| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 44676 | 2004-04-27 02:05:00 | DSL Router setup visible via WAN interface | wuppo (41) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 232326 | 2004-04-27 02:05:00 | Whilst verifying that my router setup server was not accessible via the public IP (wan interface) - it isn't :) , I happened to discover that there are a significant number of routers that have their setup login publicly exposed, out there. Quite commonly, the name 'Hasbani' shows up - I believe it is a type of Conexant ADSL chip. It may be prudent for all you ADSL router owners (especially if your setup mentions Hasbani) to check that all is watertight, and at least change your setup password for something ridiculously difficult. :| |
wuppo (41) | ||
| 232327 | 2004-04-28 02:51:00 | Now, Now we cannot have everybody running a secure network and PC as there would be no opportunity for the likes of Internal Affairs or the SIS to snoop peoples systems<grin> Sorry, just could not resist... |
ugh1 (4204) | ||
| 232328 | 2004-04-28 04:04:00 | Can you explain how you can test your ADSL modem is secure,I have installed one of the modems you have mentioned,apart from changing the default admin password is there anything else to do,the IP address should be dynamic I believe. regards, John. |
john r (782) | ||
| 232329 | 2004-04-28 04:18:00 | > Can you explain how you can test your ADSL modem is > secure,I have installed one of the modems you have > mentioned,apart from changing the default admin > password is there anything else to do,the IP address > should be dynamic I believe. > regards, > John. My DSE router had port 80 open to the WAN by default for remote management. You could change it to another port but it would then leave that port open. It also had an option too control access to the management, i.e. LAN, WAN or BOTH. In the end I just went into the pin hole router. i.e. virtual servers, and routed the port 80 traffic to a non exsistant IP address and problem solved. Also the router had port 135 open, even after clearing all the pin hole rules it was still open!! so routing that into nothing fixed that. You can visit http://www.grc.com and use the shields up test to check what ports may be open on your router. |
ugh1 (4204) | ||
| 232330 | 2004-04-28 04:45:00 | Just disable anything that allows remote access. Dynalink have a firmware upgrade for this a couple of routers that had/have this issue and I believe D-Link have done the same if either is your brand. Cheers Murray P |
Murray P (44) | ||
| 232331 | 2004-04-28 06:26:00 | Yeah, when you pinhole with virtual server, it practically opens that port up completely. Put the pinholed port into the grc.com scanner and it will show as open. Thats quite a worry, but would anyone know how to fix? Your web administration thing should be off by default? Surely theres an option to turn it off? I'd change it to the highest port # possible, then firewall it off. |
PoWa (203) | ||
| 232332 | 2004-04-28 06:45:00 | Most people never bother changing their routers... The very FIRST thing that you should do is disable remote access. That way the settings have to be changed from within your LAN. The Second thing on the "to-do" list is change the username/password for access... Now I dont just mean adding another account, but actually change it altogether! I dont know how many people I've been able to remotely setup port-forwarding for by using the defaults of the username "admin" and a password of the following: admin password 1234 epicrouter private Its just CRAZY... So much for security... From there I could easily port-forward to any PC! Chill. |
Chilling_Silence (9) | ||
| 232333 | 2004-04-28 09:50:00 | >Can you explain how you can test your ADSL modem is secure Find out your current ip (www.whatismyip.com) and get someone else outside of your connection to enter the IP number in their browser. If they get a login dialog, you're in trouble - your router setup is exposed to the world!!! If they get 'page not available' or similiar, you're ok. |
wuppo (41) | ||
| 1 | |||||