Solved

Is it 'dangerous' to leave port 8080 open on my router

Posted on 2004-09-24
4
2,294 Views
Last Modified: 2012-06-27
  Is it dangerous to leave port 8080 open on my Linksys router
       My self and an employee work from home on our computers here at my business  on our LAN via pcAnywhere - we both have 'Hosts' installed on our computers but only one of us at a time can access our pc's
     I find I have to go into my routers menu here at the business and leave port 8080 open so I can access the routers menu at home via cable/internet and be able to change the router's port forwarding settings so I can change which pc can be accessed - (it won't let us both access our pc's at the same time)
   pcAnywhere use's ports 5631 and 5632 - Are there any other ports that pcAnywhere can be accessed through - and of course the original question - is it dangerous to leave port 8080 open in order to enable access to the 2 pc's - (of course one at a time)
0
Comment
Question by:gmd024
  • 2
  • 2
4 Comments
 
LVL 34

Accepted Solution

by:
PsiCop earned 125 total points
ID: 12147747
Well, its all in what risks you, personally, find acceptable.

8080 is a common alternative HTTP port, so its going to be found on any casual scan of your router. Hopefully, you have some authentication preventing equally casual "adjustment" of your router's configuration. Any thorough scan of your network segment will find any open port, of course, just as it will find the PC Anywhere on ports 5631/5632.

A general principle of security is that you do not leave open any door which you don't HAVE to leave open. Do you HAVE to leave these doors open? Not necessarily.

A much more secure way to do what you want would be to employ a VPN technology to get yourself into your LAN, and then go from there. This is, of course, more difficult to implement than the Rube Goldberg sort of thing you have now. YOU need to decide is the decrease in security worth the simplicity? No one on here can answer that - only you can.

I think its a risky configuration and probably wouldn't do it - there are plenty of PC Anywhere exploits, and you have no real idea of how robust/frail the router's interface is. You're inviting trouble, IMO. However, if you are not willing to trade away the simplicity for more security, or if the assets you are protecting are not sufficiently valuable to justify the extra effort/expense of, say, a VPN solution, then you don't need to change.

The key here is understanding what risks you are taking, and deciding if they are acceptable to you.
0
 

Author Comment

by:gmd024
ID: 12148653
   Thanks PsiCop - your answer is kind of what I suspected
               I've been avoiding the VPN solution because of exactly how you described it    
 'complicated'
      I'm pretty 'green' when it comes to my new interest - 'networks/networking
      My Linksys Router (BEFSX41) mentions 'VPN capabilities'
      What I want to 'create a safe tunnel' between is my business and home
    Both are connected to the same cable/ISP provider and both have the same Linksys Router at each end - model # mentioned above
     Can you possibly direct me to an info site that may explain how to do this in 'green mans' terms
    Thanks again - your time and info are greatly apprecaited
     
0
 
LVL 34

Expert Comment

by:PsiCop
ID: 12148706
I'm sorry, I'm really not familiar at all with the Linksys product line. Well...I've never touched a Linksys, so its worse than "really not familiar".

Sounds like your Linksys does support VPNing. Your goal of creating a "safe tunnel" is definitely the way to go if you want to reduce the chances of someone you don't want in your systems mucking about. Just make sure your Windoze boxes don't get backdoored. Effective security is, often as not, more the art of making things sufficiently inconvenient for the bad guy without making them too inconvienent for legit users.

You might try a new Question in this TA, with a Title of "Linksys VPN configuration" - I can pretty much guarantee the right ppl will see it (might wait for Monday, tho).
0
 

Author Comment

by:gmd024
ID: 12148726
  Thanks PsiCop - I'll take your advice 'again' and pose the ? you mentioned - on Monday
        c'ya  (:-)
0

Featured Post

Gigs: Get Your Project Delivered by an Expert

Select from freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely and get projects done right.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
MAC Access List to Block DHCP Traffic on a Cisco SG500 19 59
Business Broadband for Small Office in Dubai 2 80
HSRP needed? 4 51
DHCP Server 14 85
Hello , This is a short article on how would you go about enabling traceoptions on a Juniper router . Traceoptions are similar to Cisco debug commands but these traceoptions are implemented in Juniper networks router . The following demonstr…
I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question