-
Ask a question and get free supportUnlock new privileges and see hidden discussionsWin prizes and earn reputation
-
Question of the day ~ How often do you braai?
-
Afristay giveaway.Win a 2-night stay for two people at an establishment of your choice with R1,000 in spending money. Enter here.
Sign up with GoogleI cannot believe this.
- Thread starter gripen
- Start date
nope --- PASSWORDS ARE NOT encrypted... I've had Call Centre staff supply a customer's password without confirming id or any form of authorization.
Simply phone the call centre - say you're having hassles and you want to check the password ... pisses ME OFF.
R
Simply phone the call centre - say you're having hassles and you want to check the password ... pisses ME OFF.
R
Comrade Borris
Well-Known Member
- Joined
- Mar 5, 2004
- Messages
- 215
This is now the 3rd case of gross negligence / utter incompetance that i've heard of IN THE LAST FOUR DAYS!
I can't beleive these idiots! And to think 4 months ago all we wanted from them was a f@rking news server!
<div align="left"><font size="2"><font face="Trebuchet MS"> |<font color="blue">256k</font id="blue">| |<font color="blue">26%</font id="blue">| |<font color="blue">66<font color="black">/</font id="black">HYDEPARK</font id="blue">| [:X][8D][:X]
</font id="Trebuchet MS"></font id="size2"></div id="left">
I can't beleive these idiots! And to think 4 months ago all we wanted from them was a f@rking news server!
<div align="left"><font size="2"><font face="Trebuchet MS"> |<font color="blue">256k</font id="blue">| |<font color="blue">26%</font id="blue">| |<font color="blue">66<font color="black">/</font id="black">HYDEPARK</font id="blue">| [:X][8D][:X]
</font id="Trebuchet MS"></font id="size2"></div id="left">
Jst checked my details, and changed my password (just in case).
Interestingly enough I seem to owe Sentech R65549.00 according to my account balance. Evidently I was last billed on the 30th of November 2012 and will be billed again on the 31st of December 2012. I hope they wait that long, cos there's no fscking way that my bank will give them that amount from my cheque account. Jaysus... is there no limit to their incompetence?
MW128, Tower 50 (Northpark Plaza), Signal:12%,S-N-L: 5, BER: 40%
Interestingly enough I seem to owe Sentech R65549.00 according to my account balance. Evidently I was last billed on the 30th of November 2012 and will be billed again on the 31st of December 2012. I hope they wait that long, cos there's no fscking way that my bank will give them that amount from my cheque account. Jaysus... is there no limit to their incompetence?
MW128, Tower 50 (Northpark Plaza), Signal:12%,S-N-L: 5, BER: 40%
I AM rather looking forward to see what I'm getting billed this month --- faarrk .. Mine says 34000 and I have -31 months left on my account ...
=============
As to password issue
=============
Us pppoe users are going to have to look into getting the service to work with different usernames for the network and ip services...
I now run one username and password combination for my access service, another for my ip service and a third set for my e-mail .. works ok with the windows client ... gonna have to play under linux again ;-)
R
=============
As to password issue
=============
Us pppoe users are going to have to look into getting the service to work with different usernames for the network and ip services...
I now run one username and password combination for my access service, another for my ip service and a third set for my e-mail .. works ok with the windows client ... gonna have to play under linux again ;-)
R
just for fun you change you username and password to
winston is a ****** (insert your expletive here)
or Michelles *****
call helldesk, ask for your username/password record the phone call, splice have fun [
]
_________________________________________________________________________
No more catenna, now its a custenna
winston is a ****** (insert your expletive here)
or Michelles *****
call helldesk, ask for your username/password record the phone call, splice have fun [
]_________________________________________________________________________
No more catenna, now its a custenna
guest2013-1
guest
- Joined
- Aug 22, 2003
- Messages
- 19,800
Didn't read through all this so I apologize if someone mentioned this already,
#1 They asked you to choose a username on the online application, this was totally ignored in my case (even my password I chose)
#2 The username could be a combination of your surname/firstname or firstname/surname, it is possible that a user with the exact same firstname/surname called in to bitch about his password (or better yet, signed up and got his password ignored too) and they gave the dude the WRONG details.
The orcs has the power to reset passwords, and look up user information... thats one thing I KNOW FOR A FACT they have power over of (except billing and actual logs to check who is logged in and how much they're downloading etc)
Anyway, been working (again... yay) and I have a meeting 7:30am this morning, so i'm going to sleep
And btw, and I didn't say this to jinx myself, and I'm hoping I don't, I wasn't billed for the month of July... and I've seen alot of users mention this on the forum.
Cheers you sleepy peoples
Help save the bandwidth. Decent download speeds for TheRodent! Stop downloading now!!!
#1 They asked you to choose a username on the online application, this was totally ignored in my case (even my password I chose)
#2 The username could be a combination of your surname/firstname or firstname/surname, it is possible that a user with the exact same firstname/surname called in to bitch about his password (or better yet, signed up and got his password ignored too) and they gave the dude the WRONG details.
The orcs has the power to reset passwords, and look up user information... thats one thing I KNOW FOR A FACT they have power over of (except billing and actual logs to check who is logged in and how much they're downloading etc)
Anyway, been working (again... yay) and I have a meeting 7:30am this morning, so i'm going to sleep
And btw, and I didn't say this to jinx myself, and I'm hoping I don't, I wasn't billed for the month of July... and I've seen alot of users mention this on the forum.
Cheers you sleepy peoples
Help save the bandwidth. Decent download speeds for TheRodent! Stop downloading now!!!
buffalobill
Senior Member
- Joined
- Jun 20, 2004
- Messages
- 844
For my edification, how do you check your billing and other details online?
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
I have an inferiority complex. But it's only a little one.
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
I have an inferiority complex. But it's only a little one.
TheRoDent
Cool Ideas Rep
- Joined
- Aug 6, 2003
- Messages
- 6,218
Guys, let me clear this up for you. Infranet, allows duplicate usernames. In fact, on your single account that you can access through the reg.* site you could have different usernames/passwords for each service that is listed on your account.
Thus, when the call-centre guy responded, it's ok "They have different" passwords, he was speaking the truth. The service being accessed is differentiated by the username and password combination.
I know this won't make sense to you from a normal RDBMS perspective, but the fact is that Infranet's design allows for this. The problem comes in when one wants say, export a single list that say, gets uploaded to a Radius authentication database.
THEN you'll end up with a list that something a plain old Radius database won't like since there will be duplicates. But as far as infranet is concerned, internally it doesn't care, as long as their is some distinguishing authentication details.
Ideally the Radius server should authenticate using Infranet's API's which should then stop this from happening, but this might not be the case, which is possibly why Greedy has had hassles.
<center><h6> MyWireless <s>Hacks</s> Tweaks & Tech Info || Have you checked the fawking FAQ? <br /> <font color="red">Tired of Sentech's bad service? Want to compare speeds? We at least listen...</font id="red"></h6></center>
Thus, when the call-centre guy responded, it's ok "They have different" passwords, he was speaking the truth. The service being accessed is differentiated by the username and password combination.
I know this won't make sense to you from a normal RDBMS perspective, but the fact is that Infranet's design allows for this. The problem comes in when one wants say, export a single list that say, gets uploaded to a Radius authentication database.
THEN you'll end up with a list that something a plain old Radius database won't like since there will be duplicates. But as far as infranet is concerned, internally it doesn't care, as long as their is some distinguishing authentication details.
Ideally the Radius server should authenticate using Infranet's API's which should then stop this from happening, but this might not be the case, which is possibly why Greedy has had hassles.
<center><h6> MyWireless <s>Hacks</s> Tweaks & Tech Info || Have you checked the fawking FAQ? <br /> <font color="red">Tired of Sentech's bad service? Want to compare speeds? We at least listen...</font id="red"></h6></center>
Fair enough. How would one differentiate the different access details via pppoe ?
ie - we need to first do a network service authentication and then do a ip service authentication....
surely Infranet's system should do duplicate checking on a per service basis - if so one has to wonder how greedy's username ended up getting used - if it was due to duplicates.
As an aside- hows your speed - test Brixton this morning and she's *** .... again ;-(
ie - we need to first do a network service authentication and then do a ip service authentication....
surely Infranet's system should do duplicate checking on a per service basis - if so one has to wonder how greedy's username ended up getting used - if it was due to duplicates.
As an aside- hows your speed - test Brixton this morning and she's *** .... again ;-(
TheRoDent
Cool Ideas Rep
- Joined
- Aug 6, 2003
- Messages
- 6,218
Obviously the nodeB network controllers have some kind of mechanism and then so does radius. I'm guessing that these may both be using the infranet API, which is the way things should be done when using Infranet. On PPPoE under Unix, the modem attaches to the system using the last used username, password, and Service provider (that AT+CGDCONT command) This is the much mentioned "windows flashing" that needs to happen before you can use the modem under Macos or Unix via PPPoE.
Brixton Tower sucked again for me on Sunday morning, and today, but at least it sucked 6K/s instead of the usual 2-4K/s. The proxies have definately made a bit of a difference i.m.o.
<center><h6> MyWireless <s>Hacks</s> Tweaks & Tech Info || Have you checked the fawking FAQ? <br /> <font color="red">Tired of Sentech's bad service? Want to compare speeds? We at least listen...</font id="red"></h6></center>
Brixton Tower sucked again for me on Sunday morning, and today, but at least it sucked 6K/s instead of the usual 2-4K/s. The proxies have definately made a bit of a difference i.m.o.
<center><h6> MyWireless <s>Hacks</s> Tweaks & Tech Info || Have you checked the fawking FAQ? <br /> <font color="red">Tired of Sentech's bad service? Want to compare speeds? We at least listen...</font id="red"></h6></center>
<blockquote id="quote"><font size="1" face="Verdana, Arial, Helvetica" id="quote">quote:<hr height="1" noshade id="quote"><i>Originally posted by buffalobill</i>
<br />For my edification, how do you check your billing and other details online? <hr height="1" noshade id="quote"></blockquote id="quote"></font id="quote">
here: https://reg.mywireless.sentech.co.za/register/index.jsp
_________________________________________________________________________
No more catenna, now its a custenna
<br />For my edification, how do you check your billing and other details online? <hr height="1" noshade id="quote"></blockquote id="quote"></font id="quote">
here: https://reg.mywireless.sentech.co.za/register/index.jsp
_________________________________________________________________________
No more catenna, now its a custenna
The same **** happend to me on friday night. I figured it to be cool since I phoned them up and got them to cancel my account. Now after reading all this I'm not so sure that they did cancel the damn thing since I can login to my email using web browser! My request for confirmation is still pending so I'll wait a while and see.
btw, I can't access the reg.mywire.. site to check my account cuz my work firewall blocks it.
btw, I can't access the reg.mywire.. site to check my account cuz my work firewall blocks it.
<blockquote id="quote"><font size="1" face="Verdana, Arial, Helvetica" id="quote">quote:<hr height="1" noshade id="quote"><i>Originally posted by regardtv</i>
<br />nope --- PASSWORDS ARE NOT encrypted... I've had Call Centre staff supply a customer's password without confirming id or any form of authorization.
Simply phone the call centre - say you're having hassles and you want to check the password ... pisses ME OFF.
R
<hr height="1" noshade id="quote"></blockquote id="quote"></font id="quote">
Yup, my mate has MW 128k, and I just called the helpdesk. I know his e-mail address is jdoe@sentechsa.com. I said, I'm John Doe and I can't get Outlook Express to work, what to I put in these dialog boxes? they talked me though it, and when prompted for a password:
I said "What's my password?"
They said "same as you use to login"
I said "it's lots of stars and I don't recall wha tit should be"
Oh, says the Orc, it's "password"
"Thanks" says I.
Ta Da! I now have a valid username & password.
Not bothered to try this yet, but anyone tried a brute force attack to guess passwords? If your username is the same as your e-mail address, then we've already got half the battle won, all we need now is a Linux box and a brute force password dictionary.
I'm guessing there is some form of ACS box in place that has some decent policies set on it, but then again, user management at Sentech may well be a piece of A4 pinned to be toilet door.
<br />nope --- PASSWORDS ARE NOT encrypted... I've had Call Centre staff supply a customer's password without confirming id or any form of authorization.
Simply phone the call centre - say you're having hassles and you want to check the password ... pisses ME OFF.
R
<hr height="1" noshade id="quote"></blockquote id="quote"></font id="quote">
Yup, my mate has MW 128k, and I just called the helpdesk. I know his e-mail address is jdoe@sentechsa.com. I said, I'm John Doe and I can't get Outlook Express to work, what to I put in these dialog boxes? they talked me though it, and when prompted for a password:
I said "What's my password?"
They said "same as you use to login"
I said "it's lots of stars and I don't recall wha tit should be"
Oh, says the Orc, it's "password"
"Thanks" says I.
Ta Da! I now have a valid username & password.
Not bothered to try this yet, but anyone tried a brute force attack to guess passwords? If your username is the same as your e-mail address, then we've already got half the battle won, all we need now is a Linux box and a brute force password dictionary.
I'm guessing there is some form of ACS box in place that has some decent policies set on it, but then again, user management at Sentech may well be a piece of A4 pinned to be toilet door.
Just got off the phone. I kid you not but I was asked in plain english "what is your password?" um, Im not gonna say. I dodged it and get them to make me a new one.
Still dont know what tf is going on. Cant seem to get them to check if somebody is online on my acc. They are presently testing it on a modem apparently.
The passwords are separated ie. I dont think its possible to change your email password. My email works fine but my login does not. They really need a task team of intelligent people (like some forumites for example) to design and layout their network and also to stop crap like this and the proxy thing from happening. Basic stuff really.
Still dont know what tf is going on. Cant seem to get them to check if somebody is online on my acc. They are presently testing it on a modem apparently.
The passwords are separated ie. I dont think its possible to change your email password. My email works fine but my login does not. They really need a task team of intelligent people (like some forumites for example) to design and layout their network and also to stop crap like this and the proxy thing from happening. Basic stuff really.
TheRoDent
Cool Ideas Rep
- Joined
- Aug 6, 2003
- Messages
- 6,218
Trust me, with the overly complicated beast piece of crap account management tool that Infranet is, this might take years. I have experience in the field.
Believe me when I say "bear with them", since it really is an overly complicated useless piece of crap. It might be better for you to just ask them to create you a new account, as that is the one thing they might be able to do quickly. Have them shutdown the old account and all the services associated with it.
<center><h6> MyWireless <s>Hacks</s> Tweaks & Tech Info || Have you checked the fawking FAQ? <br /> <font color="red">Tired of Sentech's bad service? Want to compare speeds? We at least listen...</font id="red"></h6></center>
Believe me when I say "bear with them", since it really is an overly complicated useless piece of crap. It might be better for you to just ask them to create you a new account, as that is the one thing they might be able to do quickly. Have them shutdown the old account and all the services associated with it.
<center><h6> MyWireless <s>Hacks</s> Tweaks & Tech Info || Have you checked the fawking FAQ? <br /> <font color="red">Tired of Sentech's bad service? Want to compare speeds? We at least listen...</font id="red"></h6></center>
<blockquote id="quote"><font size="1" face="Verdana, Arial, Helvetica" id="quote">quote:<hr height="1" noshade id="quote">
Not bothered to try this yet, but anyone tried a brute force attack to guess passwords? If your username is the same as your e-mail address, then we've already got half the battle won, all we need now is a Linux box and a brute force password dictionary.
<hr height="1" noshade id="quote"></blockquote id="quote"></font id="quote">
I can also state that for most users that signed up through Nowire, their username equals their password unless they change it themselves. As far as I know, Nowire STILL does this and STILL does not supply any information to their customers on how to change their passwords. So you could probably try a whole lot of *@sentechsa.com and set the username/password the same. You're bound to find someone that didn't change it and you'll have a working account.
Not bothered to try this yet, but anyone tried a brute force attack to guess passwords? If your username is the same as your e-mail address, then we've already got half the battle won, all we need now is a Linux box and a brute force password dictionary.
<hr height="1" noshade id="quote"></blockquote id="quote"></font id="quote">
I can also state that for most users that signed up through Nowire, their username equals their password unless they change it themselves. As far as I know, Nowire STILL does this and STILL does not supply any information to their customers on how to change their passwords. So you could probably try a whole lot of *@sentechsa.com and set the username/password the same. You're bound to find someone that didn't change it and you'll have a working account.