All rightie then. If you use Foxit Reader, update to the latest version, because (surprise) the bad guys are now exploiting vulnerabilities in older versions of Foxit Reader. Click here for updates. If you use Adobe Reader instead, update that too.
If you use Internet Explorer on WinXP or Vista, I suggest updating to IE8. IE8 has some new security features, including pretty good filtering against malware, and on Vista systems, IE8 also has its Data Execution Prevention feature enabled by default. In fact, even if you don't normally use IE for anything, I'd suggest installing IE8 anyway.
If you have Sun Java Runtime installed, update it to JRE 6 Update 13, available at http://java.sun.com/javase/downloads/index.jsp, to fix some security vulnerabilities. Java is pretty widespread, and is installed by default on many factory-built computers, so you might have it whether you realize it or not... check your installed software. If you have no known use for Java, I suggest uninstalling it until you do.
Lastly, there's some buzz about attacks on routers. Many people have a router, sitting between their modem and their computer(s). Routers let you split your Internet connection among many computers, and they serve as a "bodyguard" against attacks and probes from computers on the Internet. Overall, they're a good thing to have.
But routers can sometimes be attacked and subverted. So can modems. One of the main problems is that they come from the factory with a publicly-known password
Simple solution: change the password to something else. Add a symbol and/or a numeral to the password, so it'll withstand a "dictionary" attack.
I have an all-in-one "gateway" device that's both a modem, and sort of a router too Log into it and give it a new, strong password.
I also have a separate router, not just a modem/gateway box Then you should log into both devices (your gateway/modem and your router) and give each of them a new, strong password.
My modem doesn't seem to be configurable Some modems aren't configurable, so if you can't get into the modem, just configure your router.
OK, how do I set a new password? Home routers and modems are configured by using a Web browser. Generally, the device that your computer is currently connected to will be accessible at http://192.168.0.1 or http://192.168.1.1 and will present you with a username/password prompt. A quick Google for "default password your brand & model of device" should tell you what to use.
Once you've logged onto your device, there should be a link for setting the password... explore the menu system a little, if necessary. The pictures below show my two devices, a crummy ActionTEC DSL gateway/modem, and a Netgear RP614 router.
Above: my modem's password can be set here...
Above: ...and my router's password can be set here.
While you're logged into each device, I suggest disabling Universal Plug 'n Play (UPnP) if it happens to be enabled (unless you actually use UPnP). This is another feature that the bad guys sometimes exploit.
Above: making sure UPnP is disabled on my router.
If your devices have wireless access features, then either enable encryption on your wireless, or disable wireless altogether if you don't actually need it, so unauthorized computers can't connect to your wireless.
Above: making sure my modem's wireless is disabled, or at least using encryption (WPA2 is best, followed by WPA and then WEP... use the best one that all your computers can handle). If my router had wireless features, I would also check my router in the same way.
I have both a router and a gateway/modem, but I only seem to be able to log into the router. How do I get to the modem?
One option is to connect a computer directly to the modem, bypassing the router, and then visit http://192.168.0.1 or http://192.168.1.1 as the case may be. Then you can do the necessary configuration directly. Make sure your computer's firewall is fully enabled, or that the modem is disconnected from its Internet cable, so the computer cannot be attacked while you're doing this.
Personally, I prefer to change the addresses that the router uses to communicate with my computers, so I can access either the modem or the router at any time. I use the LAN IP address settings shown below, and can log into my router at http://10.0.0.1 and my modem/gateway at http://192.168.0.1. If you decide to make this change, you may need to take an additional step to get your computer to use a 10.0.0.x address... restarting the computer would be one simple, no-brainer method.
How are routers attacked, anyway? Historically, I believe the most popular method is an "inside attack" that is performed by exploiting your computer's Flash Player and making it run a scripted sequence that reprograms your router's DNS settings. The result is that your computers can be transparently redirected to faked websites that steal your log-in information (PayPal, for example). These attacks are platform-independent, so this is one of the reasons to keep your Flash Player and other browser add-ons (QuickTime, Adobe Reader, Foxit Reader, Sun Java, RealPlayer, WinAmp, etc) up-to-date regardless of your operating system of choice.
The current buzz is regarding specific families of DSL gateway/router/modem boxes that can be subverted from "outside" under some circumstances, and used to form a botnet without the owner's knowledge. More info is available at http://dronebl.org/blog/8 if you're interested in this particular example.
If you use Internet Explorer on WinXP or Vista, I suggest updating to IE8. IE8 has some new security features, including pretty good filtering against malware, and on Vista systems, IE8 also has its Data Execution Prevention feature enabled by default. In fact, even if you don't normally use IE for anything, I'd suggest installing IE8 anyway.
If you have Sun Java Runtime installed, update it to JRE 6 Update 13, available at http://java.sun.com/javase/downloads/index.jsp, to fix some security vulnerabilities. Java is pretty widespread, and is installed by default on many factory-built computers, so you might have it whether you realize it or not... check your installed software. If you have no known use for Java, I suggest uninstalling it until you do.
Lastly, there's some buzz about attacks on routers. Many people have a router, sitting between their modem and their computer(s). Routers let you split your Internet connection among many computers, and they serve as a "bodyguard" against attacks and probes from computers on the Internet. Overall, they're a good thing to have.
But routers can sometimes be attacked and subverted. So can modems. One of the main problems is that they come from the factory with a publicly-known password
Simple solution: change the password to something else. Add a symbol and/or a numeral to the password, so it'll withstand a "dictionary" attack.I have an all-in-one "gateway" device that's both a modem, and sort of a router too Log into it and give it a new, strong password.
I also have a separate router, not just a modem/gateway box Then you should log into both devices (your gateway/modem and your router) and give each of them a new, strong password.
My modem doesn't seem to be configurable Some modems aren't configurable, so if you can't get into the modem, just configure your router.
OK, how do I set a new password? Home routers and modems are configured by using a Web browser. Generally, the device that your computer is currently connected to will be accessible at http://192.168.0.1 or http://192.168.1.1 and will present you with a username/password prompt. A quick Google for "default password your brand & model of device" should tell you what to use.
Once you've logged onto your device, there should be a link for setting the password... explore the menu system a little, if necessary. The pictures below show my two devices, a crummy ActionTEC DSL gateway/modem, and a Netgear RP614 router.
Above: my modem's password can be set here...
Above: ...and my router's password can be set here.
While you're logged into each device, I suggest disabling Universal Plug 'n Play (UPnP) if it happens to be enabled (unless you actually use UPnP). This is another feature that the bad guys sometimes exploit.
Above: making sure UPnP is disabled on my router.
If your devices have wireless access features, then either enable encryption on your wireless, or disable wireless altogether if you don't actually need it, so unauthorized computers can't connect to your wireless.
Above: making sure my modem's wireless is disabled, or at least using encryption (WPA2 is best, followed by WPA and then WEP... use the best one that all your computers can handle). If my router had wireless features, I would also check my router in the same way.
I have both a router and a gateway/modem, but I only seem to be able to log into the router. How do I get to the modem?
One option is to connect a computer directly to the modem, bypassing the router, and then visit http://192.168.0.1 or http://192.168.1.1 as the case may be. Then you can do the necessary configuration directly. Make sure your computer's firewall is fully enabled, or that the modem is disconnected from its Internet cable, so the computer cannot be attacked while you're doing this.
Personally, I prefer to change the addresses that the router uses to communicate with my computers, so I can access either the modem or the router at any time. I use the LAN IP address settings shown below, and can log into my router at http://10.0.0.1 and my modem/gateway at http://192.168.0.1. If you decide to make this change, you may need to take an additional step to get your computer to use a 10.0.0.x address... restarting the computer would be one simple, no-brainer method.
How are routers attacked, anyway? Historically, I believe the most popular method is an "inside attack" that is performed by exploiting your computer's Flash Player and making it run a scripted sequence that reprograms your router's DNS settings. The result is that your computers can be transparently redirected to faked websites that steal your log-in information (PayPal, for example). These attacks are platform-independent, so this is one of the reasons to keep your Flash Player and other browser add-ons (QuickTime, Adobe Reader, Foxit Reader, Sun Java, RealPlayer, WinAmp, etc) up-to-date regardless of your operating system of choice.
The current buzz is regarding specific families of DSL gateway/router/modem boxes that can be subverted from "outside" under some circumstances, and used to form a botnet without the owner's knowledge. More info is available at http://dronebl.org/blog/8 if you're interested in this particular example.
Last edited:
, and maybe you can be locked & loaded when the bad guys try to exploit your computers and networks too :candle:
It's hard to keep on top of them all sometimes... I seldom miss having 70 computers to maintain. Four bicycles isn't always easy either, but bicycle security tends to be simpler 
