[HN Gopher] Router Security
       ___________________________________________________________________
        
       Router Security
        
       Author : blueridge
       Score  : 10 points
       Date   : 2024-10-05 19:35 UTC (3 hours ago)
        
 (HTM) web link (routersecurity.org)
 (TXT) w3m dump (routersecurity.org)
        
       | yjftsjthsd-h wrote:
       | So I think this is mostly reasonable advice, but I do have to
       | question disabling ICMP/ping and IPv6. I'm not aware of any
       | actual attack that ping allows? And IPv6 should be fine if you
       | have a firewall (which I would rather expect any regular COTS
       | consumer router to have). The link on that suggestion describes a
       | very specific problem where your router is also your WiFi AP and
       | uses the old approach of just shoving the entire MAC address in
       | to its v6 address, but am I wrong in thinking that it would be
       | weird to see that actually happening in a new router, where new
       | is "still getting security updates"?
        
         | bogantech wrote:
         | People who block ping should get swirlies
        
           | LargoLasskhyfv wrote:
           | I'd rather swirl pings from the outside, from people who have
           | no business at all to know about my internal infrastructures.
           | Just GTFO.
        
             | bogantech wrote:
             | If your internal infrastructure is not internet routable
             | nobody would be able to ping it anyway
        
       ___________________________________________________________________
       (page generated 2024-10-05 23:00 UTC)