Maybe check the list of LAN devices and DHCP leases in regular intervals, e.g. on your router: it should be able to produce a list of that. Are you 100% sure all devices listed there are yours?
Keep an eye on that.
Also: Do you use port-forwarding? e.g. you opened up SSH so you can have remote access to your PC? In that case I'd recommend something like
"fail2ban" too.
Yes I do check my router to see what devices are connected. I didn't learn this technique by reading any article. I just guessed it myself.
There is absolutely no open ports on my home network. No ssh, nothing. uBlock Origin is doing a very descent job in the ad blocking department.
1) enabled doesn't say anything about the settings, which services are open, or anything about other security aspects on the network under your control
Code:
$ sudo ufw status verbose
[sudo] password for homepc:
Status: active
Logging: on (low)
Default: deny (incoming), allow (outgoing), disabled (routed)
New profiles: skip
Code:
$ nmap 192.168.225.21
Starting Nmap 7.70 ( https://nmap.org ) at 2021-05-09 20:48 IST
Nmap scan report for homepc (192.168.225.21)
Host is up (0.000079s latency).
All 1000 scanned ports on homepc (192.168.225.21) are closed
Nmap done: 1 IP address (1 host up) scanned in 0.07 seconds
I think patching daily is foolish. There, I've said it.
Risk management. There are risks in getting a patch that hasn't been fully vetted early. There is risk that some patch will break workflows.
This is my personal home PC. I really dont care if something breaks coz now we have this awesome tool called Timeshift.
If your router hasn't been patched in 6 months, it probably has a major security problem.
My router hasn't been patched for more than a year & there is nothing I can do about this. This is 4G router & no opensource firmwares like DD-WRT supports this device.
Since we are planning to move to a new home soon I want to avoid changing my ISP at the moment coz if I do that then I will have to pay the "installation charges" twice.
Once we move I will be able to use PFsense as my new connection will be fiber.
Bookmarks