Recent content by Phantomski

  1. Phantomski

    Port Forwarding and Skynet firewall ruleset

    Thanks @dave14305, the pic leads to plenty of great stuff. I have lots to learn ;) https://www.digitalocean.com/community/tutorials/a-deep-dive-into-iptables-and-netfilter-architecture#introduction https://lewestech.com/mirrors/www.iptables.info/en/structure-of-iptables.html...
  2. Phantomski

    Port Forwarding and Skynet firewall ruleset

    Thanks for insight and tips @Maverickcdn, will check Fail2ban out. Looking at the traffic manually at the moment, my number of bans would be roughly 5-10 daily and that's me not even being on a fixed IP and Skynet blocking plenty of countries altogether. I guess some countries / cloud service...
  3. Phantomski

    Port Forwarding and Skynet firewall ruleset

    Thanks very much for the great writeup. Mistake was a bad choice of words. What I was trying to say, that in non-standard case of extended IP address based ruleset or when using a process like Skynet, an author might easily make a mistake of introducing this step in iptables after port...
  4. Phantomski

    Port Forwarding and Skynet firewall ruleset

    Hi everyone, playing a bit with log management / analysis and potential feedback loop to live firewall rules. Call it a poor man tinkerer IDS/IPS :D I have a fairly simple setup with RT-AC88U (with Skynet) using port forwarding rules on ports 80 and 443, redirecting to a Docker-ised rPi4...
  5. Phantomski

    Security of opensource vs closed source

    Personally, I think it’s the exact opposite. I do strongly believe that open source and well documented source code (with reproducible builds) is THE future of Cyber Security. You can see time and time again that closed source proprietary software gets vulnerabilities discovered late, reported...
  6. Phantomski

    Beamforming / Mu-MIMO / Airtime Fairness

    I find this mildly amusing. Most of the IoT these days is still barely 2.4GHz 802.11g, as the majority of these cheap low energy chips they use still are. For me personally, out of 50+ devices I have, I’d have to eBay 45 of them with no decent (and ac or ax 5G for that matter) replacement...
  7. Phantomski

    CVE-2021-20090 Vulnerability

    Absolutely. That said, you can still execute an attack from vulnerable internal LAN device, via compromised WiFi, etc, etc. LAN only is neither a replacement nor mitigation for poor internal security, just creates smaller attack surface. But as the saying goes, you have to succeed all the...
  8. Phantomski

    CVE-2021-20090 Vulnerability

    Great news, thanks guys. The four mentioned ASUS routers (albeit DSL versions) worried me a little, but good to know there are no hidden Arcadyan bits hidden in Asuswrt code.
  9. Phantomski

    CVE-2021-20090 Vulnerability

    Would this CVE also affect Merlin’s firmware, or is this just part of the original Asus code, not embedded in the custom version? https://www.tenable.com/cve/CVE-2021-20090 https://www.bleepingcomputer.com/news/security/actively-exploited-bug-bypasses-authentication-on-millions-of-routers/
  10. Phantomski

    replacement to RT-AC88U

    I have the same router (RT-AC88U). The ports 5-8 are so temperamental, that for my own sanity I've stopped using them altogether long time ago. In fact for the functionality a good L3 switch provides, I personally think it's better to use just one and then a downstream switch. I know you're...
  11. Phantomski

    replacement to RT-AC88U

    A question - how did the extra 4 ethernet ports on AC88U worked out for you? ;)
  12. Phantomski

    amtm amtm 3.2.0 Entware fails to update - opkg wget certificate error

    Thanks everyone. Sorted for now, 386 next.
  13. Phantomski

    amtm amtm 3.2.0 Entware fails to update - opkg wget certificate error

    which openssl returned correct /usr/sbin/openssl. /usr/sbin/openssl version still returned OpenSSL 1.0.2u 20 Dec 2019 For some reason it didn't get updated with the fw. For the moment, the updated cert store cured the issue, but of course 386 is the way. Soon! ;)
  14. Phantomski

    amtm amtm 3.2.0 Entware fails to update - opkg wget certificate error

    It's a bit old, I know. It's in the pipeline, but with setting up everything from scratch, I didn't have an opportunity yet. opkg install ca-certificates from http repo cured it. Thanks.
  15. Phantomski

    amtm amtm 3.2.0 Entware fails to update - opkg wget certificate error

    After update to amtm 3.2.0 on FW-384.18 (RT-AC88U), I can't update entware packages (armv7sf-k2.6). Downloading https://bin.entware.net/armv7sf-k2.6/Packages.gz *** Failed to download the package list from https://bin.entware.net/armv7sf-k2.6/Packages.gz Collected errors: * opkg_download...
Top