Posts: 682
Threads: 98
Joined: Apr 2014
Reputation:
0
05-28-2018, 10:22 PM
(This post was last modified: 05-28-2018, 10:24 PM by newtusmaximus.)
https://www.nytimes.com/2018/05/27/techn...lware.html
Question: How would we check top see if our router had been compromised.?
Is this only a threat if you use VPN?
2006 - HP DC7700p ultraslim Desktop Intel 6300 cpu 4GB Ram LL3.8 64bit.
2007 - Fujitsu Siemens V3405 Laptop 2 GB Ram LL3.6 32bit. Now 32bit Debian 9 + nonfree.
2006 - Fujitsu Siemens Si1520 Laptop Intel T720 cpu 3GB Ram LL5.6 64 Bit
2014 - Fujitsu Siemens Lifebook E754 Intel i7 4712MQ 16GB Ram LL6.6
2003 - RETIRED Toshiba Satellite Pro A10 1 GB RAM LL2.8 32bit
Posts: 63
Threads: 9
Joined: Jun 2017
Reputation:
0
Fake news.
Sleep soundly.
Still running 3.8 and lovin' it (running 5.0 as a triple boot)
Posts: 682
Threads: 98
Joined: Apr 2014
Reputation:
0
Mart,
why is it fake news? Thanks
2006 - HP DC7700p ultraslim Desktop Intel 6300 cpu 4GB Ram LL3.8 64bit.
2007 - Fujitsu Siemens V3405 Laptop 2 GB Ram LL3.6 32bit. Now 32bit Debian 9 + nonfree.
2006 - Fujitsu Siemens Si1520 Laptop Intel T720 cpu 3GB Ram LL5.6 64 Bit
2014 - Fujitsu Siemens Lifebook E754 Intel i7 4712MQ 16GB Ram LL6.6
2003 - RETIRED Toshiba Satellite Pro A10 1 GB RAM LL2.8 32bit
Posts: 63
Threads: 9
Joined: Jun 2017
Reputation:
0
05-29-2018, 02:49 PM
(This post was last modified: 05-29-2018, 03:03 PM by Mart.)
Dear newtusmaximus
I did not intend to be glib in my reply to your posting. I know that you and many others in the community will have legitimate concerns regarding the very important subject of online security.
But given all that is happening politically in America at the moment the question could also be asked why reference an article on the important subject of security tendered by this particular news organization and using these particular sources.
After all, I’m sure there’s an article somewhere in Russia (Russia is no longer a communist country, by the way) telling people to throw away their black box Windows computers because the NSA key contained within them has for years allowed the US government to illegally spy on millions of people all around the world.
Remember, virtue is a relative value.
I would certainly welcome any open source article by any neutral and unbiased security experts that would be able to substantiate the claims and opinions expressed in The New York Times article.
I hope you accept my reply in the spirit of constructiveness and goodwill with which it is intended.
As Larry King, the talk show host, says -
Question More.
Best wishes
Mart
Still running 3.8 and lovin' it (running 5.0 as a triple boot)
Posts: 682
Threads: 98
Joined: Apr 2014
Reputation:
0
Your initial response was not taken as glib
Mine to you was enquiring, so as to learn why you thought it was fake etc. i.e to form my own judgement , and hopefully that info would be of value to to others on this forum.
Whilst I am comfortable ( but not expert) on how to manage PC security, my knowledge of router security is minimal, other that changing from default admin passwords etc. ( and SSIDs if router allows).
Not into VPN, but ensure that router is kept up to date with any firmware changes and block ports wherever viable.
Thanks again for your input.
2006 - HP DC7700p ultraslim Desktop Intel 6300 cpu 4GB Ram LL3.8 64bit.
2007 - Fujitsu Siemens V3405 Laptop 2 GB Ram LL3.6 32bit. Now 32bit Debian 9 + nonfree.
2006 - Fujitsu Siemens Si1520 Laptop Intel T720 cpu 3GB Ram LL5.6 64 Bit
2014 - Fujitsu Siemens Lifebook E754 Intel i7 4712MQ 16GB Ram LL6.6
2003 - RETIRED Toshiba Satellite Pro A10 1 GB RAM LL2.8 32bit
Posts: 63
Threads: 9
Joined: Jun 2017
Reputation:
0
05-29-2018, 04:18 PM
(This post was last modified: 05-29-2018, 04:59 PM by Mart.)
(05-28-2018, 10:22 PM)newtusmaximus link Wrote: Question: How would we check top see if our router had been compromised.?
Is this only a threat if you use VPN?
Hi newtusmaximus
Your original questions and concerns about router and VPN security still stand and I'm sorry if I deflected from that.
I would certainly implore anyone with real technical insight to help with this important subject.
Regards
Mart
Still running 3.8 and lovin' it (running 5.0 as a triple boot)
Posts: 57
Threads: 3
Joined: Apr 2016
Reputation:
0
(05-29-2018, 01:17 PM)newtusmaximus link Wrote: Mart,
why is it fake news? Thanks
Take it straight from the horse´s mouth:
https://www.politico.com/story/2017/01/t...est-234304
Terry Davis Command Line video cracks me up.
Quod delere vos ego faciam permanens.
Posts: 62
Threads: 3
Joined: Oct 2015
Reputation:
0
Because everyone should believe anything that gingernut says? Yeah right! Anything he doesn't agree with he labels "fake news".
There has been several reports about this attack over the last month or so on several tech news sites. Ars Technica has a couple of stories about it, the most recent was only a few days ago.
This isn't the first security alert about routers either, there was a big one last year where several thousand was compromised, that was well reported and verified.
To answer the question about VPN. No it isn't just affecting VPN users, it hits beyond that and takes control of your router, there is also no non technical way of knowing if you're affected or not, so a simple router reboot is the safest way to mitigate it. Rebooting won't get rid of stage one, but it will clear stage two and three from the router. To get rid of all three you need to do a factory reset of the router, that clears everything out.
Posts: 682
Threads: 98
Joined: Apr 2014
Reputation:
0
ptyerman, By Factory Reset I presume, the paperclip insert method - hidden switch, not via the linked pc?
2006 - HP DC7700p ultraslim Desktop Intel 6300 cpu 4GB Ram LL3.8 64bit.
2007 - Fujitsu Siemens V3405 Laptop 2 GB Ram LL3.6 32bit. Now 32bit Debian 9 + nonfree.
2006 - Fujitsu Siemens Si1520 Laptop Intel T720 cpu 3GB Ram LL5.6 64 Bit
2014 - Fujitsu Siemens Lifebook E754 Intel i7 4712MQ 16GB Ram LL6.6
2003 - RETIRED Toshiba Satellite Pro A10 1 GB RAM LL2.8 32bit
Posts: 62
Threads: 3
Joined: Oct 2015
Reputation:
0
Yes, either that or go in to the router settings and select factory reset if the router has that option, most do that I have used.
A factory reset is the only way to clear stage one out the router, although once stage two and three are cleared by a reboot it's now impossible for stage one to connect and install stage two and three again, the FBI seized the domain used for this.
The downside of doing a factory reset of course is it will clear ALL settings, you will have to enter your ISP login details to connect again. Make sure you know these before doing the reset.
