Reply to post: Re: Turn off uPNP

Internet of Things botnets: You ain’t seen nothing yet

Anonymous Coward
Anonymous Coward

Re: Turn off uPNP

"It's not the device getting out, it's someone outside getting in to get to the device, and dropping a payload on it."

The point is, your average firewall allows outgoing connections by default. Otherwise, things break. If your IoT device can scramble itself often (both MAC and IP), then you won't be able to get an egress block to stick. And once it's out, then that connection (which is TWO-WAY) allows the way back in. A rogue or hacked C&C server can pwn it regardless of your network setup, and Bob's your uncle.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019