At 09:35 AM 3/10/2002, Don Hill AA5AU wrote:
> From any PC connected to the Internet, I go to a
>web browser and enter the IP address of my router. My router has
>been set up to allow a certain port to access a particular PC.
For anyone running this kind of software from an always-on broadband
internet connection (cable, DSL, ISDN, whatever), make absolutely sure you
understand all of the security features that the software provides, change
your password regularly and just generally be careful - putting remote
control software on a computer connected to the public internet is just
inviting hackers to come have a look around your computer. Once they get on
your computer, they can get to any other computer in your home network. And
then the fun begins.
If WinVNC is a new program and/or a shareware program, you can expect the
hackers to be working on ways to get into it and around it. PCAnywhere has
been around long enough that the known exploits have mostly been found and
fixed. I haven't seen WinVNC so can't say much about it.
But it has been common practice for hackers to interrogate every PC they
can find to see if PCAnywhere is running on it (they check to see if the PC
is listening on the appropriate port). Once a target is identified, they
start trying to get in. You'd be surprised how many people run that
software with absolutely NO security of any kind....
I would advise restricting incoming access to the remote control software
from a specific IP address or domain if possible.
No need for paranoia, but just be aware of the risks and make sure you take
appropriate precautions. Or that person working all the DX as AA5AU might
just be someone else...
-Marty NW0L
martyt@pobox.com
|