Marconi Router Modem password

Frantic said:
How can i access my ADSL connected PC remotely over the internet.

Alternatively, can i host a web site on my PC and make it available on the internet.

Any ideas?

I am doing that already.

1. install some sort of HTTP server on your pc - apache, IIS etc.
2. use virtual server to map the port 80 to your ip/port 80.
3. you'll have to setup your router's configuration port 80 to some other number. It messes up the mapping to your pc. For some reason the traffic comes in on port 80, gets rerouted to your pc's port 80 but there it goes haywire. instead it bounces back to your router from LAN side. Then the router realises its an external IP and block HTTP access to your router's configuration. no website popping up.
 
Serious Conexant CX82310-based ADSL router vulnerability

Routers with the Conexant chip set have a serious vulnerability

See this link
http://www.chiark.greenend.org.uk/~theom/security/origo.html

Try this:-
telnet your.asdl.router.address 254

You will be given a password prompt. Just hit Enter and you will get administrative access to the ADSL router.

I have tried it out on my client's 4-port ethernet adsl modem that they obtained from Telkom.

The fix is to do port redirection under Virtual Server Configuration:-
Public port 254
Private port 254
Port type TCP
Host IP Address some.none-existent.ip.address

Do this also for port 255
 
fismail said:
<blockquote id="quote"><font size="1" face="Verdana, Arial, Helvetica" id="quote">quote:<hr height="1" noshade id="quote"><i>Originally posted by ItalicBold</i>
<br />Yes well it's Telkoms responsibility to inform its clients of security risks relating to the use of it's products, which this is. Any half decent Modem comes with a manual which would clearly highlight these issues, however no manual even exists for these excuses of a modem.
<hr height="1" noshade id="quote"></blockquote id="quote"></font id="quote">

I would think that it is also the users responsibility to since wanting to get onto the ADSL product offering to also educate themselves as much as possible about the matter at hand.
Clearly we have lax and lazy users who if they spot 5 cents more on their cellphone bill , they'll go into a frenzy , yet when on ADSL , they expect to be spoonfed.
RTFM and there are plenty of sites to do your homework on.

Care to help me get started ? Name some... cause I dont even know what u guys are discussing here....
 
what are you talking about!!!

jgoosen said:
The telkom Links stuff does not work......:)For me usign windows 2000 Thought any advice also Marconi modem.USB

r u talking about the modem or win2000
 
default setups

Go†h_Li†e°² said:
Im sad to say that three outa ten ip's are still running default setups...its kinda sad that telkom charges so much and doesn't even bother with a proper setup on the clientside.......poor home users suffer the most.
Makes you think how many telkom staff members know about this and abuses it!!
Service my @ss


explain ips using default setups guy
 
I once wrote a simple php application, that would visit every IP address in a given range and attempt to open a website at http://username:password@IPADDRESS/

It was armed with the default Usernames and Passwords for as many ADSL Modems as I could get hold of.

It would then write all of the info into my mysql database, for "further" testing...

It was quite a fast script, but you still needed to start it early in the AM...

Worked very well, and ended up proving to my friend that most people were stupid !!!!

P.S. No damage was done on my part.
 
My d-link only allows local access to the router and only if you want you can allow remote access to it. I think thats the best way :D
 
password hashes

Chris,

The same little application (freely available on the web) that does the packet sniffing can decode your password hashes. It is not difficult, but the sniffing it EATS your bandwidth!! :-)))

There is ZERO privacy :eek: in an unprotected sytem like this, unless you create it, by setting up a little firewall like Smoothwall to protect your system.

Cheers
Dubdubdub
MSc Information Security.




The password is displayed as ******* how can someone steal that?
What is more of a risk is that the Telacom help desk can read and tell you your password on there system.

Cheers
Chris[/QUOTE]
 
Top
Sign up to the MyBroadband newsletter
X