Sophos UTM and the ARRIS/Motorola Cable Modem Exploit

If you haven’t heard about it by now, there is a recent exploit that allows a maliciously designed website to trigger a reset of certain ARRIS (formerly Motorola) Cable Modems.

This doesn’t affect all of them, but only a certain model. However, if you’re paranoid at all, there is no harm in blocking access to the cable modem.

There are two ways to do this: drop all traffic to the cable modem (which doesn’t affect internet traffic), or to filter out the specific URL used to do this.

And we cover both methods

An Exercise in Frustration: Fine Tuning the Web Filter in Sophos UTM

Everything up til know regarding the Web Filter has been a cake walk by comparison. I’m not saying it’s been easy, but fine tuning the web filter, adding exceptions and the like is going to […]

An exercise in frustration: Setting up Web Filtering on Sophos UTM

Overall, Sophos is a great platform. And part of what adds to that greatness is the web filtering options. By default, it gives a bunch of options that can be filtered out by default. However, […]

Sophos and a Draconian Firewall

As I said previously, I am going to talk more about Sophos and my adventures with it.

The first part that I need to address is Sophos’ firewall. It’s beyond awesome. But the phrase “draconian” is an absolutely accurate description. During the initial setup wizard, Sophos ask you what services you want to allow by default. The default services it configures Remote Access (RDP, VNC, etc), Instant Messaging, VoIP, Email and Web Surfing. You can select any combination of these services.