+1
I have always done this. We do have some customer facing routers that
had this compromise.
Fixed by doing the same to them.
Does anyone have a source for these HAXORS ?
If so Share :)
On 8/5/2018 2:32 PM, Lewis Bergman wrote:
It can be inconvenient, but we only allow connections from our ip at
work. If you want in, you have to VPN there first.
On Sun, Aug 5, 2018, 1:12 PM CBB - Jay Fuller
<par...@cyberbroadband.net <mailto:par...@cyberbroadband.net>> wrote:
Looking through all of our routers, most running the latest
firmware, most running non-standard winbox ports, i still see the
following today:
* accept rule in firewall (for port 10438 i think, same port
enabled on ip -> socks)
* account added called "service"
* socks config changed ; enabled
* log entries changed to only show one line
anyone else seeing this? What are they doing?
--
AF mailing list
AF@af.afmug.com <mailto:AF@af.afmug.com>
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
