Webui on untrust interface
kellyrmartin last edited by
Is it considered bad form to leave any type of management ability left open on an untrusted interface? I can see it being a vulnerable point of attack.
marty last edited by
People do manage the device from Internet as well, better option will be to do below
- Define a manage-ip, which should not be the actual external interface ip, so that it is not that easy to guess your management ip.
- Define manager-ip, the specfic ip’s from where you want your device to be managed.
- Change the default management port from 80/22/23 to some 8888/2222/2323.
- Keep some real hard passwords to be safe from Brute Force.