Reply to post: Re: Others problems first

Infosec guru Schneier: Govts will intervene to regulate Internet of Sh!t

Chronos
Alert

Re: Others problems first

I'd start with consumer routers, personally. Once your edge gateway is secure it can police everything else. Forget shiny boxes and wireless range, make the damned things fit for purpose first. Step one: make forwarding packets either way to ports 137-139 and 445 blackhole routes by default. Not reject or ICMP unreachable, blackhole. While it's wondering where its packet has gone, it's leaving someone else alone.

And can we please stop enabling uPNP out of the box? It makes setting up C&C links trivial for any slightly clueful villain.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon