I'd like to protect my router against this attack without using the noscript.net ipecho thing, instead relying on a user ABE rule.
Would that one be correct ?
Code: Select all
Site 50.70.*
Accept from LOCAL
Deny
Simple ABE question
-
Supaa
Simple ABE question
Hi,
I'd like to protect my router against this attack without using the noscript.net ipecho thing, instead relying on a user ABE rule.
Would that one be correct ?
Assuming my IP is dynamic but always in a given range 50.70.*. Or would the "Accept from LOCAL" still make me vulnerable. I think not but I'd rather double check
I'd like to protect my router against this attack without using the noscript.net ipecho thing, instead relying on a user ABE rule.
Would that one be correct ?
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:30.0) Gecko/20100101 Firefox/30.0
Re: Simple ABE question
I'm not certain whether you can use wildcards with an IP address that way. But if so, then it should work.
======
Thrawn
------------
Religion is not the opium of the masses. Daily life is the opium of the masses.
True religion, which dares to acknowledge death and challenge the way we live, is an attempt to wake up.
Thrawn
------------
Religion is not the opium of the masses. Daily life is the opium of the masses.
True religion, which dares to acknowledge death and challenge the way we live, is an attempt to wake up.
Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/28.0
-
Supaa
Re: Simple ABE question
I checked that the wild card does work indeed
My only doubt was whether or not allowing from LOCAL could be abused in some way.
Thanks
My only doubt was whether or not allowing from LOCAL could be abused in some way.
Thanks
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:30.0) Gecko/20100101 Firefox/30.0
-
Supaa
Re: Simple ABE question
Now what if my router has a...domain name, for lack of a better term.
Should I add it to the rule along side my IP ?
I guess it resolves to the LAN IP in which case it would probably be safe, but maybe DNS rebinding can be done on this particular "domain name" too ? In which case I need to block it.
(Now it's not so much of a simple question anymore though
)
Code: Select all
http://router/I guess it resolves to the LAN IP in which case it would probably be safe, but maybe DNS rebinding can be done on this particular "domain name" too ? In which case I need to block it.
(Now it's not so much of a simple question anymore though
)Mozilla/5.0 (Windows NT 6.1; WOW64; rv:30.0) Gecko/20100101 Firefox/30.0
Re: Simple ABE question
I don't think you should modify ABE rules at all for this. Just add the IP address range & the router's "domain name" to about:config -> noscript.ABE.localExtras (it's an AddressMatcher, so any valid matching pattern for an ABE rule will work in that pref).
*Always* check the changelogs BEFORE updating that important software!
Mozilla/5.0 (X11; Linux x86_64; rv:28.0) Gecko/20100101 Firefox/28.0 (PaleMoon)