Broadband ISP Virgin Media (O2) has revealed that 18% of respondents to one of their consumer surveys still "break the golden rule" by switching their Hub (ro
Read the title and went: What? They want you to keep your network hardware ON, when unattended, to increase the undetected malware entry opportunities?
Turns out it as their own devices they wanted to push updates to.
I would really prefer to use my own device though and even better, configure it myself after learning how the ISP’s network works. But convenience is what it is.
The malware argument is a bit weak, if your router is vulnerable to something it’ll likely be found and pwnd in a matter of minutes, so turning it off a night won’t really save you. And once a patch is released, it’ll be reverse engineered in a few hours/days, so ideally you want patches as soon as they are released.
Using your own device is usually a good idea anyway, telco stuff is usually pretty mediocre.
And as soon as your device is slightly custom, it becomes a less valuable target.
It’s much more than just a bit weak, unless you are somehow continuously monitoring it, so yeah, in most end-user scenarios, it would hardly make a difference to keep it on, even if there were no updates.
you don’t need to know how the ISP network works, you only need some networking concepts. Subnets/addressing and very basic routing (for a basic setup). You won’t even need firewall rules if you don’t host anything at your place (that needs to be accessed from outside)
Read the title and went: What? They want you to keep your network hardware ON, when unattended, to increase the undetected malware entry opportunities?
Turns out it as their own devices they wanted to push updates to.
I would really prefer to use my own device though and even better, configure it myself after learning how the ISP’s network works. But convenience is what it is.
The malware argument is a bit weak, if your router is vulnerable to something it’ll likely be found and pwnd in a matter of minutes, so turning it off a night won’t really save you. And once a patch is released, it’ll be reverse engineered in a few hours/days, so ideally you want patches as soon as they are released.
Using your own device is usually a good idea anyway, telco stuff is usually pretty mediocre. And as soon as your device is slightly custom, it becomes a less valuable target.
It’s much more than just a bit weak, unless you are somehow continuously monitoring it, so yeah, in most end-user scenarios, it would hardly make a difference to keep it on, even if there were no updates.
you don’t need to know how the ISP network works, you only need some networking concepts. Subnets/addressing and very basic routing (for a basic setup). You won’t even need firewall rules if you don’t host anything at your place (that needs to be accessed from outside)
Sorry. I’m addicted to knowledge. I need to know.
Chad