I have a question about security and vulnerability. I have set up port forwarding for Subsonic to work (port 4040 for my Ubuntu installation). I have played with my Firestarter firewall settings and it appears that if I want to connect from different remote networks and computers, I will need to open the incoming access to "everyone".
My question is, how vulnerable is my network with the port forwarding and how vulnerable is my computer with my firewall allowing connections to "everyone" through port 4040?
I'm don't completely understand the implications of the settings and just want to make sure I'm not a mark for hackers sniffing for open ports to exploit.
Many thanks for any feedback.
(I apologize for posting this originally under "Feature Request". I wasn't able to figure out how to edit the posted forum, so have re-posted here).
Port Forwarding Security - Firewall Settings
Moderator: moderators
5 posts
• Page 1 of 1
Port Forwarding Security - Firewall Settings
by WelcomedRain » Tue Aug 17, 2010 2:21 pm
- WelcomedRain
- Posts: 7
- Joined: Fri Jul 23, 2010 2:50 am
by kermit22 » Tue Aug 17, 2010 9:29 pm
Whenever you open up a port on your firewall you are always offering greater opportunities for danger. But with that being said, port 4040 is going to be targeted far less frequently than some other ports because it isn't a port that hackers would expect a server to be on. The bigger concern when opening ports is how secure is the service that is responding to requests on that port. In this case Subsonic isn't an exploitable service (as far as I can tell) so you are going to be relatively safe when opening up this port.
-My Subsonic Server-
OS: Windows Server 2016
Processor: Intel Xeon E5630
Memory: 8GB
2,098 artists
4,266 albums
39,450 songs
2,606 hours
OS: Windows Server 2016
Processor: Intel Xeon E5630
Memory: 8GB
2,098 artists
4,266 albums
39,450 songs
2,606 hours
-
kermit22 - Posts: 218
- Joined: Fri Feb 20, 2009 7:00 pm
Thanks...
by WelcomedRain » Tue Aug 17, 2010 11:42 pm
Thank you kermit22 for taking the time to respond to my post. Anyone else who would like to weigh in on the subject or extra precautions; your feedback would be welcomed.
- WelcomedRain
- Posts: 7
- Joined: Fri Jul 23, 2010 2:50 am
Thats not entirely true
by ootuoyetahi » Wed Aug 18, 2010 5:22 pm
Hackers dont usually try and guess open ports. A simple port scan will identify it as open. I wouldnt worry too much though, as long as you dont put yourself out there too much, an attack is unlikely.
- ootuoyetahi
- Posts: 53
- Joined: Wed Mar 24, 2010 7:10 pm
by delcypher » Thu Aug 19, 2010 8:33 am
Just to further contribute to this discussion.
If you're running linux (which it sounds like you are as you mentioned firestarter) then DO NOT RUN SUBSONIC AS ROOT! Run subsonic as a lower prividged user so that if there is an exploit in Subsonic then the damage to your system should be minimal compared to an exploit when running subsonic as root.
If you're running linux (which it sounds like you are as you mentioned firestarter) then DO NOT RUN SUBSONIC AS ROOT! Run subsonic as a lower prividged user so that if there is an exploit in Subsonic then the damage to your system should be minimal compared to an exploit when running subsonic as root.
- delcypher
- Posts: 109
- Joined: Tue Jun 01, 2010 10:39 am
5 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 23 guests