Marconi Router Modem password

O

oomfloors

New Member
Joined
Aug 5, 2003
Messages
5
Reaction score
0
Location
.
Thanks for the Telkom link oomfloors - Guys if you are using the Marconi Router please take note and visit the Telkom link

Hi Guys

It seems as if somebody in Telkom is checking out this site since almost a week after reading a post here about the Router modem password that must be changed to keep hackers [}:)] out, I went to the Telkom.co.za website and found a step by step instruction on how to change the password [:)]. Check it out: http://www.telkom.co.za/adsl/tech_info4.jsp

As for the rest I hope the meeting tomorrow turns out well!

Cheers
 
Last edited by a moderator:
I actually reported that loophole to Telkom when a concerned forum member notified me of the existance of the loophole, thankfully Telkom took notice.
 
The telkom Links stuff does not work......:)For me usign windows 2000 Thought any advice also Marconi modem.USB
 
No Italic you can Telnet into the modem from the internet. Also if you have not set up the PAT settings to pass port 80 through it will bring up the logon configuration screen on a browser over the internet. So if I see your address on IRC or a game etc it is easy to hack in.

It is important to change the passwords and disable telnet!
 
I have actually snooped around on the 165.165 subnet and was able to log on to many marconi adsl routers.

The system is wide open to malicious hacking.

I blame Telkom.

Every modem they install they should change the login passwords. Many small businesses lack the technical knowhow. It is not fair to blame them

THIS IS TERRIBLE DERELICTION OF DUTY ON THE PART OF TELKOM
 
Wow

I'm just glad i phoned telkom and told them to come and take back their marconi/indian black market modem.
 
Well in that case I intend to have my ISP account password changed.

I suggest you also change the http port the router uses to something more abscure, you can do that by going to http://192.168.10.200/Bconfig/System.sht

Then you must remember to access the router on the new port, eg: http://192.168.10.200:1337/Bconfig/System.sht if you changed the port to 1337.
 
Thanks this is a good one. I changed my port!! What is it about the PAT? What does it stand for and what can I change the port to?

PU
 
Hi guys

I've done some more investigation. There are many modems on the market with this security clitch. I spoke to Marconi and they said that all their modems worldwide are distributed with a standard supervisory username and password. They also assured me that it's impossible to hack into a PC through the 165.165 subnet, you can only access the modem settings. So I don't think we need to worry too much. Just take note that many other modems (Alcatel, Siemens etc) have the same problem.[;)]

Cheers vir eers!
 
Hi Guys

I've got a NetGear DM602 and i've got the same problem. I agree with oomfloors (RE: it's impossible to hack into a PC through the 165.165 subnet, you can only access the modem settings) although there is nothing stopping a person from getting your ISP username and password and stealing your bandwidth.
 
<blockquote id="quote"><font size="1" face="Verdana, Arial, Helvetica" id="quote">quote:<hr height="1" noshade id="quote">there is nothing stopping a person from getting your ISP username and password and stealing your bandwidth.
<hr height="1" noshade id="quote"></blockquote id="quote"></font id="quote">

The password is displayed as ******* how can someone steal that?
What is more of a risk is that the Telacom help desk can read and tell you your password on there system.

Cheers
Chris
 
Well, its pretty simple, right click and choose view source. Sift through the html and you will see it in plain ascii. Remember ppl can also telnet into your modem.

<b>AND YES THEY CAN HACK INTO YOUR PCS!</b> All they need to do is set up PAT for the dhcp ip addreses (they can check the range in telnet and the web interface). PAT can allow them to open ports on any of the pcs behind the router if they dont have a firewall.
 
It is true you can hack into the PCs if you setup a PAT rule
HOWEVER you do have to reboot the modem in order for the PAT rule to take effect . So you will lose the person's IP address

Though if you are playing them a game or chatting on ITC you may be able to get their new ip

I've stumbled across a few routers with default passwords by accident
 
Why's people calling this a "glitch" and "marconi security vulnerability". Any hardware product ships with its default passwords, its plain old user ignorance that causes the password to stay there (:
 
Yes well it's Telkoms responsibility to inform its clients of security risks relating to the use of it's products, which this is. Any half decent Modem comes with a manual which would clearly highlight these issues, however no manual even exists for these excuses of a modem.
 
Though this was quite interesting

Fast Data Rate(kbps)
Up stream 640
Down stream 3552

I presume that is what my line is really capable of - so when will they offer me the option of using it?

I would like to know - where is our bandwidth limited to 512k? Is it at there authentication server (and applies to account) or is it at the SLAM and apply to each line? cause what is stopping me from buying a second modem, getting a second username (but not line rental) and then having 1 meg?

Artagra
 
<blockquote id="quote"><font size="1" face="Verdana, Arial, Helvetica" id="quote">quote:<hr height="1" noshade id="quote"><i>Originally posted by ItalicBold</i>
<br />Yes well it's Telkoms responsibility to inform its clients of security risks relating to the use of it's products, which this is. Any half decent Modem comes with a manual which would clearly highlight these issues, however no manual even exists for these excuses of a modem.
<hr height="1" noshade id="quote"></blockquote id="quote"></font id="quote">

I would think that it is also the users responsibility to since wanting to get onto the ADSL product offering to also educate themselves as much as possible about the matter at hand.
Clearly we have lax and lazy users who if they spot 5 cents more on their cellphone bill , they'll go into a frenzy , yet when on ADSL , they expect to be spoonfed.
RTFM and there are plenty of sites to do your homework on.
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X