iBurst account tampering

B

BCO

Honorary Master
Joined
Dec 17, 2004
Messages
13,229
Reaction score
27
Location
Slaapstad
Something very strange happened today regarding my connection. My g/f was online and got disconnected, whereafter she was unable to reconnect. She received Error 691 - The username/password is unavailable on this domain, or whatever.

On returning from work, I phoned the helpdesk, and it transpired that my password had mysteriously changed. The only 2 people outside of iBurst who knew the exisiting password and were able to change it are me and my girlfriend. We certainly did not change the password.

This is a very disturbing situation - if things are as they appear, then an iBurst employee had hijacked my account. Are the any planned security measures in order to prevent this sort of thing.
 
I also experienced a problem today (was forcibly disconnected), I also suspected my password/username had been mungled (continual delay at the Verifying... stage), I left it on redial, when I got back to my PC it had eventually reconnected again. A good 30 minutes or so wasted, but hey we are in pre-luanch phase...
 
I also received that error, it usually happens when their Radius server (one responsible for the user authentication onto the network) went down...

Not really a big issue, I could connect again in a couple of minutes
 
i just had the same problem.

i got disconnected, tried to reconnect for about 45 mins before i got back on.

my log files indicate that it was and authentication failure altough i have not changed anything (username or password) in my PPP config files.

chz,
kk
 
weird and weirder...

I had a similar situation - I got home 10:30 and hit the connect icon on my desktop and it spent about a minute trying to authenticate my userid/password (which are saved on my system) and failed to authenticate - I tried like 3 times and on the third time I manually entered my password on the dialup networking option and it worked?

weird... :confused:

I don't like things I don't understand... :) Quite a lot of things in the world actually.
 
Had the same problems, but was able to call and see whats happening, and there was a problem, ten minutes later i logged on.
 
I think it happened to everyone who was disconnected last night. The WBS helpdesk told me that the problem lay with Uunet. Anyway, it was fixed, and we all lived happily on till bed time.
 
Strange, I also had the same problem last night, and I actually gave up trying. Was there a network problem we were [once again] not aware of?
 
I just wish that there was some kind of notification system so that I knew when there was a problem. Obviously putting it on a website would not help, nor would emailing it.
What about sending out sms's to people who will be effected? They would drop the number of calls to their helpdesk and everyone would be happy. It's just that I find myself looking through logs and re-doing setting/ checking cables all for nothing?
 
I've also been having that problem, since last night actually.

A lot of times I just get disconnected it keeps telling me invalid username and password or a while.
 
Guys, I know that their was some sort of verification problem at iBurst. The thing is my password actually changed. Dunno how.
 
BlueCollar said:
Guys, I know that their was some sort of verification problem at iBurst. The thing is my password actually changed. Dunno how.
Click to expand...
Ok, did WBS tell you what it had changed to, and if so, was it maybe an old password?

If it was an old password, they might've done a db restore from backup or something.
 
ic, it had been changed to another password that I have never heard of before much less used. Anyways, let's just hope it doesn't happen again.
 
BlueCollar, I'm unaware of exactly how their authentication process works and what servers they have in place, but here's a quick rundown of what I speculate could have happend :

If they use Radius servers for authentication (like Sentech does) the system's feature is, that you can have multiple users, with the exact same username (but different passwords) and still authenticate properly.

Now, upon user account creation, the password uniquely identifies that specific user. iBurst went as far as to actually associate a person with a UTD serial number found on the device (like jour IMEI number on a cellphone)

So, probably due to human error, a user with your exact same username was created, but your account was used/changed accordingly.

Thus, if my speculation is correct, I would call support and ask them to quote you the UTD (or UTC) device number they associate with your account, and check if it still is the same or not. If it's not, you know what happend. If it is still the same, I just wasted 5 minutes typing this :)
 
:eek:
Well there are some proven gaps in the authetication system.
1. It is possible to use 1 username/password on different UTDID's
2. 1 username/password can login at the same time from different UTDID's
And dont flame me about. We proved it last nite.

But the problem logging in and you get wrong password seem to be a timeout between the client and whatever authentication server WBS are using and the client interpret it as an wrong password.
 
The timeout = wrong password could be very possible. This brings up the question of everyone's signal strenght. Then again, WBS could probably amend the timeout re: authentication

Your findings are quite strange, about a week after I joined in November, I was contacted to enter my details (including my UTD) into their new system. I asked why the UTD serial was needed, and they told me it is because they will restrict the user to that specific UTD they bought/leased

Have you confronted support about this fact? I suggest speaking with Dylan.
 
Didnt speak to anybody yet. Still want play around and what else is possible. The passwords and UTD's are on the company account. So I dont know if that is a factor.
 
Oh and WBS amending the timeout :
I think its more client side than server side (pap/chap handshaking etc).
Will have to do a bit of debugging there.
 
I've had it numerous times myself, however, iBurst did tell me all the times I did experience it, that there was a problem their side...

Investigate on! :)
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X