Multicast DNS vulnerability letter from VM
22-12-2016, 11:31
|
#1
|
CF Resident Dog
Join Date: Mar 2005
Posts: 14,254
|
Multicast DNS vulnerability letter from VM
Received a letter from VM saying they have identified a potential Multicast DNS vulnerability on my network.
Anyone else had something like this, i am not too worried at the moment judging by this thread over at VM as i run a PS4, Xbox One and an Amazon Fire TV stick but i am interested to know what you guys may think of it as it is all a little complicated to the average user!
Going to the shadowserver link in the letter hurts my braincell!
__________________
PSN: Snoopzster
|
|
|
22-12-2016, 13:15
|
#2
|
FORMER Virgin Media Staff
Join Date: Dec 2010
Location: Warrington
Posts: 4,737
|
Re: Multicast DNS vulnerability letter from VM
Yup, I had a similar and equally unhelpful letter.
Basically, the letter is telling you that you have port 5353 exposed to the outside world. That's about it.
Port 5353 is used by Bonjour and some other network services, think things like Plex. Block that from being exposed and you're all good.
For me I had forwarded it to my Plex server, but it's not required.
|
|
|
22-12-2016, 22:58
|
#3
|
CF Resident Dog
Join Date: Mar 2005
Posts: 14,254
|
Re: Multicast DNS vulnerability letter from VM
Thanks, I will get that sorted out.
__________________
PSN: Snoopzster
|
|
|
29-12-2016, 15:17
|
#4
|
CF Resident Dog
Join Date: Mar 2005
Posts: 14,254
|
Re: Multicast DNS vulnerability letter from VM
Quote:
Originally Posted by Kushan
Yup, I had a similar and equally unhelpful letter.
Basically, the letter is telling you that you have port 5353 exposed to the outside world. That's about it.
Port 5353 is used by Bonjour and some other network services, think things like Plex. Block that from being exposed and you're all good.
For me I had forwarded it to my Plex server, but it's not required.
|
I havent really ventured into messing with ports before so could you explain where i need to go in the Hub3 settings to do this please?
__________________
PSN: Snoopzster
|
|
|
29-12-2016, 15:22
|
#5
|
FORMER Virgin Media Staff
Join Date: Dec 2010
Location: Warrington
Posts: 4,737
|
Re: Multicast DNS vulnerability letter from VM
I'm actually not sure. If you've not explicitly forwarded the port yourself, then it's probably a device on your network that's requested it via UPnP. What kind of media players, etc. do you have? Like Apple TV, etc.
|
|
|
29-12-2016, 15:38
|
#6
|
CF Resident Dog
Join Date: Mar 2005
Posts: 14,254
|
Re: Multicast DNS vulnerability letter from VM
Quote:
Originally Posted by Kushan
I'm actually not sure. If you've not explicitly forwarded the port yourself, then it's probably a device on your network that's requested it via UPnP. What kind of media players, etc. do you have? Like Apple TV, etc.
|
I probably installed an Amazon Fire Stick around the date on the letter, but i also have an Xbox One and PS4 and a plex server but suspect the letter is because of the stick.
__________________
PSN: Snoopzster
|
|
|
01-01-2017, 12:56
|
#7
|
FORMER Virgin Media Staff
Join Date: Dec 2010
Location: Warrington
Posts: 4,737
|
Re: Multicast DNS vulnerability letter from VM
Plex definitely suggests using the port, it was Plex on my network so I'd say it's the number 1 contender.
|
|
|
01-01-2017, 17:59
|
#8
|
CF Resident Dog
Join Date: Mar 2005
Posts: 14,254
|
Re: Multicast DNS vulnerability letter from VM
Still wondering how to do this port blocking, someone must know.
---------- Post added at 17:59 ---------- Previous post was at 17:33 ----------
Just found this which says i cant block ports on the Hub3 is that correct??
http://community.virginmedia.com/t5/...ighlight/false
__________________
PSN: Snoopzster
|
|
|
02-01-2017, 03:28
|
#9
|
cf.member
Join Date: Jul 2010
Posts: 26
|
Re: Multicast DNS vulnerability letter from VM
go to http://192.168.0.1/
login
click on the Advanced Settings button
scroll down to UPnP and click on it
uncheck the box to disable UPnP
click on the apply button
disabling UPnP will stop stuff on your network from Port Forwarding automatically
if you want to no more :
What Is Port Forwarding & How Can It Help Me?
|
|
|
02-01-2017, 17:18
|
#10
|
CF Resident Dog
Join Date: Mar 2005
Posts: 14,254
|
Re: Multicast DNS vulnerability letter from VM
Quote:
Originally Posted by tidder23
|
Thanks for the reply, still not sure i want to disable it though as i have games consoles and a network printer from which i may need it.
But to be honest i don't really know anything about this either! haha
__________________
PSN: Snoopzster
Last edited by SnoopZ; 02-01-2017 at 17:23.
|
|
|
02-01-2017, 18:13
|
#11
|
FORMER Virgin Media Staff
Join Date: Dec 2010
Location: Warrington
Posts: 4,737
|
Re: Multicast DNS vulnerability letter from VM
Yeah, don't disable UPnP, not unless you want to go back to the bad old days of having to manually forward every port going.
|
|
|
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
All times are GMT +1. The time now is 01:07.
|