如果你能访问互联网的唯一方法是直接连接到你房东的路由器和电缆调制解调器,他们是否有可能破坏你的路由器并进入你的个人网络?今天的超级用户问答帖子为忧心忡忡的读者提供了答案和一些好建议。
今天的问答环节是由SuperUser提供的,SuperUser是Stack Exchange的一个分支,是一个由社区驱动的问答网站分组。
照片由Kit(Flickr)提供。
超级用户读者newperson1想知道他的房东是否有可能访问他的个人网络:
Can my landlord access things on my personal router’s network because he controls the upstream connection? For example, the DLNA on my NAS, a public file share on my NAS, or the media server running on my laptop?
Here is my configuration: I have my own router and connected to it are an NAS (wired) and a laptop (wireless). The Internet/WAN port on my router is plugged into a LAN port on my landlord’s router. The Internet/WAN port on my landlord’s router goes to the cable modem. I am the only one with access and the password to my router. I do not have access or the password to my landlord’s router or the cable modem.
newperson1的房东有可能访问他的个人网络吗?
超级用户贡献者Techie007和Marky Mark为我们提供了答案。首先,技术007:
No, your router should block incoming access to your LAN just like it would if it was connected directly to the Internet. He may be able to sniff your Internet traffic though (since he is between you and the Internet).
You can read through these other SuperUser questi*** for more information:
接着是马克的回答:
The other answers are basically correct, but I thought I would expand on the topic. Hopefully this information will be useful.
As long as you have your router in a standard configuration, it should block unsolicited incoming network connection attempts, essentially acting as a blunt firewall.
Port Forwarding
Settings which increase your exposure surface would be forwarding any ports into your local area network (the devices connected to your router).
Be aware that some services on your network might open ports via UPnP (Universal Plug and Play), so if you want to be sure that no one is snooping inside your network, c***ider disabling UPnP in your router’s settings. Be aware that it will prevent anyone from connecting to a service on your network, such as hosting a video game.
Wi-Fi
If your router has Wi-Fi, c***ider the possibility that someone can potentially connect to it. Someone who connects to your Wi-Fi service is essentially on your local network and can see everything.
So, if you use Wi-Fi, make sure that you use the maximum security settings. At a minimum, set the network type to WPA2-AES, disable legacy support, set keys to reset a minimum of once per 24 hours, and choose a complex Wi-Fi password.
Protocol Sniffing and VPNs
As your landlord sits between you and the public Internet, he could potentially look at all traffic going into and out of your router. This is relatively easy to do and there are freely available network diagnostic tools to do this with.
Encrypted traffic between your browser and a website is generally safe as far as the content goes, however your landlord would be able to see what websites you visit (though not necessarily the specific pages).
However, c***ider that many web pages are not encrypted, and then there are all your mobile apps, e-mail, and other online activity that is potentially sent in the clear.
If you want ALL your traffic to be encrypted, then you need to use an encrypted virtual private network (VPN). A VPN connects your network to the network of a VPN operator (usually a commercial enterprise) using encrypted protocol tunneling.
Ideally, the VPN would encrypt using AES encryption and the connection would be established at the router level so that all WAN traffic (to the internet) is encrypted and routed via the VPN.
If the router does not support VPN, then you will need to set it up on each and every device (computer, phone, tablet, c***ole, etc.) for the traffic you want to be secure.
Encryption
As a general security principle, I advocate strongly encrypting all traffic. If everything is strongly encrypted, anyone snooping on you will not know where to begin. But if you only encrypt “important stuff”, then they will know exactly where to attack.
有什么要补充的解释吗?在评论中发出声音。想从其他精通技术的Stack Exchange用户那里了解更多答案吗?在这里查看完整的讨论主题。
...戏PC或控制台上设置的还是在你的家庭路由器上,VPN账户可以以你可能没有考虑的方式来提高游戏体验。 ...
... 您的路由器是否支持来宾网络将决定您是否可以使用它。如果路由器没有来宾网络选项,您可以考虑安装DD-WRT或其他一些自定义路由器固件。 ...
...者可能会觉得游戏结束了。值得注意的是,有些攻击甚至可以在几百英尺之外进行。所以移动几英尺并不是超出范围。 ...
...一台设备(电脑、智能**或平板电脑)上输入Supremo,您就可以远程控制它。 ...
互联网连接总是可以更快。无论你的下载是爬行式的,流式的感觉就像幻灯片,或者你只是想最大限度地提高你的速度,下面是你如何加速连接。 根据您的互联网服务提供商(ISP),您通常可以通过致电他们(或访问他们的网...
...索尼的PlayStation4有一个社交媒体风格的仪表盘。您的好友可以查看您的PlayStation活动以及您的真实姓名,如果您已将PlayStation 4与Facebook链接,您的帐户可能会被您的Facebook好友发现。 您可以在PlayStation 4的设置屏幕中管理这些隐私...
...多数人不知道也忽略了电缆调制解调器的诊断功能,但它可以帮助您解决连接问题。 什么诊断页面? 大多数人都不知道,有线调制解调器(和其他宽带调制解调器)有内置的诊断和记录功能,就像路由器一样。虽然有些人偶尔...
...里,我们将通过TeamViewer远程帮助他们。 使用TeamViewer,您可以直接从计算机、网络或随身携带iPhone或iPad在任何主要操作系统上远程帮助您的朋友和家人。您的计算机上应安装TeamViewer完整版本,以便为用户提供远程支持。您可以...
英国一家初创公司为房东开发了一款软件,让他们可以利用社交媒体账户的数据分析潜在房客。Score Assured声称,它的服务只是租房者在竞争激烈的市场中获得房子的另一种方式,但在《*****》本周对这项业务进行报道之后,以及...
...一个棘手的问题,与室友一起进入一个生活环境,或者从房东那里租房,房东在你的家或公寓周围安装了安全摄像头。如果你允许我在本周的911科技专栏(我通常会回答你的问题)中有点分歧的话,我想分享一些从最近发生在我...