I thought i'd check my modem for open ports. I noticed that 23 (telnet), 53 (dns), 80 & 443 and 8081 are all open.
Pretty horrified tbh, because if there are any exploits for this router, they will undoubtedly target these open ports. I have all the file sharing stuff disabled on the router. Are these ports open for Spark to remotely administer/spy on you?
I had a google and can't find anything specific for this model of router right now, but who knows.
When I telnet to it I get this ATP cli thing:
skycity-host:~ ajross$ telnet 2XX-XXX-XX-XX-fibre.sparkbb.co.nz
Connected to XXX-XX-XX-XX-fibre.sparkbb.co.nz.
Escape character is '^]'.
Welcome, you are from 192.168.1.65
-------------------------------
-----Welcome to ATP Cli------
-------------------------------
Login: superadmin
Password:
Login incorrect. Try again.
What is this ATP cli? How can I close it. I believe that the port 80 is open to redirect to 443, which is the admin interface. Again, I want to close this - if I want to admin the router, I'd like to do it on the LAN only. Finally, 8081 is a web service but I can't seem to browse to it properly, I've telnet'ted to it below. What's it for, why is that open too?
Escape character is '^]'.
GET /
HTTP/1.1 401 Unauthorized
Connection: Keep-Alive
WWW-Authenticate: Digest realm="HuaweiHomeGateway",nonce="5d65628b9d898ae0112629a952b6f895", qop="auth", algorithm="MD5"
Content-Length: 0
Connection closed by foreign host.
Any help greatly appreciated. I'm not a fan of having my home network open to the Internet!