Is your PC's computer name a security risk?
Is your PC's computer name a security risk?
I'm sure I read somewhere once that your PC's computer name (returned with the ComputerName() command) can be a security risk if other people know it. Is that true? I don't see how it can be, and surely more than one PC worldwide would have any given name.
Re: Is your PC's computer name a security risk?
If an attacker gains access to a network this kind of information may aid them.Dude wrote:I'm sure I read somewhere once that your PC's computer name (returned with the ComputerName() command) can be a security risk if other people know it. Is that true? I don't see how it can be, and surely more than one PC worldwide would have any given name.
Re: Is your PC's computer name a security risk?
Only with RPC and SMB based attacks. There should be isolation on the switch anyway unless it's enterprise. I use the subnet mask to do subnet IP scans then arp and dns tricks to get the information and pipe it to different tools. I usually have to brute-force with up to date machines. If I get the admin pass over RPC I can run anything remotely.
Most quality routers have client isolation, optional UPNP, and DPI firewall. I have a SOHO SonicWall with these then also the built in OS firewall and a lot of sandboxing. It's easier than the internet suggests it is to make it hard even for a super-power to get remote code execution.
Most quality routers have client isolation, optional UPNP, and DPI firewall. I have a SOHO SonicWall with these then also the built in OS firewall and a lot of sandboxing. It's easier than the internet suggests it is to make it hard even for a super-power to get remote code execution.
The truth hurts.
Re: Is your PC's computer name a security risk?
So if my computer name is "DUDE-WIN7" and I publish that online (like I just did here), can anyone hack into my PC or do anything with that info to attack my PC? That's what I read, but technically I don't see how. Is the name linked to a specific IP address or something, that they can search for and/or reverse-engineer?
Re: Is your PC's computer name a security risk?
If only the Internet router is not totally distorted, is not a problem.
The computer names are not visible on the Internet and are required in the intranet for sharing folders and printers.
So:
- Router Ok
- Virus Protection Ok
- Firewalls ok
- OS system is up-to-date
no problem
You confuse the accesses from the Internet and Intranet
The computer names are not visible on the Internet and are required in the intranet for sharing folders and printers.
So:
- Router Ok
- Virus Protection Ok
- Firewalls ok
- OS system is up-to-date
no problem
You confuse the accesses from the Internet and Intranet
My Projects ThreadToGUI / OOP-BaseClass / EventDesigner V3
PB v3.30 / v5.75 - OS Mac Mini OSX 10.xx - VM Window Pro / Linux Ubuntu
Downloads on my Webspace / OneDrive
PB v3.30 / v5.75 - OS Mac Mini OSX 10.xx - VM Window Pro / Linux Ubuntu
Downloads on my Webspace / OneDrive
Re: Is your PC's computer name a security risk?
computer names only matter behind the NAT and malware can just scan the subnet there using the subnet mask. Local-firewall SMB and RPC ports. I think they are like 138,135,445, and 5357 TCP.
A router or switch with client-isolation saves you the trouble.. They aren't that rare.
A router or switch with client-isolation saves you the trouble.. They aren't that rare.
The truth hurts.
Re: Is your PC's computer name a security risk?
Well... in total any your info (if it is true) is a "security risk"
Comp name can tell something interesting about owner in some cases, except what said already ("technically" it is usable in LAN mainly, not much dangerous and can easily post it anywhere. My PC is named "SUPERSONIC-II" for example )
Comp name can tell something interesting about owner in some cases, except what said already ("technically" it is usable in LAN mainly, not much dangerous and can easily post it anywhere. My PC is named "SUPERSONIC-II" for example )
"W̷i̷s̷h̷i̷n̷g o̷n a s̷t̷a̷r"
Re: Is your PC's computer name a security risk?
One day there will be super-scary headlines about MAC addresses and mass-surveillance on LAN, WWAN, WAN, PAN etc..
Most people don't know governments are pretty much handed databases by NIC manufacturers world wide..
Most people don't know governments are pretty much handed databases by NIC manufacturers world wide..
The truth hurts.