« previous next »
Pages: [1]   Go Down

Author Topic: Home Network Security  (Read 4308 times)

0 Members and 1 Guest are viewing this topic.

Offline irongod

  • Full Member
  • ***
  • Posts: 111
Home Network Security
« on: July 19, 2015, 09:33:39 PM »
Despite using it since the first v2015 Betas, so far I never bothered to understand better what exactly is checked by the HNS scan... on the website there are no specific details apart a generic:

"Your home network can be attacked just like your PC. With just one click, you can scan your network for potential security issues to help prevent attacks on your routers and network."  ???

I got that one check performed is the router accessibility with or w/o password from internet, but has anybody a better knowledge of the other issues checked (e.g. port scanning, DNS, etc...)? 
Logged
You take the tarot cards and throw them to the wind!

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37544
  • Not a avast user
Re: Home Network Security
« Reply #1 on: July 19, 2015, 10:13:14 PM »
Logged

Offline irongod

  • Full Member
  • ***
  • Posts: 111
Re: Home Network Security
« Reply #2 on: July 27, 2015, 01:03:48 PM »
Thanks for the info, it helped a little indeed.  :)

Summarizing, for sure it checks:

    1. WLAN Encryption.
    2. Your network router is accessible from the internet.
    3. Devices on your network are accessible from internet.

Nevetheless, it is not clear if other specific router vulnerabilities are checked (maybe according to a definition file that is maintained throught normal UPDATE process). The text: "Your router is vulnerable to hacker attacks" or "Your internet connection is compromised and your router could be hijacked/is already hacked" are pretty generic. For example, as referred in the blog, do HNS check the known Vunerabilities (e.g. the ones published on http://seclists.org/fulldisclosure/2015/May/129 )?
Logged
You take the tarot cards and throw them to the wind!

Offline MartinZ

  • Advanced Poster
  • **
  • Posts: 1057
  • Product Manager
Re: Home Network Security
« Reply #3 on: July 28, 2015, 10:24:16 AM »
Hi,

plus we also check:
1. If your router has some default or simple password
2. Some vulnerabilities for specific routers (rom-0 etc..)
3. Checking your DNS server settings if it's not hijacked
Logged

Offline Andrey,pro

  • Avast Überevangelist
  • Ultra Poster
  • *****
  • Posts: 5012
  • Things happen
Re: Home Network Security
« Reply #4 on: July 28, 2015, 03:01:38 PM »
Quote from: MartinZ on July 28, 2015, 10:24:16 AM
1. If your router has some default or simple password
Starnge, but avast said that my home network is secured, he didn't found that I have a default login and password.

OS: Windows 10 x86 Pro build 10240
Avast latest stable version
router manufacture: TP-Link
Logged

Offline mchain

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 5639
  • Spartan Warrior
Re: Home Network Security
« Reply #5 on: July 28, 2015, 09:12:50 PM »
Also would be a help if general common TCP ports were checked to see if default open or closed, preferably stealthed, so the user could at least close any TCP ports open found on their router(s).

This general TCP port scan does not seem to be included in normal HNS scans, seems missing this information that could be helpful in buttoning down/securing a consumer router.

For example, TCP port 4567 found open at GRC website on some Actiontec modem(s)/routers or some ZyXel routers have TCP port 443 found open. 
Logged
Windows 10 Home 64-bit 22H2 Avast Premier Security version 24.1.6099 (build 24.1.88821.762)  UI version 1.0.797
 UI version 1.0.788.  Windows 11 Home 23H2 - Windows 11 Pro 23H2 Avast Premier Security version 24.2.6105 (build 24.1.8918.827) UI version 1.0.801
Pages: [1]   Go Up
« previous next »