TerryB
09-21-2004, 12:47 PM
We've been using the same EtherFast Cable/DSL Router in the office for quite a spell now, on the only machine that is connected to the net.
There are only two people that know the password to the html-based router configuration, Karl and myself. Between the both of us, we enter the router config a total of twice times or so a week (typically to force a release/renew of the WAN IP).
In the routers html based configuration, the DHCP clients table has always showed a single IP that the router has assigned, eg, 192.168.100.24. Yesterday, Karl noticed that the DHCP clients table had an addition IP entry in it. He later asked me about it because it has always listed just a single IP. To make a long story short, I have no idea how it was added or who added it.
Our question is whether or not it is possible that an outside "hack guru" could have done it or maybe a program that any number of people here could have run which contained a trojan horse? Also, is it even worth worrying about?
There are only two people that know the password to the html-based router configuration, Karl and myself. Between the both of us, we enter the router config a total of twice times or so a week (typically to force a release/renew of the WAN IP).
In the routers html based configuration, the DHCP clients table has always showed a single IP that the router has assigned, eg, 192.168.100.24. Yesterday, Karl noticed that the DHCP clients table had an addition IP entry in it. He later asked me about it because it has always listed just a single IP. To make a long story short, I have no idea how it was added or who added it.
Our question is whether or not it is possible that an outside "hack guru" could have done it or maybe a program that any number of people here could have run which contained a trojan horse? Also, is it even worth worrying about?