【無線LAN】DD-WRT【強化ファーム】4

【無線LAN】DD-WRT【強化ファーム】4 at NETWORK

196:anonymous
09/07/24 00:38:26
The exploit can also be stopped, using a firewall rule: Go to your router's admin interface to > Administration > Commands and enter the following text:
insmod ipt_webstr
ln -s /dev/null /tmp/exec.tmp
iptables -D INPUT -p tcp -m tcp -m webstr --url cgi-bin -j REJECT --reject-with tcp-reset
iptables -I INPUT -p tcp -m tcp -m webstr --url cgi-bin -j REJECT --reject-with tcp-reset
press "Save Firewall" and reboot your router. This rule blocks any attempt to access sth that has "cgi-bin" in the url.
You can verify that the rule is working by entering:
URLﾘﾝｸ(192.168.1.1)
in your browser. That should give a "Connection was reset" (Firefox).

Important Note:
This only works for non-https requests.
if you have HTTPS Management turned on under > Administration > Management > Remote Access, then turn it off.
If you don't want to turn it off, you only can do an Update.

次ページ

続きを表示

1を表示