Lleb_KCir |
06-03-2005 03:45 PM |
Re: Quick question about home routers
Quote:
Originally posted by orange400
So if I opened up my computer via DMZ, would other people be able to view my windows shares? What situations, if any, would let other people do this? It's not like I'm opening up DMZs all the time btw, I forward ports properly, I'm just curious :)
|
you are asking to put a windows box up on DMZ. DMZ = demiliterized zone. this is no different in internet talk then it is in military lingo. it means your system is 100% without the protection the router provided. be that just a NAT based firewall, or a true builtin firewall like IPCop.
as mentioned above any MS OS public on the web is extreemly vulnerable due to the lack of 'secureity' provided by the OS it self.
a perfect example is wardriving where you can grab a wifi device and drive around neighborhoods and peek into peoples houses who have wifi setup and have them unsecured to alow anyone to connect via DHCP. not only do you see their WiFi networks, but you can view their workgroup/domain names, you can view the computer names and shares, etc...
if they shares are not restricted to user/pw or something to that effect you can navigate directly to them and view, modify, etc. what ever is there if those systems are not behind a secure firewall/NAT router.
also by placing your windows box on the DMZ, any and ALL shares it has connected to it are also accessable from the outside.
the only reason for placing a windows box on the DMZ is if you have NOTHING on that computer you care about, and it is completly isolated from the rest of your LAN.
|