum.
|