Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ajbw

115 posts

Master Geek

Lifetime subscriber

#114255 13-Feb-2013 16:07
Send private message

I have just helped a neighbour who has switched to Trustpower Kinect install the ADSL modem that was supplied.
I was rather surprised to see the following:

1 The admin username and password were left at the default
2 uPnP was enabled, and accessible over the internet (see http://upnp-check.rapid7.com/ or http://www.grc.com )
3 The firewall was not enabled, and telnet, SSH, FTP and various other services were exposed.

Am I right to be worried about the level of care that Trustpower are taking with their customers?


Create new topic
raytaylor
4014 posts

Uber Geek

Trusted

  #761888 13-Feb-2013 18:57
Send private message

I was going to suggest doing a port scan on a certain other isp's ip range and you will be horrified - but i wont mention the name of the ISP for the sake of their customers.




Ray Taylor

There is no place like localhost

Spreadsheet for Comparing Electricity Plans Here




dimsim
848 posts

Ultimate Geek

Trusted
Lifetime subscriber

  #761892 13-Feb-2013 19:02
Send private message

raytaylor: I was going to suggest doing a port scan on a certain other isp's ip range and you will be horrified - but i wont mention the name of the ISP for the sake of their customers.


Surely you should name them for the sake of their customers that do read this forum so they are able to do something about it?

raytaylor
4014 posts

Uber Geek

Trusted

  #761916 13-Feb-2013 19:38
Send private message

Okay
If you have a dynalink router provided by your isp, enable the firewall and switch off wan admin access

Thats the best I will do. If frieatism wants me to name the ISP then i will, but i would rather not.

If i am at  a customer site and needing to replace the router, but dont want to call the ISP for a password reset on their ppp username, i just log into the router config page using firefox and view source on the html - works for about 50% of the routers out there where the password is in plaintext in the html, but the browser only shows stars. 




Ray Taylor

There is no place like localhost

Spreadsheet for Comparing Electricity Plans Here


Create new topic





News and reviews »

Air New Zealand Starts AI adoption with OpenAI
Posted 24-Jul-2025 16:00


eero Pro 7 Review
Posted 23-Jul-2025 12:07


BeeStation Plus Review
Posted 21-Jul-2025 14:21


eero Unveils New Wi-Fi 7 Products in New Zealand
Posted 21-Jul-2025 00:01


WiZ Introduces HDMI Sync Box and other Light Devices
Posted 20-Jul-2025 17:32


RedShield Enhances DDoS and Bot Attack Protection
Posted 20-Jul-2025 17:26


Seagate Ships 30TB Drives
Posted 17-Jul-2025 11:24


Oclean AirPump A10 Water Flosser Review
Posted 13-Jul-2025 11:05


Samsung Galaxy Z Fold7: Raising the Bar for Smartphones
Posted 10-Jul-2025 02:01


Samsung Galaxy Z Flip7 Brings New Edge-To-Edge FlexWindow
Posted 10-Jul-2025 02:01


Epson Launches New AM-C550Z WorkForce Enterprise printer
Posted 9-Jul-2025 18:22


Samsung Releases Smart Monitor M9
Posted 9-Jul-2025 17:46


Nearly Half of Older Kiwis Still Write their Passwords on Paper
Posted 9-Jul-2025 08:42


D-Link 4G+ Cat6 Wi-Fi 6 DWR-933M Mobile Hotspot Review
Posted 1-Jul-2025 11:34


Oppo A5 Series Launches With New Levels of Durability
Posted 30-Jun-2025 10:15









Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.