Page 1 of 1
Simple ABE question
Posted: Thu Jun 26, 2014 9:16 am
by Supaa
Hi,
I'd like to protect my router
against this attack without using the noscript.net ipecho thing, instead relying on a user ABE rule.
Would that one be correct ?
Code: Select all
Site 50.70.*
Accept from LOCAL
Deny
Assuming my IP is dynamic but always in a given range 50.70.*. Or would the "Accept from LOCAL" still make me vulnerable. I think not but I'd rather double check
Re: Simple ABE question
Posted: Thu Jun 26, 2014 9:56 am
by Thrawn
I'm not certain whether you can use wildcards with an IP address that way. But if so, then it should work.
Re: Simple ABE question
Posted: Thu Jun 26, 2014 10:02 am
by Supaa
I checked that the wild card does work indeed
My only doubt was whether or not allowing from LOCAL could be abused in some way.
Thanks
Re: Simple ABE question
Posted: Thu Jun 26, 2014 10:19 am
by Supaa
Now what if my router has a...domain name, for lack of a better term.
Should I add it to the rule along side my IP ?
I guess it resolves to the LAN IP in which case it would probably be safe, but maybe DNS rebinding can be done on this particular "domain name" too ? In which case I need to block it.
(Now it's not so much of a simple question anymore though
)
Re: Simple ABE question
Posted: Thu Jun 26, 2014 4:28 pm
by barbaz
I don't think you should modify ABE rules at all for this. Just add the IP address range & the router's "domain name" to about:config -> noscript.ABE.localExtras (it's an AddressMatcher, so any valid matching pattern for an ABE rule will work in that pref).