Main Forum > General Computer Support

How to get protection of DOS attack against udpEcho Chargen attack?

<< < (2/3) > >>

jraju:
Hi, Samson,
                        Thanks for the list. It contains a-z, 0-9 , by http and other attacks. Here , i point out the reason. The ISP is only providing the configuration for internet access, without looking deeper in to router settings. The consumer thought that it is just another electronic device , helpful in getting him internet access. You would not believe, that when i contacted the dlink helpdesk, he has asked me to look in to tr 069 port , in network tools menu. There was some http, which he has asked me to change to some other http, to dlink and also changed the password. He says that the router default settings in my router is obselete. But , i did update to the latest firmware available for that model.
                   Then there was ping enabled, and i deleted that to get the avast wifi inspector  no vulnerability certificate.
                         I do not think, all will look into their router page to correct it. They simply think that it is another electronic device.
                         Is there any Shane Tool to safeguard router? i have asked in my previous posts

Samson:
J, Hi.

Shane does n't do any security tools, at least I'm not aware of any.

But if you have updated to the latest firmware, and disabled "Respond to Ping", then you have done all that you can as far as security goes, and that is more than most users do  :wink:

jraju:
Hi, thanks.
                It is curious that even though ping is enabled and tr069 is suspicious ip address, avast alerts dns hns hijack and ask you to change the dns. But that is not the cure at all.
                        Now , i am having my isp server, auto detect, but after disabling the ping, tr069 and enabled protection from Dos attack, my router in grc.com and avast does not show any vulnerability. So mere change of dns would not do safe to the comuter, as generally believes. It only changes the domain name to ips and it may give faster access .
                 I find a simple tool, i do not know whether it is free for all the time or trail, but nice . i downloaded and it shows the unknown device and i have selected a small dog barking sound to denote it in my settings. So, if it finds anything not known and not identified by you as known, then , the dog barks to look in to and there is also a provision to some command what to do, which i am not familiar with so far.
the link
https://www.softperfect.com/products/wifiguard/.
                     

Boggin:
This is probably why Avast is snagging TR-069 http://www.pcworld.com/article/2463480/many-home-routers-supplied-by-isps-can-be-compromised-en-masse-researchers-say.html

However, in my ISP supplied routers, I can uncheck its box but would then lose out to any firmware upgrades which could make the router more secure.

It's a bit of a Catch-22 situation.

jraju:
Hi, But in my case, the tr069 port 7547 is not used by my ISP, but the vendor of the router , Dlink.The Dlink helpdesk asked me to change the url and user id and password from the old url, that was in, but asked me to disable the settings and it is not enabling automatically, which was the stage, when i disabled the same. The user id, dlink, and pw and url all belong to dlink router. As i say, the configuration is only done for internet access in most of the routers and not for internet security, resulting this kind of vulnerability. The url was obselete the helpdesk said. Only four or five entries like circuit no. user id pw, wifi id , wifi pw are the nly entries configured in a isp supplied modem or otherwise.
                                 If your modem is supplied by ISP, but the vendor is different, then also the problem of internet security, as i stress that most routers are configured only for internet access and not for router/internet security.

Navigation

[0] Message Index

[#] Next page

[*] Previous page