[PLUG] Fun with IPTables
Rogan Creswick
creswick at gmail.com
Fri Jul 28 20:35:05 UTC 2006
On 7/28/06, Tim Slighter <tcslighter at gmail.com> wrote:
> The real solution is to revert back to direct cable connection for home
> networks and toss the wireless stuff.
How does this prevent some one on the other end of the connection from
sniffing your password? How do you know there are no malicious
monitors between your isp and your destination? Wired networks aren't
really that much more secure than wireless.
> As for SSH tunnels, I beg to disagree and contend that there should not even
> be an SSH tunnel, the less services running on your home system, the less
> opportunity for people trying to find a way in.
Is an ssh tunnel really a service? Isn't the standard practice to
make them local-only, and close the tunnel whenever you aren't
personally using it? I fail to see how this is less secure than not
using encryption.
--Rogan
>
>
>
> On 7/28/06, Sean Whitney <sean.whitney at gmail.com> wrote:
> >
> > That's why you set up ssh tunnels for everything on your laptop.....
> >
> >
> > Sean
> >
> > Tim Slighter wrote:
> > > Some food for thought for the paranoid, ever wondered if when you hop
> > onto
> > > someone's wireless network for free, do they have an entire arsenal of
> > > sniffers hooked up on their wireless network and they are capturing all
> > of
> > > your traffic so it can be used later? Last time I accidentally ended up
> > on
> > > someone else's wireless network without any authentication, wep, or mac
> > > filtering and got a DHCP address, I started wondering, suppose this is a
> > > trap or a home grown honey pot and they are harvesting sniffed
> > passwords?
> > >
> > > On 28 Jul 2006 12:01:08 -0700, Russell Senior <russell at personaltelco.net
> > >
> > > wrote:
> > >>
> > >> >>>>> "Alan" == Alan Olsen <alan.olsen at gmail.com> writes:
> > >>
> > >> Alan> http://www.ex-parrot.com/~pete/upside-down-ternet.html
> > >>
> > >> Which begins: "My neighbours are stealing my wireless internet
> > >> access. I could encrypt it or alternately I could have fun."
> > >>
> > >> Or, alternatively, you could decide to announce that it is
> > >> intentionally available for sharing. See the Personal Telco Project,
> > >> for example:
> > >>
> > >> <http://www.personaltelco.net/>
> > >>
> > >> With all the recent hoo-haw over the Unwire Portland (MetroFi)
> > >> project, it bares realizing that we could easily have vastly better
> > >> wireless network access than MetroFi can ever provide *this afternoon*
> > >> if people simply decided to affirmatively, intentionally share their
> > >> existing internet access. Individually-deployed wireless is so dense
> > >> in Portland *today* that it's not even funny. How powerful and
> > >> generally useful could it be if we all decided to share it?
> > >>
> > >>
> > >> --
> > >> Russell Senior, Secretary
> > >> russell at personaltelco.net
> > >> _______________________________________________
> > >> PLUG mailing list
> > >> PLUG at lists.pdxlinux.org
> > >> http://lists.pdxlinux.org/mailman/listinfo/plug
> > >>
> > > _______________________________________________
> > > PLUG mailing list
> > > PLUG at lists.pdxlinux.org
> > > http://lists.pdxlinux.org/mailman/listinfo/plug
> > >
> >
> > _______________________________________________
> > PLUG mailing list
> > PLUG at lists.pdxlinux.org
> > http://lists.pdxlinux.org/mailman/listinfo/plug
> >
> _______________________________________________
> PLUG mailing list
> PLUG at lists.pdxlinux.org
> http://lists.pdxlinux.org/mailman/listinfo/plug
>
More information about the PLUG
mailing list