Newbie here, need some answers please.
-
Hello folks.
Q1- I have a comb router/modem (DSL) from my ISP, and let's say it's compromised would Pfsesne protect me ?
Q2- Does the firewall affect the Online gaming (I mean can still run PS3) ?
That's for now, thank you.
-
Hello folks.
Q1- I have a comb router/modem (DSL) from my ISP, and let's say it's compromised would Pfsesne protect me ?
Like this sort of hacked device?
http://krebsonsecurity.com/2015/01/lizard-stresser-runs-on-hacked-home-routers/
http://www.techweekeurope.co.uk/networks/lizard-squad-home-routers-ddos-159281Depends on what you do and what you mean by protect you?
I've just discovered about 40mins ago, this machine I'm using with W7x64 installed and patched that was setup just 3 days ago and sits behind my isp supplied comb router/modem has been hacked already! Ok its a Mil spec with things like TPM, finger print scanner and other toys, but thats even with bios reloaded as its a place malware can hang out, disks wiped as the windows install just does a quick ntfs format so any malware sat in the less used parts of a spin disk can be reactivated with the minimum of fuss and is never reformatted properly as the sectors are not wiped in an NTFS quick format.
So even if you could install pfsense, theres plenty of other ways to get hacked which pfsense has no chance of stopping.
Your best bet will be to monitor all the traffic coming in and out irrespective of whether you have snort running on pfsense and other packages like HAVP and you might be able to reduce your risks abit. Flash & Java are common ways to get infected and I havent run them yet but still got hacked, Firefox is my guess at this stage and possibly one of the addons perhaps like NoScript as that phones home as well.
The long and the short is, if it can be updated, its at risk of being hacked, if it cant be updated its still got the risk of a design flaw or bug which could be used to hack you in some way. The logical thing to do is unplug from the internet and read a book. :)
However pfsense maybe better than your isp supplied router modem, the British Telecom one's supplied to home users have some tie up with some US IP addresses so you can see it talking to US ip address in the logs. What its doing is anyone's guess though as its encrypted communication. You might see something similar in your device depending on where in the world you might be. What your isp supplied device is upto is another question.
Q2- Does the firewall affect the Online gaming (I mean can still run PS3) ?
You can but you will need to make changes, so this link may help you out although some things might have changed location as it relates to an earlier version of pfsense, but there is nothing stopping you from downloading the earlier version of pfsense, following the instructions in the link before then upgrading pfsense as one way to get this done without being too in the dark if you are new to pfsense.
http://www.m0rph3us.co.uk/blog/2011/12/29/xbox-live-and-playstation-network-with-pfsense/
-
Thank you for your reply.
you opened my eye to another thing! Like the possibility of someone hacking my router !
Well I was afraid from my ISP and gov in first place(this is was my main concern) , also my router/modem is basic it's doesn't allow anyone to install app, so how can hacker control it ?
I got no other place to ask those stupid questions, sorry.
-
Any electronic equipment with a processor which is capable of running software (code) beit stored on/in some form of storage like a memory stick, hard disk or chips and where its possible to change that code from being connected to another device is vulnerable to hacking.
Some chips are harder to "hack" like eeprom chips as you need to take them out of the device, expose them to UV light before placing it in a chip writer where you download and install the new program, in this instance you need physical possession of the device in order to open it up, take the chip out before flashing it ergo its harder to hack but not impossible, some fax machines for example back in the 90's worked like this as it was one of my jobs rewriting them, when a sensor packed up and the cutting blade cut the thermal roll paper whilst still feeding the roll through resulting in a paper jam or the paper being cut on the diagonal.
However generally nowadays its possible to "flash" devices like routers, access points, network printers and other devices if they are connected to a network or computer via a cable like a usb cable. Even some TV's can be upgraded over the air which could be an entry point if other devices are connected to it via usb ports and thats before we get into networked TV's per se.
Cars are another way to hack, take Audis, Amazon & DHL's new car boot delivery system http://www.bbc.co.uk/news/technology-32431301, how long till its hacked and someone gets framed with a dead body, drugs or something else which can put you in-contention with law enforcement?
On the point of Govt, this hit the news the other day, http://www.independent.co.uk/life-style/gadgets-and-tech/news/uk-government-rewrites-surveillance-law-to-get-away-with-hacking-and-allow-cyber-attacks-campaigners-claim-10253485.html
Basically the UK Govt quietly rewrote the Computer Misuse Act back in March http://www.legislation.gov.uk/ukpga/1990/18/section/10/prospective?timeline=true to make it legal for GCHQ to hack anyone anywhere in the world, its not restricted to just foreigners or British citizens.
This was highlighted by Privacy International as they are currently taking the Govt/GCHQ to court as you can see here with the court documents.
https://www.privacyinternational.org/?q=node/545
"Buried deep within the document, Government lawyers claim that while the intelligence services require authorisation to hack into the computer and mobile phones of “intelligence targets”, GCHQ is equally permitted to break into computers anywhere in the world even if they are not connected to a crime or a threat to national security."" The first, in which Privacy International is the claimant, centres around GCHQ and the NSA’s reported power to infect potentially millions of computer and mobile devices around the world with malicious software that gives them the ability to sweep up reams of content, switch on users' microphones or cameras, listen to their phone calls and track their locations. It is the first UK legal challenge to the use of hacking tools by intelligence services."
https://www.privacyinternational.org/?q=node/81"The second complaint was filed by seven internet service and communications providers from around the world, who are calling for an end to GCHQ’s exploitation of network infrastructure in order to unlawfully gain access to potentially millions of people’s private communications. "
https://www.privacyinternational.org/sites/default/files/Government%20Further%20Submissions%2014%20May%202015_0.pdfA short while ago my FW running pfsense was hacked as the password used to secure the ssd which is set & modified using the UEFI bios was changed so my ssd drive is now rendered useless forcing me to spend money to replace hacked equipment and my mailserver was hacked as the password was changed. The FW had only been running for 67 days and to change the SSD password which is set by using the UEFI bios shows it can be changed when running any OS including in this case pfsense. It would suggest the UEFI bios has some sort of backdoor or bug which can be exploited. I had not forgotten the pwd's as I have them written down so it just goes to show.
also my router/modem is basic it's doesn't allow anyone to install app,
What is your router/modem model? If you can flash the firmware, it can be hacked in a variety of ways, for example when downloading the firmware, rogue firmware could be injected into your download file and the sha5 check could also be injected onto the webpage so you would be less likely to suspect you are downloading rogue firmware.
Alot of the things you can do with pfsense and other fw systems can be done on a grander country wide scale if you can control and monitor the networks by hacking the ISP's as Belgacom the Belgium's main telephone company found out amongst others.
-
That SCARY AS HELL.
Well I just did some research on my Router/modem, it's made by Huawei specially for my ISP. Also after I search for any possible Firmware flash, I found nothing!
The only thing that scares the hell outta me is that my ISP can upgrade the firmware anytime they like !!
The problem is I can't change there router/modem since it's VDSL and there's only some special and expensive hardware( I could buy one if it's my only option).
Here some Pictures:
http://imgur.com/a/CAmkVI think my privacy is clearly compromised by my ISP at this point, let alone Hackers.
So what is the best move to protect my network against ISP/gov watching eyes ?
Thank you for your time.
-
Dont know if these links are genuine. http://healthstory.co.uk/torrentr/hua/huawei-hg658b-firmware
Theres not alot you can do when you consider hindsight and whats practical, but some of the things you can do is your own encryption methods which are not unlike what was used during WW2 with code books, but that has limited use in that you need to trust the other party and in the case of the web, will your favourite websites/services entertain you with your own form of encryption?
There are things you can do to obfuscate you own online actvities like write a bot to access web sites, a bit like a spider crawls websites and then provides some cover as to what you might be looking at, but I'm always reminded of the fact in maths its possible to workout the unknowns in any formula, and what the spooks call quantum cryptography is just their ability to brute force crack encrypted data from decades ago that used what was back then cutting edge levels of encryption but is old hat today as our processing capabilities grow.
You could also try routing your traffic around the world to countrys that dont share data with your own, introduce some random time delays to make it harder to calculate if some traffic is yours when it reenters a country that does share data. In this instance being able to deploy instructions to a bot that can act in days, weeks, months or years in advance could be useful, it depends on how far you can plan ahead in that respect.
But the phrase you can run but not hide also springs to mind. You might be able to stay one step ahead of the enforcement/hackers but ultimately you will always be looking over your shoulder and thats if you have the capability to spot when you are being spied on and being played or not. ;D
Perhaps these books might be of interest to you if looking for parallels with today.
http://en.wikipedia.org/wiki/Brave_New_World
http://en.wikipedia.org/wiki/Nineteen_Eighty-Four
http://en.wikipedia.org/wiki/Fahrenheit_451sThe last one is quite interesting to note when you consider its harder to change the printed word unlike a website. Its interesting to see the changes some onlines news organisations changing stories once released. https://www.changedetection.com/ Its also interesting to note that for many people, things dont happen unless they see it on the news and only believe what is said on the news, not someone elses narrative.
An uphill struggle to remove agenda's and bias from individuals admittedly but not impossible. ;)