<div class="gmail_quote">On 20 April 2010 23:11, Daniel Case <span dir="ltr"><<a href="mailto:danielcase10@googlemail.com">danielcase10@googlemail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
My entire family own Windows boxes, and the internal IP is dynamic most of the time. Now what i didnt realize was that my sister opened DMZ onto her internal IP at the time so she could get a decent download speed over torrent.<br>
<br>The next time i turned my Ubuntu box on, it got that IP, and thus all the traffic got forwarded straight to my laptop, exposing all of my ports (including 139) I dont turn my box off very often either, it usually stays on and connected to the internet for quite sometime.<br>
<br>I only realized when somebody contacted me over MSN and told me that they had managed to access my entire user area, i then checked /var/logs/samba and found a lot of requests from external IP addresses.<br></blockquote>
<div><br>Am I wrong in thinking this post is really a warning about not setting
you router up securely? <br>
<br>
If you are unable to control the router or the IP address your Ubuntu
box is assigned, then you can always run a firewall and/or AppAmor on
you Ubuntu box.<br>
<br>
If you can control the router, set the router up to only give dhcp
addresses between a certain range i.e. 1-100. Then set your ubuntu
systems to use static addresses above 100.<br>
<br>
If you need dynamic addresses, i.e. you have a laptop, you should still
be able to tell the router to give your ubuntu box a specific IP
address based on its MAC number (the electronic number for your network
device) - need to do this for both wired and wireless (if applicable).
You can set all the PC's in your house to get specific IP address on
all modern routers.<br>
<br>
All my Ubuntu servers, physical and virtual, get assigned "static" IP
addresses from the DHCP server on my router from the broadband company. <br></div></div><br>-- <br>John Stevenson<br><a href="http://jr0cket.com">jr0cket.com</a><br><a href="http://leanagilemachine.com">leanagilemachine.com</a><br>
<br>