Page 1 of 1

is routeros realy secure??

Posted: Wed Dec 24, 2014 8:16 pm
by cutedrummerboy
i found this on internet random search.

http://mkbrutusproject.github.io/MKBRUTUS/

haven't checked yet. anyone checked this?? i am worried about the winbox section specially.

Re: is routeros realy secure??

Posted: Wed Dec 24, 2014 8:29 pm
by boen_robot
Well, as they say, Winbox uses a proprietary protocol that they don't know, hence why the tool doesn't use it.

If someone is hacker enough to try and figure out the protocol, they will end up building a similar tool to the one for the API. So all in all, Winbox is only a little bit safer than the API protocol.

If they figure it out... Your RouterOS password better not be in their dictionary.

To REALLY keep yourself safe, you can always just add the IPs from which you might want to access the router. This is applicable to all protocols - Winbox, API, and also SSH and everything else, and can even be done on per-user basis (e.g. you may make a read-only user that's accessible from anywhere, plus an admin that's only accessible from certain IPs).

Re: is routeros realy secure??

Posted: Wed Dec 24, 2014 8:43 pm
by jarda
It's not even interesting as all systems can be attacked by dictionary brute force tryouts. Nothing special to ros. Everyone can and should anticipate that and remove all default users, not to use simple passwords and implement some antibruteforce firewall solution.

On the other side I worry about the closed winbox protocol. I am afraid that someone will be able to perform mitm attack or capture the passwords. What's worse, if secured port connection doesn't happen, the winbox tries unsecured connection... Aren't you afraid also?