Reporting insecure routers

DrJohnZoidberg

DrJohnZoidberg

Honorary Master
Joined
Jul 24, 2006
Messages
27,997
Reaction score
7,454
Location
Table View
Noticed a bunch of requests from a local public IP getting blocked by my firewall, checked to see what it was and turned out to be a D-Link 2750U router with it's remote management wide open (using default password).

I wish there was some way of letting these people know that they're slowly ruining the internet for everyone.

It's a Telkom ISP account, wouldn't it be possible to report these issues to the reps here (pm via MyBB) and ask them to contact the affected customers?
 
The D-Link DSL-2750U should, in the basic setup wizard, require you to change all three passwords on your router. This is something Telkom, coinciding with D-Link, needs to fix with a required firmware update (they should be able to do a remote flash to every router, I think) in order to secure an insane number of their customers.

For now, people should change their passwords in Maintenance -> Access Controls -> Account Password
Default usernames/passwords:
admin = admin
user = user
support = TelkomDlink12345

EDIT: I think that, in reporting to MyBB, MyBB should be able to report to the manufacturers or the ISPs who provide the routers -- they shouldn't report to users, because this could allow for more insecurity as malicious people catch on to the vulnerability and exploit it before it is fixed.
 
Last edited:
giggity said:
The D-Link DSL-2750U should, in the basic setup wizard, require you to change all three passwords on your router. This is something Telkom, coinciding with D-Link, needs to fix with a required firmware update (they should be able to do a remote flash to every router, I think) in order to secure an insane number of their customers.

For now, people should change their passwords in Maintenance -> Access Controls -> Account Password
Default usernames/passwords:
admin = admin
user = user
support = TelkomDlink12345

EDIT: I think that, in reporting to MyBB, MyBB should be able to report to the manufacturers or the ISPs who provide the routers -- they shouldn't report to users, because this could allow for more insecurity as malicious people catch on to the vulnerability and exploit it before it is fixed.
Click to expand...

Its illegal to logon to a router that you dont own and update the firmware.

So if I dont like your house colour I am welcome to just paint it over with something that suits me more ?
 
Change the password yourself :D Make it more secure for them :D
 
GoofySmurf said:
Its illegal to logon to a router that you dont own and update the firmware.

So if I dont like your house colour I am welcome to just paint it over with something that suits me more ?
Click to expand...

It's more like replacing hundreds of thousands of homes made with asbestos with ones made of non-lethal material.
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X