Kiwi User  wrote:
> On Thu, 04 Jan 2018 05:23:43 +0000, The Natural Philosopher wrote:
>
> > The whole world?
> >
> > That would be me and just who?
> >
> > No one else is on the network
> >
> This may be teaching grandma to suck eggs, but... are you sure - IOW do
> you know that your external LAN interface is secure? Have you tested it?
>
What do you mean by 'external LAN interface'?  His (and my) LAN is on
a private IP range and is mostly wired and within the house.  There is
WiFi but I doubt if it reaches anyone else's house and you can't stop
in the lane outside without causing an obstruction (and lots of dog
barking).


> A surprising number of them aren't, having 'features' such as exposing
> their admin port to the outside world as well as to the LAN and default
> admin passwords which a lot of people never change.
>
Ah, you mean the outside facing *WAN* interface of the NAT router.
Yes, there can be security holes put there by ISPs and such but since
I (and probably The Natural Philosopher) use our own (not the ISP's)
router that's unlikely.


> I hardened mine so that, according to Gibson Research Labs Shields-Up
> tool [*], it now leaves nothing visible to the outside world.  This
> required configuration changes from its default setup as well as a
> password change.
>
> [*]  https://www.grc.com/x/ne.dll?bh0bkyd2
>
I ran some tests of this sort on mine a while ago, seemed to confirm
that it's fairly 'hard'.


--
Chris Green
·

--- SoupGate-Win32 v1.05