[Nottingham] Many router reported to have port 32674 open

Peter Stokes peter at ashlyn.co.uk
Wed Jan 8 09:33:30 UTC 2014 

Hi Rory

I have no issue with routers updating security issues, but surely letting them decide via pull, rather than push makes more sense, especially if a rogue site could be made to push a malicious update. Open up all ports anyone?

Sounds more like developer laziness to me.

Have to say, have used Draytek for many years now and can only recommend them, and no they do not have the port open.

Peter
---------------------------
Peter Stokes
Ashlyn Computer Services
Tel: 01636 627990
Mbl: 07977 532320
---------------------------



On 8 Jan 2014, at 09:09, Rory Holland <me at rory.sh> wrote:

> In general, I'd agree with silently pushing firmware updates to consumer routers - it's highly unlikely most router owners would think to check for an update, and would go unaware of any unpatched security issues.
> 
> 
> On 8 January 2014 08:06, Dan Caseley <dan at caseley.me.uk> wrote:
> Crikey! Since the Superhub doesn't have the option to block a port in the FW, I'll try redirecting it to a vacant IP. 
> Firmware checks should surely be a pull mechanism, not a push?
> 
> That's bumped replacing this crappy router up the priority list a bit! Thanks!
> 
> Dan
> 
> On 7 Jan 2014 10:17, "Jason Irwin" wrote:
> >
> > So this wee story is doing the rounds just now:
> > http://www.ghacks.net/2014/01/06/find-router-listening-backdoor-port-32764/
> >
> > And the great news is the VM SuperHub (both versions) is affected. Nice.
> > Of course, that only matters if you are using as a router.
> > And, of course, it only matters if that port is being used for "The
> > League of Evil" (or whatever).
> >
> > I know VM keep remote access to the router in order to push firmware
> > updates etc; so could this be the port they use for such a thing? Anyone
> > know?
> >
> > --
> > ╔═════════════╦══════════════════════════════════════════╗
> > ║ Jason Irwin ║ OpenPGP (GPG/PGP) Public Key: 0xD0C592B1 ║
> > ║             ║ Import from hkp://subkeys.pgp.net> > ╚═════════════╩══════════════════════════════════════════╝
> >
> > _______________________________________________
> > Nottingham mailing list
> > Nottingham at mailman.lug.org.uk
> > https://mailman.lug.org.uk/mailman/listinfo/nottingham
> 
> 
> _______________________________________________
> Nottingham mailing list
> Nottingham at mailman.lug.org.uk
> https://mailman.lug.org.uk/mailman/listinfo/nottingham
> 
> 
> 
> -- 
> Rory Holland
> me at rory.sh
> _______________________________________________
> Nottingham mailing list
> Nottingham at mailman.lug.org.uk
> https://mailman.lug.org.uk/mailman/listinfo/nottingham

More information about the Nottingham mailing list