Am I correct that this is only a problem if you're doing remote administration via HTTPS?<br><br>For instance, I have a dd-wrt router at home, but it is only accessable via http on the internal ports.<br><br>-dc<br><br>
<div class="gmail_quote">On Thu, Dec 23, 2010 at 1:23 PM, Barry Von Ahsen <span dir="ltr"><<a href="mailto:barry@vonahsen.com">barry@vonahsen.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
you can download the code here:<br>
<br>
<a href="http://code.google.com/p/littleblackbox/" target="_blank">http://code.google.com/p/littleblackbox/</a><br>
<br>
then it's in an sqllite db file in bin - it's mostly DD-WRT<br>
<br>
"Cisco","6"<br>
"D-Link","4"<br>
"DD-WRT","6524"<br>
"Linksys","16"<br>
"Netgear","2"<br>
<br>
vendors and models posted here:<br>
<br>
<a href="http://pastebin.com/cbhUZ7HZ" target="_blank">http://pastebin.com/cbhUZ7HZ</a><br>
<br>
vendors and firmware here:<br>
<br>
<a href="http://pastebin.com/uyzjh4yw" target="_blank">http://pastebin.com/uyzjh4yw</a><br>
<br>
<br>
<br>
-barry<br>
<div class="im"><br>
<br>
<br>
<br>
Nathan C. Smith wrote:<br>
> Josh,<br>
><br>
> thanks for pointing this out. Is there a plain listing of suspect manufacturers/devices somewhere?<br>
><br>
> -Nate<br>
><br>
> From: <a href="mailto:cialug-bounces@cialug.org">cialug-bounces@cialug.org</a> [mailto:<a href="mailto:cialug-bounces@cialug.org">cialug-bounces@cialug.org</a>] On Behalf Of Josh More<br>
> Sent: Thursday, December 23, 2010 10:09 AM<br>
> To: <a href="mailto:cialug@cialug.org">cialug@cialug.org</a><br>
> Subject: [Cialug] DD-WRT (and others) Risk<br>
><br>
> Since we still have a list right now, and since I know that tomorrow is a down day for everyone with no obligations other than reading and responding to security threats, I thought I'd share this link: <a href="http://seclists.org/fulldisclosure/2010/Dec/492" target="_blank">http://seclists.org/fulldisclosure/2010/Dec/492</a><br>
><br>
> Nutshell version: If you're running DD-WRT, you might want to roll your own self-signed cert. If you're running one of the others in the DB, you're probably out of luck. If you typically have to analyze SSL traffic for fun or profit, merry Christmas.<br>
><br>
><br>
> Josh More | Senior Security Consultant - CISSP, GIAC-GSLC, GIAC-GCIH<br>
</div>> Alliance Technologies | <a href="http://www.AllianceTechnologies.net" target="_blank">www.AllianceTechnologies.net</a><<a href="http://www.alliancetechnologies.net" target="_blank">http://www.alliancetechnologies.net</a>><br>
<div class="im">> 400 Locust St., Suite 840 | Des Moines, IA 50309<br>
> 515.245.7701 | 888.387.5670 x7701<br>
><br>
> Santa is Secure. Are you?<br>
> <a href="http://www.alliancetechnologies.net/security/santa-2010" target="_blank">http://www.alliancetechnologies.net/security/santa-2010</a><br>
><br>
> How are we doing? Let us know here:<br>
> <a href="http://www.alliancetechnologies.net/forms/alliance-technologies-feedback-survey" target="_blank">http://www.alliancetechnologies.net/forms/alliance-technologies-feedback-survey</a><br>
><br>
><br>
><br>
</div>> ------------------------------------------------------------------------<br>
><br>
> _______________________________________________<br>
> Cialug mailing list<br>
> <a href="mailto:Cialug@cialug.org">Cialug@cialug.org</a><br>
> <a href="http://cialug.org/mailman/listinfo/cialug" target="_blank">http://cialug.org/mailman/listinfo/cialug</a><br>
<br>
_______________________________________________<br>
Cialug mailing list<br>
<a href="mailto:Cialug@cialug.org">Cialug@cialug.org</a><br>
<a href="http://cialug.org/mailman/listinfo/cialug" target="_blank">http://cialug.org/mailman/listinfo/cialug</a><br>
</blockquote></div><br>