Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Guides - Privacy & Security Tips
How to secure uTorrent downloading
Message
<blockquote data-quote="WeAreTheBorg" data-source="post: 505667" data-attributes="member: 52238"><p>i know this is a very old post but i just saw this "guide" in a google search and there was so many misleading informations, i couldnt believe it. so to make things right:</p><p></p><p>"Randomize Port Each Start" doesnt add any security at all, in fact, to keep a good connectivity with other peer, this will force you to enable "UPnP" / "NAT-PMP". both of them are huge securty risks and should not be enabled.</p><p></p><p>short version:</p><p>UPnP: UPnP also allows malware to punch holes in your firewall making access for criminals far easier.</p><p></p><p>even if this security risk is not new, by the way its working, its still vulnerable and people should avoid using this.</p><p>( UPnP should be turned off directly in the router ASAP and disable this options in utorrent too )</p><p></p><p>NAT-PMP: intruders can access otherwise firewalled local network services by abusing malicious "holes" punched through the firewall.</p><p></p><p>conclusion: DISABLE "Randomize Port Each Start" / "UPnP" and "NAT-PMP".</p><p>to keep a good connectivity, choose a high port number ( between 30 000 and 50 000 ) and setup your router to forward that port to your computer local IP. this is much more secure ( but more difficult for most people ).</p><p></p><p>"Protocol Encryption" set to 'Forced': should only be the case if your ISP is sniffing your traffic to apply limitation.</p><p>( be warned, this was mostly used 10 years ago when ISP was trying to stop/limit torrent, not sure if some ISP still enforce this )</p><p>if you blindly force this option, your connectivity with other peer may be limited ( client wont connect to other that use no encryption )</p><p></p><p>"fake IP/host in the "IP/Hostname": on some tracker/situation, this may get you banned and force you to go back to unreliable tracker.</p><p></p><p>"Limit the download speed" doesnt add security but it might help to a smoother experience with internet while you're torrenting.</p><p>which mean, if you apply no limit, and your torrent use all the speed, you'll get slow browsing and poor online gaming experience.</p><p>you should limit upload and download for torrent, around 70 or 80% for slower internet, 90% for big connection )</p><p></p><p>source:</p><p>"UPnP Port Mapping" = <a href="https://nakedsecurity.sophos.com/2013/02/05/upnp-flaws-turn-millions-of-firewalls-into-doorstops/" target="_blank">UPnP flaws turn millions of firewalls into doorstops</a></p><p>"NAT-PMP Port Mapping" = <a href="https://en.wikipedia.org/wiki/NAT_Port_Mapping_Protocol" target="_blank">NAT Port Mapping Protocol - Wikipedia, the free encyclopedia</a></p><p>"Protocol Encryption" = <a href="https://torrentfreak.com/how-to-encrypt-bittorrent-traffic/" target="_blank">How To Encrypt BitTorrent Traffic - TorrentFreak</a></p></blockquote><p></p>
[QUOTE="WeAreTheBorg, post: 505667, member: 52238"] i know this is a very old post but i just saw this "guide" in a google search and there was so many misleading informations, i couldnt believe it. so to make things right: "Randomize Port Each Start" doesnt add any security at all, in fact, to keep a good connectivity with other peer, this will force you to enable "UPnP" / "NAT-PMP". both of them are huge securty risks and should not be enabled. short version: UPnP: UPnP also allows malware to punch holes in your firewall making access for criminals far easier. even if this security risk is not new, by the way its working, its still vulnerable and people should avoid using this. ( UPnP should be turned off directly in the router ASAP and disable this options in utorrent too ) NAT-PMP: intruders can access otherwise firewalled local network services by abusing malicious "holes" punched through the firewall. conclusion: DISABLE "Randomize Port Each Start" / "UPnP" and "NAT-PMP". to keep a good connectivity, choose a high port number ( between 30 000 and 50 000 ) and setup your router to forward that port to your computer local IP. this is much more secure ( but more difficult for most people ). "Protocol Encryption" set to 'Forced': should only be the case if your ISP is sniffing your traffic to apply limitation. ( be warned, this was mostly used 10 years ago when ISP was trying to stop/limit torrent, not sure if some ISP still enforce this ) if you blindly force this option, your connectivity with other peer may be limited ( client wont connect to other that use no encryption ) "fake IP/host in the "IP/Hostname": on some tracker/situation, this may get you banned and force you to go back to unreliable tracker. "Limit the download speed" doesnt add security but it might help to a smoother experience with internet while you're torrenting. which mean, if you apply no limit, and your torrent use all the speed, you'll get slow browsing and poor online gaming experience. you should limit upload and download for torrent, around 70 or 80% for slower internet, 90% for big connection ) source: "UPnP Port Mapping" = [URL="https://nakedsecurity.sophos.com/2013/02/05/upnp-flaws-turn-millions-of-firewalls-into-doorstops/"]UPnP flaws turn millions of firewalls into doorstops[/URL] "NAT-PMP Port Mapping" = [URL="https://en.wikipedia.org/wiki/NAT_Port_Mapping_Protocol"]NAT Port Mapping Protocol - Wikipedia, the free encyclopedia[/URL] "Protocol Encryption" = [URL="https://torrentfreak.com/how-to-encrypt-bittorrent-traffic/"]How To Encrypt BitTorrent Traffic - TorrentFreak[/URL] [/QUOTE]
Insert quotes…
Verification
Post reply
Top