Maximum PC

So I have noticed that there is no forum here relating to "Security?"

@Question is, what are the inherent security risks associated with setting my DSL/Cable router to enable UPnP?

I'm using a 10/100/1000 network backup device.

Just curious. Thanks.

*edit 10/100/1000

As long as you're running trusted apps, you should be fine with uPnP.

..but most will generally have this problem as a result of whatever crapware they install, so yea, it can be a risk...imagine someone remote who gains access to your lan because of this.

and this just belongs in network nook.

Ok. So if said crapware gets exec-uted, it might exploit the UPnP setting?

Question, can I turn on UPnP just to initially configure the device, then turn it off? Or would It be better to open the ports on my own?

And oh yea, sorry, network nook. I'll try to properly classify.

Can an ADMIN please move this topic to the "Network Nook?"

Moved.

My opinion:
it's a user-be-cautious thing. If you only do 'normal' web tasks, there's not much of a need to enable UPnP. Add an app or two that needs specific incoming ports open, do so manually.
Some hardware, though, won't let you globally open a port - only forward port xxxx to device yyyy. That can be a problem if you have more than one PC that will be using the same app (and, therefore, port.) So, it also depends on the specifics of your home setup.

I will say this:
I do have UPnP enabled on my Smoothwall (PC-based router.) But, I have reasons:
- I didn't want the pain of trying to forward all of the ports that Xbox Live needs (and, it's quite a few);
- there are two 360s in the house, and both are used on Live. Can't forward ports, need to let UPnP do that.

I practive 'safe surfing' on my PCs; all of the PCs in the house have decent security software. I have yet to frakk up one of mine; only one time has another (not mine) been frakked up by something nasty (whcih did try to open up incoming ports.) But, roomie did notice odd isht, and said PC was rolled back to a pre-cootie backup (WHS backups FTW!) So, no further issues.
YMMV.

Thank you for your insight. One thing that makes me worry is the amount of ports that "Steam" opens.

(This is of course a different topic.)