FAQ  •  Register  •  Login

WLan upnp security a future problem to deal with?

<<

Mugwump

User avatar

DLNA master

Posts: 150

Joined: Sun Oct 31, 2010 12:35 pm

Location: Victoria Canada

Post Mon Aug 29, 2011 10:13 am

WLan upnp security a future problem to deal with?

Upnp and wlan are problematic enough as it is without the possibility of having to worrying about stream side attacks!
Now some security people are concerned about it http://www.h-online.com/security/news/i ... 29727.html

I always make darn sure that my router htm interface cannot be accessed remotely...but cripers if an Upnp stream can mess around with the routers clients through upnp then there is very little that can be done to stop it on Windows if you must run something with any elevated privilege ...I think i will stick to Serviio on Linux for all my net streaming dlna upnp adventures!

Being able to run without elevated privilege and from a user directory is really nice....too bad that doing things that way did not catch on with Windows. Though if the nonsense of being hosed by internet streams starts to happen then just maybe more people will start to wake up to how ridiculous the internet security scene has become!

After what Sony did by putting root kit spyware along with their useless drm on their cds http://en.wikipedia.org/wiki/Sony_BMG_c ... it_scandal I would not put it past the MPAA and the RIAA to start to do similar crap with streaming content. Sorry I just do not trust the American entertainment industry mughals!

Hope this never does come to pass but we do have to be vigilant.
<<

Cerberus

User avatar

DLNA master

Posts: 4114

Joined: Sun Jan 02, 2011 5:20 pm

Location: Reading, UK

Post Mon Aug 29, 2011 11:34 am

Re: WLan upnp security a future problem to deal with?

Mugwump wrote:Upnp and wlan are problematic enough as it is without the possibility of having to worrying about stream side attacks!
Now some security people are concerned about it http://www.h-online.com/security/news/i ... 29727.html

I always make darn sure that my router htm interface cannot be accessed remotely...but cripers if an Upnp stream can mess around with the routers clients through upnp then there is very little that can be done to stop it on Windows if you must run something with any elevated privilege ...I think i will stick to Serviio on Linux for all my net streaming dlna upnp adventures!

Being able to run without elevated privilege and from a user directory is really nice....too bad that doing things that way did not catch on with Windows. Though if the nonsense of being hosed by internet streams starts to happen then just maybe more people will start to wake up to how ridiculous the internet security scene has become!

After what Sony did by putting root kit spyware along with their useless drm on their cds http://en.wikipedia.org/wiki/Sony_BMG_c ... it_scandal I would not put it past the MPAA and the RIAA to start to do similar crap with streaming content. Sorry I just do not trust the American entertainment industry mughals!

Hope this never does come to pass but we do have to be vigilant.


imma be joe blunt with this one. " stop talk rubbish "

1. There is NO ROOT KITS in sony files, its just DRM (digital right management ) means if you dont have a licence u cant play it.

2. The most they could do with UPNP stream is watch your movies, but they would have to be logged into ur router to even do that.

3. Wlan (wireless lan) WPA2 encyption on wireless router is very time consuming to hack and not worth the trouble and to do it they would have to be within 10metres of yoyr house.
Phil Bennett
Beta Tester Group
Wiki | FAQ

Samsung LE40C750 LCD | Samsung BD-C5900 | Sony PS3 | Windows 7 |
HowTo: Provide supported formats of a device HowTo: Record a new ticket on Bitbucket
HowTo: Provide details of a video file that doesn't play HowTo: Turn on detailed logging
<<

patters

User avatar

DLNA master

Posts: 1282

Joined: Sat Oct 09, 2010 3:51 pm

Location: London, UK

Post Mon Aug 29, 2011 6:18 pm

Re: WLan upnp security a future problem to deal with?

He is raising a genuine security concern (that many uPnP routers can be interfered without authentication from the WAN interface), not talking about hacking WPA2. Read the article. And Sony really did once ship a rootkit on some of their Audio CDs.
LG OLED55B8PLA | PS4 Pro | Xbox One S | Synology DS214play
Serviio 2.1 package for Synology NAS - with limited hardware transcoding support!
<<

Cerberus

User avatar

DLNA master

Posts: 4114

Joined: Sun Jan 02, 2011 5:20 pm

Location: Reading, UK

Post Mon Aug 29, 2011 6:56 pm

Re: WLan upnp security a future problem to deal with?

patters wrote:He is raising a genuine security concern (that many uPnP routers can be interfered without authentication from the WAN interface), not talking about hacking WPA2. Read the article. And Sony really did once ship a rootkit on some of their Audio CDs.


upnp cant be interfered with via wan that was my point and nope it was not an actual root kit it was just an over the top DRM system, that they now use a much simpler version of.
Phil Bennett
Beta Tester Group
Wiki | FAQ

Samsung LE40C750 LCD | Samsung BD-C5900 | Sony PS3 | Windows 7 |
HowTo: Provide supported formats of a device HowTo: Record a new ticket on Bitbucket
HowTo: Provide details of a video file that doesn't play HowTo: Turn on detailed logging
<<

Mugwump

User avatar

DLNA master

Posts: 150

Joined: Sun Oct 31, 2010 12:35 pm

Location: Victoria Canada

Post Tue Aug 30, 2011 5:42 am

Re: WLan upnp security a future problem to deal with?

Cerberus wrote:

upnp cant be interfered with via wan that was my point and nope it was not an actual root kit it was just an over the top DRM system, that they now use a much simpler version of.


It was over the top piece of software that in Windows did more than just registry tricks. It actually installed a sniffer to /system! And ran first from auto-run before the disk played. Then ran as a hidden windows service that did not show up in task manager ...I know I removed it from a friends computer.
If that is not a Windows targeted root kit then I do not know what one is.

Interfering with wifi client(s) is the issue not hacking the router...but i am certain that some bright character will eventually figure out a way to run a insecure router configuration client remotely and open up ports to skirt around dhcp and NAT routers. Considering the fact that most people do not even bother to change the router's password or lock up the configuration interface from remote administration!

...just watch out for future rss sites like this hypothetical one http://www. cuties_online_naked/wmv_or_mp4/.ru....same as all the online gambling crap sites coming from the Russian mob. We are living in the new age of the wild wild web. Who knows where the next major sploit is going to come from, all we can do is keep our minds open as to how it could happen. I am not talking your average black hat here I am talking about the worst of the worst.

My point was that knowing, discussing and reporting possible future security issues with Upnp is not a bad thing ..ignoring them might just be a really bad thing.
<<

Cerberus

User avatar

DLNA master

Posts: 4114

Joined: Sun Jan 02, 2011 5:20 pm

Location: Reading, UK

Post Wed Aug 31, 2011 6:10 pm

Re: WLan upnp security a future problem to deal with?

Mugwump wrote:It was over the top piece of software that in Windows did more than just registry tricks. It actually installed a sniffer to /system! And ran first from auto-run before the disk played. Then ran as a hidden windows service that did not show up in task manager ...I know I removed it from a friends computer.
If that is not a Windows targeted root kit then I do not know what one is.


That would be DRM checker and NOT a root kit.

Interfering with wifi client(s) is the issue not hacking the router...but i am certain that some bright character will eventually figure out a way to run a insecure router configuration client remotely and open up ports to skirt around dhcp and NAT routers. Considering the fact that most people do not even bother to change the router's password or lock up the configuration interface from remote administration!


Hacking including gain access to a network your are not authorised to and not just the changing of data.

...just watch out for future rss sites like this hypothetical one http://www. cuties_online_naked/wmv_or_mp4/.ru....same as all the online gambling crap sites coming from the Russian mob. We are living in the new age of the wild wild web. Who knows where the next major sploit is going to come from, all we can do is keep our minds open as to how it could happen. I am not talking your average black hat here I am talking about the worst of the worst.


what you are stating simple is not possible you can not use a UPNP stream for this type of activity.

My point was that knowing, discussing and reporting possible future security issues with Upnp is not a bad thing ..ignoring them might just be a really bad thing.


i agree genuine security threat are good to be discussed but this is NOT one
Phil Bennett
Beta Tester Group
Wiki | FAQ

Samsung LE40C750 LCD | Samsung BD-C5900 | Sony PS3 | Windows 7 |
HowTo: Provide supported formats of a device HowTo: Record a new ticket on Bitbucket
HowTo: Provide details of a video file that doesn't play HowTo: Turn on detailed logging
<<

patters

User avatar

DLNA master

Posts: 1282

Joined: Sat Oct 09, 2010 3:51 pm

Location: London, UK

Post Wed Aug 31, 2011 6:19 pm

Re: WLan upnp security a future problem to deal with?

Look, it really was a root kit - he's not making it up.
http://www.theregister.co.uk/2005/11/01 ... otkit_drm/
LG OLED55B8PLA | PS4 Pro | Xbox One S | Synology DS214play
Serviio 2.1 package for Synology NAS - with limited hardware transcoding support!
<<

Cerberus

User avatar

DLNA master

Posts: 4114

Joined: Sun Jan 02, 2011 5:20 pm

Location: Reading, UK

Post Thu Sep 01, 2011 7:19 am

Re: WLan upnp security a future problem to deal with?

patters wrote:Look, it really was a root kit - he's not making it up.
http://www.theregister.co.uk/2005/11/01 ... otkit_drm/


its not a rootkit they may try and call it one but it isnt that was my point.
Phil Bennett
Beta Tester Group
Wiki | FAQ

Samsung LE40C750 LCD | Samsung BD-C5900 | Sony PS3 | Windows 7 |
HowTo: Provide supported formats of a device HowTo: Record a new ticket on Bitbucket
HowTo: Provide details of a video file that doesn't play HowTo: Turn on detailed logging

Return to General discussion

Who is online

Users browsing this forum: No registered users and 18 guests

Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Designed by ST Software for PTF.