Re: Home wireless free hotspot

Les derniers commentaires publiés sur SecuObs (1-5):

- ESRT @DidierStevens - Hackin9 August issue Securing The Cloud - Microsoft LNK vulnerability fix coming on Monday - Script Video evilDEB.sh v0.1 - Metasploit - ESRT @WebSecurityNews - Black Hat: Researchers poke holes in HTTPS, SSL Web browser security - ESRT @edsmiley @jeremiahg - My BlackHat slides posted, Breaking Browsers: Hacking Auto-Complete Les derniers commentaires publiés sur SecuObs (6-25) Tous les commentaires publiés sur SecuObs avant les 5 derniers

[Message Precedent sur la mailing][Message Suivant sur la mailing][Precedent dans le fil][Prochain dans le fil][Index par Date][Index par fil] Re: Home wireless free hotspot

I too was struck by how generous you were towards your immediate neighbors.

I second what Jonathan posited as consideration with respect to the SLA you have with your ISP.

Have you considered your potential liability by providing this 'open' wireless subnet? For example, what if your benefactors decided to engage in unauthorized pen-testing of exposed DoD networks? Or, simpler yet, they retrieve files which on discovery turn out to be related to child-p0rn. Are you prepared to be pulled into a legal net based on external network activity? Granted, you may eventually be cleared of wrong-doing in a court of law. But, you're likely to be convicted in a court of public opinion. Is the admirable goal of sharing bandwidth worth the cost to you and your reputation should a worse case scenario materialize? On Mon, Mar 15, 2010 at 6:05 PM, Johnathan <martinez85@xxxxxxxxxxxxxxxxxx> wrote: > How sweet of you...

> > Now matter how kind your intentions are, you may want to check the terms and conditions of the agreement of the contract you hold with your service provider.

> > You legally may not be allowed to do such a thing you are proposing.

> > You may be aware of this already, just wanted to put it out there for others who may have the same mind set as you.

> > ---- > Johnathan > > Sent via BlackBerry by AT&T > > -----Original Message----- > From: "John Lightfoot" <jlightfoot@xxxxxxxxx> > Date: Fri, 12 Mar 2010 15:10:40 > To: <security-basics@xxxxxxxxxxxxxxxxx> > Subject: Home wireless free hotspot > > Hello, > > I have a home wireless network that I’d like to make available to neighbors > who need to borrow a connection from time to time. Consider it karmic > repayment for the times I’ve had to borrow someone else’s open connection.

> Of course, I’d like to do it securely, so I’m looking for some advice.

> > My main network has a wireless router connected to the Internet, with a few > wired connections to my home computers. The main router’s wireless network > is protected by WPA, access control via MAC address, etc. My thought is I > would attach a second wireless router (Netgear) to a port off the main > router and leave it unsecured, using a second subnet, and block any routing > between the two subnets, other than straight out to the Internet, but I’m > not sure the best way to do that.

> > So, a few questions: > > If I set up a second router with a subnet “subservient” to my main router, > presumably it has to get an IP address within the address space of the main > network, but how can I limit access to that network to only my Internet > interface? > > Would it make more sense for my secure network to be subservient to the main > network, i.e. open up the main network and secure a secondary subnet off it? > > I also have a Secure Computing SG 300 Firewall/VPN appliance, could I > configure that help keep the networks separate and my home network secure? > It’s got a lot of nice features, but I’m not sure it would help make my > configuration more secure.

> > This may be a very bad idea, so I’d also be happy to hear why that’s so if > it’s true.

> > Thanks for any advice.

> > > John Lightfoot > > > > > ------------------------------------------------------------------------ > Securing Apache Web Server with thawte Digital Certificate > In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

> > link://[click] > ------------------------------------------------------------------------ > > -- Elect Rick Saffery to Maryland House of Delegates - District 45 Eternus vigilance est pretium of licentia.

link://[click] ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

link://[click] ------------------------------------------------------------------------

References:
- Home wireless free hotspot
- Re: Home wireless free hotspot

Precedent par Date: Re: Home wireless free hotspot
Suivant par Date: Re: Home wireless free hotspot
Precedent par fil : Re: Home wireless free hotspot
Suivant par fil : RE: Home wireless free hotspot
Index(s):
- Date
- Fil

Archives de la liste de diffusion Secunia
Archives de la liste de diffusion BugTraq
Archives de la liste de diffusion DailyDave
Archives de la liste de diffusion FunSec
Archives de la liste de diffusion Full Disclosure
Archives de la liste de diffusion Focus-IDS (FD)
Archives de la liste de diffusion Webappsec (FD)
Archives de la liste de diffusion Security-basics (FD)
Archives de la liste de diffusion Vulndiscuss
Archives de la liste de diffusion Vulnwatch

Les derniers commentaires publiés sur SecuObs (6-25):

- rebind - DNS Rebinding Tool - ESRT @ToolsWatch - DOMTracer - Firefox Plugin Trace DOM and JavaScript Calls just released - ESRT @Carlos_Perez @sullrich - pfSense gets props for being the only router software defending against dns rebinding - ESRT @backtracklinux @emgent - Dharmaencoder NOW available in BackTrack 4 Repository - @BlackHatEvents @nathanhamiel - ESRT @jcran @ChrisJohnRiley - New release of PacketFu 1.0 at BSidesLV - Ruby packet manipulation - ESRT @curphey - Taint mode for Python - Cisco Internet Streamer Web Server Directory Traversal Vulnerability - Win32 Kernel Debugging with BinNavi - Playing With Tabnabbing - Introducing TitanMist - BSidesLV Beyond r57 - Snort 2.8.6.1 and Snort 2.9 Beta Released - Suricata 1.0.1 released - Wireshark 1.2.10, 1.0.15, and 1.4.0rc2 Released - SET 0.6 - Social Engineering Toolkit by @dave_rel1k - ESRT @maltainfosec @sandrogauci - acunetix just published a video on facebook xss exploitation - ESRT @dragosr @ChrisPaget - Extreme-range RFID - Slides, whitepaper, notes, and an open challenge - ESRT @phenrycissp - Researchers uncover Cisco firewall vulnerabilites, McAfee console flaws - Sourcefires open source framework for deep threat inspection - BitBlaze tool boosts bug-hunting productivity 10-fold Les cinq derniers commentaires publiés sur SecuObs Tous les commentaires publiés sur SecuObs avant les 25 derniers

SecuToolBox :

Bluetooth Stack Smasher v0.6 / Bluetooth Stack Smasher v0.8 / Slides Bluetooth Eurosec 2006 / Exposé vidéo Windows Shellcode - Kostya Kortchinsky / Exposé audio Reverse Engineering - Nicolas Brulez / Exposé vidéo Securitech - Pierre Betouin / WEP aircrack + Ubiquiti (MadWifi) 300 mW + Yagi / Secure WIFI WPA + EAP-TLS + Freeradius / Audit Windows / Captive Password Windows / USBDumper / USBDumper 2 / Hacking Hardware / WishMaster backdoor / DNS Auditing Tool / Ettercap SSL MITM / Exploit vulnérabilités Windows / Memory Dumper Kernel Hardening / Reverse Engineering / Scapy / SecUbuLIVE CD / Metasploit / eEye Blink Sec Center / eEye Retina Scanner + d'outils / + de tutoriels

Mini-Tagwall des articles publiés sur SecuObs :

sécurité, exploit, windows, microsoft, attaque, réseau, outil, vulnérabilité, audit, système, virus, internet, données, metasploit, présentation, linux, bluetooth, protocol, source, vista, scanner, réseaux, shell, rootkit, engineering, conférence, trames, paquet, téléphone, wishmaster, sysun, noyau, mobile, libre, botnet, https, téléphones, rapport, mémoire, scapy, google, patch, reverse, navigateur, snort + de mots clés avec l'annuaire des articles publiés sur SecuObs

Archives Failles Secunia :

- SA38830 Symantec Products File Parsing Multiple Vulnerabilities - SA40681 JBoss Enterprise SOA Platform Multiple Security Issues - SA38704 Lotus Notes File Parsing Multiple Vulnerabilities - SA40747 Cisco Multiple Products TLS Session Renegotiation Plaintext Injection - SA40730 IBM AIX BIND DNSSEC Cache Poisoning Vulnerability + d'archives failles avec Secunia et SecuMail

Archives Mailing Full Disclosure :

- Full-disclosure Jonathan Plourde est absent(e). - Full-disclosure Claude Mercier/CLSC-CHSLD BVLV/Reg03/SSSS est absent(e). - Full-disclosure NULL + H4CK3R Meet in Delhi on 31st July 2010 - Full-disclosure WAF fail - Re: Full-disclosure Day of bugs in WordPress 2 + d'archives Full Disclosure avec SecuMail

Archives Mailing Bugtraq :

- Akamai Download Manager arbitrary file download & execution - Insomnia : ISVA-100730.1 - CMS Multiple SQL injection Vulnerabilities - Day of bugs in WordPress 2 - SECURITY DSA 2077-1 New openldap packages fix potential code execution - HITB-Ann Reminder: HITB2010 Malaysia Call for Papers Closing August 9th - security bulletin HPSBUX02556 SSRT100014 rev.2 - HP-UX Running rpc.ttdbserver, Remote Execution of Arbitrary Code + d'archives Bugtraq avec SecuMail

Mini-Tagwall de l'annuaire video :

security, vmware, virus, biometric, metasploit, windows, lockpicking, password, botnet, tutorial, attack, network, linux, exploit, crypt, source, iphone, secconf, server, shmoocon, conficker, engineering, virtual, wimax, ettercap, rootkit, wireshark, reverse, hackitoergosum, cisco, internet, systm, hacker, firewall, wireless, openbsd, meterpreter, openssh, access, conference, knoppix, arduino, backtrack, brucon, remote + de mots clés avec l'annuaire des videos

Mini-Tagwall des articles de la revue de presse :

security, microsoft, windows, hacker, attack, network, vulnerability, google, exploit, malware, internet, remote, iphone, server, inject, patch, apple, twitter, mobile, virus, ebook, facebook, vulnérabilité, crypt, source, linux, password, intel, research, virtual, phish, access, tutorial, trojan, social, privacy, firefox, adobe, overflow, office, cisco, conficker, botnet, pirate, sécurité + de mots clés avec l'annuaire de la revue de presse

Mini-Tagwall des Tweets de la revue Twitter :

security, linux, botnet, attack, metasploit, cisco, defcon, phish, exploit, google, inject, server, firewall, network, twitter, vmware, windows, microsoft, compliance, vulnerability, python, engineering, source, kernel, crypt, social, overflow, nessus, crack, hacker, virus, iphone, patch, virtual, javascript, malware, conficker, pentest, research, email, password, adobe, apache, proxy, backtrack + de mots clés avec l'annuaire de la revue Twitter