On Jun 14, 7:06*am, "Kerry Brown" <ke...@kdbNOSPAMsys-tems.c*a*m>
wrote:
> "David H. Lipman" <DLipman~nosp...@Verizon.Net> wrote in messagenews:x3E4k.13213$8q2.5746@trnddc02...
>
> > From: "Kerry Brown" <ke...@kdbNOSPAMsys-tems.c*a*m>
>
> > | There are other exploits that do this as well. The best protection
> > against
> > | this is to use a strong password on your router.
> > |
>
> > Yes. *There have been discussions about SOAP in conjunction with uPnP..
> > However using uPnP
> > you may be able to bypass the TCP port 80 authentication.
>
> And turn off uPnP. I forgot about that. It's the first thing I do with
> anything I set up that may have it enabled. If you can believe this
> Microsoft wants uPnP turned on so they can automagically configure the
> router with the still in beta SBS 2008. Trustworthy computing :-)
>
> --
> Kerry Brown
I've compiled a checklist to follow
http://extremesecurity.blogspot.com/...-hijacked.html
Reply With Quote