From my understanding you can run into issues when you have a combination of ports being forwarded and some other issue like SSH enabled on a Raspberry Pi with default credentials but I feel like I’m missing things or misunderstanding port forwarding.

I don’t know if, for example, a computer connected to a network running a dated version of Windows is a risk simply because it is connected to the network. Even if it isn’t being used for things such as web browsing.

I’m more concerned about remote threats versus local ones like someone having access to my WiFi password.

  • CorrodedCranium@lemmy.fmhy.mlOP
    link
    fedilink
    English
    arrow-up
    1
    ·
    edit-2
    1 year ago

    Let’s say you’re running an smb file share on that old Windows computer. They could potentially use a vulnerability to get access to that computer.

    Wouldn’t an SMB share only be visible to the internet through forwarded ports? I thought they were only available through LAN connections unless modified to do otherwise.

    If that isn’t the case do you have any recommendations for protecting SMB shares from outside connections?

    • Dr. JenkemA
      link
      fedilink
      English
      arrow-up
      3
      ·
      1 year ago

      Yes, the smb isn’t visible directly to the internet. But if that raspberry pi gets hacked, then the attacker can use the raspberry pi to access your entire LAN.