Re: [m0n0wall] Beta 1.3b16 released

From:	Silvan Gebhardt <pcdog at pcdog dot ch>
To:	Michel Servaes <michel at mcmc dot be>
Cc:	Monowall User List <m0n0wall at lists dot m0n0 dot ch>
Subject:	Re: [m0n0wall] Beta 1.3b16 released
Date:	Sat, 11 Apr 2009 21:15:38 +0200

Even a Flash Applet is capable of opening ports via UPNP - anyone like  
any website beeing able to punch holes through your filewall like that?
I don't! ;)

Silvan

Am 11.04.2009 um 21:06 schrieb Michel Servaes:

> I'll second this :-)
> UPNP is the first thing to disable in any router/firewall when it is  
> available...
>
> As UPNP might have easy features for some users, it sure is a  
> potential risk !
> Imagine a trojan invading your humble computer, that is capable of  
> rewriting upnp - it would leave your firewall complete open onto the  
> net !!
>
> I asume that anyone wanting to have UPNP available, is either too  
> lazy to open up ports him/herself, or can't see the harm in random  
> available ports...