-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 El 2019-02-02 a las 22:51 -0000, Dave Howorth escribió:
On Sat, 2 Feb 2019 23:25:27 +0100 Peter Suetterlin <pit@astro.su.se> wrote:
Dave Howorth wrote:
...
Thanks for answering my questions, Peter, and giving me some more to think about. Apologies for all for mnemonic confusion; I meant WLAN rather than WAN, of course. It's the phones and IoT devices on the network that cause me most concern; I'm not so much worried about the state of my Linux boxes.
The IoT gadgets probably "phone home" to register on some external site. The apps on phones typically connect to this external site, who then tells the gadgets how to react. It is this last aspect which I do not have clear: maybe the gadgets just keep an outgoing connection to the internet server, so they are not affected by any firewall you may setup. If the connection is incoming, then I'm unsure. There are protocols "that just work" but pose a security risk. That's how the latest's attack on the Chromecasts were done. My only IoT gadget is not registered outside, is only accessible inside, so no risk, AFAIK. The actual risk I found is that once it lost Ethernet connectivity, thus failing on its mission and purpose in life. - -- Cheers Carlos E. R. (from openSUSE Leap 15.0 x86_64 (Minas Tirith)) -----BEGIN PGP SIGNATURE----- iJIEAREIADoWIQQt/vKEw5659AgM/X2NrxRtxRYzXAUCXFYxARwccm9iaW4ubGlz dGFzQHRlbGVmb25pY2EubmV0AAoJEI2vFG3FFjNcesQA/A8KSU8GHLSompU426Fn C8/cz1zkWBBnreC9RztiPDh3AQCeWoGh8bRJZbGSG9Cs7/ez59j9gcOhvrFGIwdU haLvvQ== =XYv7 -----END PGP SIGNATURE-----