linksys firewall router
Results 1 to 6 of 6

Thread: linksys firewall router

  1. #1
    Senior Member
    Join Date
    Dec 2001
    Posts
    304

    linksys firewall router

    I have a linksys firewall router. I forget the model number but it is the standard everyday one.
    Anyways, I have it set to allow me to connect and edit settings from a remote location. The thing is when I do I have to log in and the login box says :

    Linksys BEFSX41

    I would like that removed as to not really be able to identify what kind of router it is to the outside world.

    I am thinking that is done via a .htaccess file wich will probably be in the linksys dir somewhere but I was kindof looking for a confermation of that or maybe someone that did it them selfs that could tell me about it
    Violence breeds violence
    we need a world court
    not a republican with his hands covered in oil and military hardware lecturing us on world security!

  2. #2
    Senior Member Maestr0's Avatar
    Join Date
    May 2003
    Posts
    604

    LinkSys Router

    I highly recommend you do not allow external access to your LinkSys router for the following reasons. Any decent portmapper such as Nmap will fingerprint it easily regardless of whether it announces itself or not and secondly Linksys routers dont really require a username only the password (at least that I know of) meaning someone can use a brute/dictionary attack on your router VERY easily and VERY quickly.

    As an alternative allow a secure connection to a hardened linux box behind the router using port fowarding and once authenticated there you can use the linux box(having an internal address) to access the router.


    -Maestro

  3. #3
    Senior Member
    Join Date
    Feb 2003
    Posts
    109
    Im with Maestr0 on this one. Also note that there have been recent vulnerabilities found with remote web administration on Linksys firewall/routers. Also, linksys doesn't provide any intrusion detection ability so all it takes is someone with an HTTP basic auth brute forcer like Brutus to brute force your password. If you need to remote admin, forward a port to an internal box with SSH and then connect to your router from there.
    $person!=$kiddie or die(\"Alas, die you hotmail hacker!!\");
    SecureVision

  4. #4
    Senior Member
    Join Date
    Aug 2002
    Posts
    651
    Ugh!!! At the risk of sounding redundant, do NOT use Remote Administration. You are inviting someone to brute-force your password, and believe me, it's really simple. If you can't setup a Linux machine behind the router to make the secure connection over the net, then configure it on your Windows box - if that's what you are working with. There are plenty of howtos for setting this up. Once you tunnel to this vpn server, you can administer the router from inside your network. Anyhow, you definitely want as secure a connection as possible when connecting to or behind your router.


    Good luck.
    Opinions are like holes - everybody\'s got\'em.

    Smile

  5. #5
    Senior Member
    Join Date
    Jul 2001
    Posts
    343

    Red face Linksys Router

    I use Linksys Routers for a number of my customers and I DO NOT USE Remote Admin
    on the Linksys.
    I use other methods which I will not go into to
    manage the Routers.
    Personally, The Linksys is a great piece of equipment
    and I have not had any security problems with the Router...
    As long as you use common sense....
    Franklin Werren at www.bagpipes.net
    Yes I do play the Bagpipes!

    And learning to Play the Bugle

  6. #6
    Senior Member
    Join Date
    Mar 2003
    Posts
    217
    also, and this is common sense, but dont' have your password be anything obvious. make it something silly like w00dr0w_W1ls0n or something. it may seem tedious, but the more complicated you make it, the more complicated it is for people to crack.

    note: using words from foreign languages does work, but keep in mind that crackers don't all speak english...

    just a thought.
    i\'m starting to think that i\'m bound to always be the first guy on the second page of the thread.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •