Category: Security
-
pfSense: SARG Reports (v2.2.6 Update)
This post follows on from my (surprisingly popular) article “pfSense: SARG Reports Not Showing“ After an update to v2.2.6-RELEASE I had re-inherited the same Error: Could not find report index file. Check and save sarg settings and try to force sarg schedule. error. On jumping onto the firewall via SSH, it appears that, at some […]
-
pfSense: SARG Reports not showing
This appears to be a somewhat common problem with the more recent pfSense installations, when SARG reports are accessed ({Status} > {Sarg Reports} > [View Report] Tab) the UI responds with: Error: Could not find report index file. Check and save sarg settings and try to force sarg schedule. Edit: 02/01/2016 – After an update […]
-
“Factory” resetting an OpenWRT router
There are many reasons to re-flash your home router with a different OS than the one the manufacturer has cobbled together, the Misfortune Cookie attack (US-CERT) is just one of them, Having been involved in the testing of a number of domestic xDSL routers, I have a rather low opinion on the amount of care […]
-
PASSWORD MANAGERS, CRYPTOGRAPHY, AND TRUST
So, a friend* of mine asked me yesterday, (following my posting of an article), what I thought of a particular password manager – I obviously wanted to answer her question. I then decided that since I was in for a penny, I might as well be in for a pound and here we are, (hopefully) […]
-
XBox Live via an OpenWRT router
One of the concerning requests of Xbox Live connectivity, is to enable UPnP or ‘Universal Plug and Play’ on your home router. The UPnP protocol has a long standing history of security problems, not the least of which being that it allows unauthenticated devices to connect to and through your home network. In the past, […]
-
UPnP – Why I don’t allow it on my Home Network
The UPnP protocol has a long standing history of security problems, not the least of which being that it allows unauthenticated devices to connect to and through your home network. TLDR; UPnP is a flawed protocol which has been leveraged numerous times to conduct widespread attacks via large numbers of insecure devices. Do not enable […]
-
Credential Security …again
So, with another major collection of user credentials being uncovered (and reported in the mainstream media), there is a slight increase in interest in people, their data, and the credentials they use. For those who may not yet have caught up with the news (or those reading this in the future and wondering which massive credential theft I’m referring to), this is the uncovering of the work done by ‘Cyber Vor’ who managed to snare around 1.2 billion (yes, with a B) unique user credentials.
-
Tweaking the Home Network – pfSense Firewall [Part 2: Initial Configuration]
Initial Configuration (via Web Browser) In the previous article, we set up (at least) two network interfaces. The first, facing the Internet (the WAN) and the second facing the internal network (the LAN). In our instance, our WAN interface will simply pass traffic onto our existing internal network, where it is subject to existing rules and management, […]
-
Tweaking the Home Network – pfSense Firewall [Part 1: Installation]
So, now we have teenagers, I’ve realised a need to create a little more separation with our home network. The intent of this is to give them a segment of the network where they can connect their wireless devices, use the internet and allow their friends to also connect their devices when they visit. With freedom comes responsibility, so we also want to be able to enforce limits on the hours of use, conserve bandwidth, and attempt to protect them from malware and viruses. Future enhancements may include traffic reporting, content filtering – but for now we want to get them off the core network, and onto their own segment.