Australian IT JOBS : Sydney IT jobs, UNIX jobs, Linux jobs, Java jobs, ASP jobs Linux.conf.au Linux.conf.au
Technology news and Jobs arrow Information Technology News arrow Apple bolsters AirPort base station security
Apple bolsters AirPort base station security PDF Print E-mail
Written by Stephen Withers   
Wednesday, 11 April 2007
A firmware update for Apple's AirPort Extreme draft 802.11n base station closes a pair of security holes.
The first issue is simply a matter of default settings. The original firmware defaulted to allowing IPv6 connections, potentially exposing to the Internet any network services running on computers connected to the base station.

Apple recommends that the "Block incoming IPv6 connections" setting is checked after installing the new firmware.

IPv6 uses 128-bit addresses rather than the 32 bits of the older and more widely used IPv4. This vastly increases the number of possible addresses, allowing every device to have a fixed IP address. A method called tunnelling allows connections to IPv6 devices over IPv4 networks.

People are used to relying on routers to block unsolicited connections from the Internet, but the AirPort Extreme's previous default setting meant tunnelling support was active out of the box. That wasn't a bug, just a less secure choice - in general, it is safer to default to the most secure usable configuration and then allow owners to open things up as necessary.

The other problem addressed by the update really was a bug, though how serious it was depends on the user.

Unlike previous AirPort base stations - but like wireless routers from other vendors - the Extreme 802.11n model allows the connection of a USB disk drive, which it then shares with connected computers. Passwords are used to restrict access to particular users.

Where this went wrong was that even if the disk was password protected, users didn't need a password to see the names of the files on the shared drive. Whether that's really a problem depends on the environment, but it was a fault and Apple has fixed it.

The updated firmware can be downloaded and installed via AirPort Utility 5.1, which was released last month as part of AirPort Base Station Update 2007-001.{moscomment}

Tags See All Tags


Apple  Hardware  Internet  Stephen Withers  Switching & Routing  security  storage  usb 

Get stories like this delivered daily - FREE - subscribe now
When you subscribe get a 12 months license for LiveProject
Valued at $99 USD


LiveWire - Desktop alerts Download the FREE iTWire desktop alert widget LiveWire - Desktop alerts


Del.icio.us!
 
< Prev   Next >
JobsWire Technology Jobs in Melbourne
Active Directory  Apache  Software Architect  C#  C++  Cisco  Citrix   Cognos  Coldfusion  CRM  Crystal Reports  Software Development  ERP  HTML  IBM  IT Infrastructure  ITIL  J2EE  Java  LAN/WAN  Linux  Lotus Notes  MS Project  .NET  Oracle  SDLC  SQL  IT Support  IT Training  UAT  UML  Unix  XML
  JobWire - IT Jobs
Contact , Register , Advertise with iTWire , Links , Register , About iTWire , Feedback , Post your jobs , Events , iTWire site map , Start Blogging
Industry Releases , Submit your release now , Start submitting to iTWire , How to post video