UPnP for auto-forwarding Bitcoin ports

[ilovebitcoin]

How about using UPnP for auto-forwarding Bitcoin ports? (8333 TCP)

Also, why can't you use other ports?

[1714052565]

1714052565

[hugolp]

How about using UPnP for auto-forwarding Bitcoin ports? (8333 TCP)

Also, why can't you use other ports?

Having UPnP enabled in your router is a security suicide. UPnP inside your trusted local network is ok, but I would not use it in your router.

[ilovebitcoin]

I've seen a few people saying that, but honestly, I don't see why it would be a suicide. I don't really care that an application can change my port forwarding configuration. Why would I?

[hugolp]

I've seen a few people saying that, but honestly, I don't see why it would be a suicide. I don't really care that an application can change my port forwarding configuration. Why would I?

If someone can open ports in your router it can led to all kind of security holes. There was even a bug in the windows implementation of upnp that allowed anyone in the internet to open a port in your router. Its just not safe to allow automatically opening ports in your router.

[ilovebitcoin]

A malicious application would focus on deleting everything, so what more is destroyed if UPnP is enabled?

[cocodapuf]

A malicious application would focus on deleting everything, so what more is destroyed if UPnP is enabled?

Where'd you get that idea? A malicious application would have no interest in deleting stuff, your PC is way more useful intact, but under remote control.

[Schleicher]

If there already is malicious software on your computer it doesn't really matter if UPnP is enabled or not.
Disabling UPnP does not prevent outgoing connections.
NAT is not a firewall. Really.