Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
windows:tuning:firewall_configure [2019/02/11 11:00] wikiadmin |
windows:tuning:firewall_configure [2019/03/26 11:14] (current) wikiadmin [Configuring Windows Defender Firewall] |
||
|---|---|---|---|
| Line 4: | Line 4: | ||
| <code>(11/29/2018) More than 45,000 Internet routers have been compromised by a newly discovered campaign that’s designed to open networks to attacks by EternalBlue, the potent exploit that was developed by, and then stolen from, the National Security Agency and leaked to the Internet at large, researchers said Wednesday... As a result, almost 2 million computers, phones, and other network devices connected to the routers are reachable to the Internet on those ports. | <code>(11/29/2018) More than 45,000 Internet routers have been compromised by a newly discovered campaign that’s designed to open networks to attacks by EternalBlue, the potent exploit that was developed by, and then stolen from, the National Security Agency and leaked to the Internet at large, researchers said Wednesday... As a result, almost 2 million computers, phones, and other network devices connected to the routers are reachable to the Internet on those ports. | ||
| </code> | </code> | ||
| + | Also consider reading the following articles on DNS-rebinding technique which among others may be used for stealing money from selected e-Wallets: | ||
| + | |||
| + | 1. https://blog.hacker.af/how-your-ethereum-can-be-stolen-using-dns-rebinding | ||
| + | 2. https://medium.com/@brannondorsey/attacking-private-networks-from-the-internet-with-dns-rebinding-ea7098a2d325 | ||
| + | 3. https://github.com/filetofirewall/fof | ||
| + | 4. https://medium.com/coinmonks/the-call-is-coming-from-inside-the-house-dns-rebinding-in-eosio-keosd-wallet-e11deae05974 | ||
| + | 5. https://github.com/transmission/transmission/pull/468 | ||
| + | 6. https://labs.mwrinfosecurity.com/advisories/minikube-rce/ | ||
| + | 7. http://benmmurphy.github.io/blog/2016/07/11/rails-webconsole-dns-rebinding/ | ||
| + | 8. https://bugs.chromium.org/p/project-zero/issues/detail?id=1471&desc=3#maincol | ||
| + | 9. https://labs.mwrinfosecurity.com/blog/from-http-referer-to-aws-security-credentials/ | ||
| <WRAP center round info 80%> | <WRAP center round info 80%> | ||
| Line 89: | Line 100: | ||
| </WRAP> | </WRAP> | ||
| </WRAP> | </WRAP> | ||
| + | |||
| + | ---- | ||
| <WRAP group> | <WRAP group> | ||
| <WRAP half column> | <WRAP half column> | ||
| Line 122: | Line 135: | ||
| </WRAP> | </WRAP> | ||
| + | ---- | ||
| <WRAP group> | <WRAP group> | ||
| <WRAP half column> | <WRAP half column> | ||
| Line 139: | Line 153: | ||
| </WRAP> | </WRAP> | ||
| + | ---- | ||
| <WRAP group> | <WRAP group> | ||
| <WRAP half column> | <WRAP half column> | ||
| Line 168: | Line 183: | ||
| </WRAP> | </WRAP> | ||
| + | ---- | ||
| <WRAP group> | <WRAP group> | ||
| <WRAP half column> | <WRAP half column> | ||
| Line 185: | Line 201: | ||
| </WRAP> | </WRAP> | ||
| + | ---- | ||
| <WRAP group> | <WRAP group> | ||
| <WRAP half column> | <WRAP half column> | ||
| Line 203: | Line 220: | ||
| </WRAP> | </WRAP> | ||
| + | ---- | ||
| <WRAP group> | <WRAP group> | ||
| <WRAP half column> | <WRAP half column> | ||
| Line 208: | Line 226: | ||
| ~~#~~. Note the absence on any icons Allow(green)/Block(red) in front of rule's name. | ~~#~~. Note the absence on any icons Allow(green)/Block(red) in front of rule's name. | ||
| - | |||
| - | Well done! Continue to the next section - [[:windows:tuning:firewall_block_ports|Explicitly block unwanted/illegal traffic]] | ||
| - | |||
| </WRAP> | </WRAP> | ||
| <WRAP half column> | <WRAP half column> | ||
| Line 218: | Line 233: | ||
| </WRAP> | </WRAP> | ||
| </WRAP> | </WRAP> | ||
| + | ---- | ||
| + | Well done! Continue to the next section - [[:windows:tuning:firewall_block_ports|Explicitly block unwanted/illegal traffic]] | ||