Go Back   English Forum Switzerland > Help & tips > TV/internet/telephone  
Reply
 
Thread Tools Display Modes
  #41  
Old 08.04.2011, 11:24
esto's Avatar
Forum Veteran
 
Join Date: Mar 2008
Location: CHE
Posts: 1,361
Groaned at 76 Times in 58 Posts
Thanked 3,225 Times in 1,406 Posts
esto has a reputation beyond reputeesto has a reputation beyond reputeesto has a reputation beyond reputeesto has a reputation beyond reputeesto has a reputation beyond repute
Re: New Cablecom WLAN/VOIP Router - Security warning.

Quote:
View Post
Disable via the web admin Page...
It does have a WPS switch though...
Oh, too bad. The newer version of Swisscom's (Motorola) modem has a physical WLAN on/off button on it, which is really nice and convienient. That's something I'd like to see more WLAN routers have, because leaving your WLAN on 24/7 isn't really good/necessary, and it's a pain to log in from a desk-top to have to turn it on/off all the time. A physical switch is perfect.
Reply With Quote
  #42  
Old 08.04.2011, 12:51
Newbie
 
Join Date: Apr 2011
Location: Zurich
Posts: 1
Groaned at 0 Times in 0 Posts
Thanked 6 Times in 1 Post
upc_cablecom has no particular reputation at present
Re: New Cablecom WLAN/VOIP Router - Security warning.

Hi everyone

We would like to take advantage of the situation to rectify the security concerns mentioned in this thread:

The modem/router doesn’t carry the vulnerabilities mentioned in this thread’s title. The device is being directly provided by the manufacturer to all upc affiliates. However, the device is finally subjected to country-specific adaptations. These have been fulfilled on the software as well as the hardware level.

The manufacturer prints the individual SSIDs and passwords directly onto the bottom of the device. As these are randomly generated unique identifiers, we don’t consider this situation as being a security threat whatsoever. The WiFi encryption standard employed is WPA2 PSK – the most secure WiFi encryption standard known to date.

The modem’s not remotely accessible via its external (WAN) IP address. As the administration panel’s login credentials are generic, publicly-known identifiers, enabling external access would pose a significant security threat for the customer as well as the network. Therefore, we are blocking this access method.
However, accessing the admin panel via LAN – be it via wired or wireless connection – is possible, as long as the client trying to connect to the administration interface has already established a successful connection to the router beforehand.

As of today, the modem can’t be utilized as a bridge as-is. We will enable this functionality shortly. Same applies to the wireless button on the device’s side, which will be offered the option to be deactivated.

“Hidden SSID”
The router’s SSID isn’t being publicly broadcasted. However, as you may know, it’s possible to unscramble the SSID with appropriate tools and devices. An IP address is still not automatically acquired by those means. Maybe we can find a way to hide it.

Why aren’t all settings accessible?
This is our first offering of such a multi-purpose device. With this launch we wanted to satisfy the needs of a majority of customers who wish to access the internet wirelessly through a relatively easy to use, compact, combined modem/router device.
Incorrectly executed manipulations could impair the service quality and customer experience massively, which in turn complicates the support efforts done by our employees in the customer care department. In our opinion, the router offers a solid balance of options which covers the needs of the vast majority of our customer base.

We’d like to thank you for your comprehension and wish you many joyful hours with our new products.


upc cablecom
====================
upc-cablecom.ch
twitter.com/upc_cablecom
Reply With Quote
The following 6 users would like to thank upc_cablecom for this useful post:
  #43  
Old 08.04.2011, 13:08
Upthehatters2008's Avatar
Forum Legend
 
Join Date: May 2010
Location: In the kitchen at parties.
Posts: 4,540
Groaned at 204 Times in 120 Posts
Thanked 6,078 Times in 2,378 Posts
Upthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond repute
Re: New Cablecom WLAN/VOIP Router - Security warning.

Quote:
View Post
We’d like to thank you for your comprehension and wish you many joyful hours with our new products.
Do you sell Beer ?
Reply With Quote
  #44  
Old 08.04.2011, 13:11
Ouchboy's Avatar
Forum Legend
 
Join Date: Jun 2008
Location: Baden
Posts: 3,345
Groaned at 67 Times in 54 Posts
Thanked 5,739 Times in 2,182 Posts
Ouchboy has a reputation beyond reputeOuchboy has a reputation beyond reputeOuchboy has a reputation beyond reputeOuchboy has a reputation beyond reputeOuchboy has a reputation beyond reputeOuchboy has a reputation beyond repute
Re: New Cablecom WLAN/VOIP Router - Security warning.

cablecom joined the EF??

Danger! Danger!


Billag will be next...
Reply With Quote
This user would like to thank Ouchboy for this useful post:
  #45  
Old 08.04.2011, 13:16
Upthehatters2008's Avatar
Forum Legend
 
Join Date: May 2010
Location: In the kitchen at parties.
Posts: 4,540
Groaned at 204 Times in 120 Posts
Thanked 6,078 Times in 2,378 Posts
Upthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond repute
Re: New Cablecom WLAN/VOIP Router - Security warning.

Thank you for this response. It is nice to know Cablecom visits these forums and takes our concerns seriously.

Firstly, the title of the thread is correct. A router with a default password of "password" and no username is a security risk.
A router with the WEP key stamped on the bottom, with no user manual telling the user how to change it, is a security risk, anybody picking up the router can get the password, cleaners , service staff ;Cablecom Staff, Post Office staff could all have had sight of this password.
Passwords should be managed by the user, not stamped onto devices and kept the same, not ever being changed.

Moving on,

Will you be publishing a manual for the router or have detailed information on your web site that might avoid public discussions such as the one here ? Without such knowledge users might not know how to change the router password and encryption key, something which should be done on a regular basis.

Also, as my firmware date preceeds the fix date for the vulnerabilities concerned , can you please explain how my router has been upgraded to fix such issues ?

Also, if further problems come to light, how does a user upgrade the firmware, or are we stuck with this version for the life of the router and exposed to any future vulnerabilities ?

Also, do you see the USB port becoming enabled in future releases ? It's a real plus point to have a working USB port on a router for sharing files/printers etc.

Finally, why is the SNMP port open and responding to requests ?

Last edited by Upthehatters2008; 08.04.2011 at 13:39.
Reply With Quote
  #46  
Old 08.04.2011, 15:30
esto's Avatar
Forum Veteran
 
Join Date: Mar 2008
Location: CHE
Posts: 1,361
Groaned at 76 Times in 58 Posts
Thanked 3,225 Times in 1,406 Posts
esto has a reputation beyond reputeesto has a reputation beyond reputeesto has a reputation beyond reputeesto has a reputation beyond reputeesto has a reputation beyond repute
Re: New Cablecom WLAN/VOIP Router - Security warning.

Quote:
View Post
Firstly, the title of the thread is correct. A router with a default password of "password" and no username is a security risk.
All routers or other home IP products have default passwords of "admin" or something like that. How is this different? You have to be logged locally into your home network to enter the password, remote access is disabled, right?

Quote:
View Post
Also, as my firmware date preceeds the fix date for the vulnerabilities concerned , can you please explain how my router has been upgraded to fix such issues ?
Other ISP's usually just download new firmwares to your router, I would guess Cablecom could do the same?

Quote:
View Post
Also, do you see the USB port becoming enabled in future releases ? It's a real plus point to have a working USB port on a router for sharing files/printers etc.
Yea, why disable the USB port? Swisscoms TV box also has a castrated USB port. I was excited when I first saw it thinking I could put a USB stick there and play some media files...but noooooo. Why? Technically, it's possible and not too complicated. What do ISP's have against UBS ports?
Reply With Quote
  #47  
Old 08.04.2011, 15:37
Upthehatters2008's Avatar
Forum Legend
 
Join Date: May 2010
Location: In the kitchen at parties.
Posts: 4,540
Groaned at 204 Times in 120 Posts
Thanked 6,078 Times in 2,378 Posts
Upthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond repute
Re: New Cablecom WLAN/VOIP Router - Security warning.

Quote:
View Post
All routers or other home IP products have default passwords of "admin" or something like that. How is this different? You have to be logged locally into your home network to enter the password, remote access is disabled, right?
Maybe, but you are prompted to change it on first login, and they supply a manual which shows you how.

Quote:
View Post
Other ISP's usually just download new firmwares to your router, I would guess Cablecom could do the same?
Really ? Who does this ? I have never known an ISP to upgrade my router...Cablecom say they have no access to the router.
Reply With Quote
  #48  
Old 08.04.2011, 15:44
esto's Avatar
Forum Veteran
 
Join Date: Mar 2008
Location: CHE
Posts: 1,361
Groaned at 76 Times in 58 Posts
Thanked 3,225 Times in 1,406 Posts
esto has a reputation beyond reputeesto has a reputation beyond reputeesto has a reputation beyond reputeesto has a reputation beyond reputeesto has a reputation beyond repute
Re: New Cablecom WLAN/VOIP Router - Security warning.

Quote:
View Post
Really ? Who does this ? I have never known an ISP to upgrade my router...Cablecom say they have no access to the router.
Swisscom, for example.
WARNING!!! Netopia 3397GP Firmware upgrade
Reply With Quote
  #49  
Old 08.04.2011, 15:47
Upthehatters2008's Avatar
Forum Legend
 
Join Date: May 2010
Location: In the kitchen at parties.
Posts: 4,540
Groaned at 204 Times in 120 Posts
Thanked 6,078 Times in 2,378 Posts
Upthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond repute
Re: New Cablecom WLAN/VOIP Router - Security warning.

Quote:
View Post
A user initiated upgrade...by a knowledgeable fellow. Via Swisscom.

How does this apply to Cablecom ?
Reply With Quote
  #50  
Old 08.04.2011, 15:51
esto's Avatar
Forum Veteran
 
Join Date: Mar 2008
Location: CHE
Posts: 1,361
Groaned at 76 Times in 58 Posts
Thanked 3,225 Times in 1,406 Posts
esto has a reputation beyond reputeesto has a reputation beyond reputeesto has a reputation beyond reputeesto has a reputation beyond reputeesto has a reputation beyond repute
Re: New Cablecom WLAN/VOIP Router - Security warning.

Quote:
View Post
A user initiated upgrade...by a knowledgeable fellow. Via Swisscom.

How does this apply to Cablecom ?
Huh? The Swisscom router firmware upgrade was done to me (and others) by Swisscom, without my knowledge. It was not "user initiated".

How does it apply to Cablecom? They could upgrade your routers firmware remotely. Or at least they should be able to. Call them and ask.
Reply With Quote
  #51  
Old 08.04.2011, 15:55
Upthehatters2008's Avatar
Forum Legend
 
Join Date: May 2010
Location: In the kitchen at parties.
Posts: 4,540
Groaned at 204 Times in 120 Posts
Thanked 6,078 Times in 2,378 Posts
Upthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond repute
Re: New Cablecom WLAN/VOIP Router - Security warning.

Quote:
View Post
Huh? The Swisscom router firmware upgrade was done to me (and others) by Swisscom, without my knowledge. It was not "user initiated".

How does it apply to Cablecom? They could upgrade your routers firmware remotely. Or at least they should be able to. Call them and ask.
From The horses mouth...

Quote:
View Post
The modem’s not remotely accessible via its external (WAN) IP address.
What does the average Cablecom customer know about Firmware, and that it needs to be updated now and again anyhow ?
Reply With Quote
  #52  
Old 08.04.2011, 18:20
esto's Avatar
Forum Veteran
 
Join Date: Mar 2008
Location: CHE
Posts: 1,361
Groaned at 76 Times in 58 Posts
Thanked 3,225 Times in 1,406 Posts
esto has a reputation beyond reputeesto has a reputation beyond reputeesto has a reputation beyond reputeesto has a reputation beyond reputeesto has a reputation beyond repute
Re: New Cablecom WLAN/VOIP Router - Security warning.

Quote:
View Post
From The horses mouth...


The modem’s not remotely accessible via its external (WAN) IP address.
They probably mean remote access on the Layer 3 (internet) is disabled, but the ISP should still be able to access the modem on the Layer 2 link (data link layer) and do config changes and firmware upgrades. It would be a pretty bad move if Cablecom is sending out modems that they have no control over.
Reply With Quote
  #53  
Old 08.04.2011, 22:53
Newbie 1st class
 
Join Date: Apr 2011
Location: BE
Posts: 12
Groaned at 0 Times in 0 Posts
Thanked 0 Times in 0 Posts
raz0redge has no particular reputation at present
Re: New Cablecom WLAN/VOIP Router - Security warning.

Quote:
View Post
As of today, the modem can’t be utilized as a bridge as-is. We will enable this functionality shortly. Same applies to the wireless button on the device’s side, which will be offered the option to be deactivated.
Any ETA on the availability of the "bridge" feature ?

I've asked Cablecom yesterday morning about getting the Ubee model instead if I change my subscription to Power Combi, after another call today afternoon they're still investigating if it's possible.
Reply With Quote
  #54  
Old 14.04.2011, 12:54
krlock3's Avatar
Forum Legend
 
Join Date: Feb 2006
Location: Zürich
Posts: 3,116
Groaned at 48 Times in 35 Posts
Thanked 2,424 Times in 1,151 Posts
krlock3 has a reputation beyond reputekrlock3 has a reputation beyond reputekrlock3 has a reputation beyond reputekrlock3 has a reputation beyond reputekrlock3 has a reputation beyond reputekrlock3 has a reputation beyond repute
Re: New Cablecom WLAN/VOIP Router - Security warning.

i want to log into the router page for this modem which i just received, so that i can change my wifi network name from the default UPC one and also to change the password to a WPA one.

to log into the router page for the thomson, i put in a http://192.168.0.1 into my web browser and it asks for a name and password. If i leave the name empty and type "password" into the password field, it also does not accept this as valid.

Anyone know exactly what I am doing wrong?
Reply With Quote
  #55  
Old 14.04.2011, 13:08
Upthehatters2008's Avatar
Forum Legend
 
Join Date: May 2010
Location: In the kitchen at parties.
Posts: 4,540
Groaned at 204 Times in 120 Posts
Thanked 6,078 Times in 2,378 Posts
Upthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond repute
Re: New Cablecom WLAN/VOIP Router - Security warning.

Quote:
View Post
i want to log into the router page for this modem which i just received, so that i can change my wifi network name from the default UPC one and also to change the password to a WPA one.

to log into the router page for the thomson, i put in a http://192.168.0.1 into my web browser and it asks for a name and password. If i leave the name empty and type "password" into the password field, it also does not accept this as valid.

Anyone know exactly what I am doing wrong?
PM sent/replied to.
Reply With Quote
This user would like to thank Upthehatters2008 for this useful post:
  #56  
Old 14.04.2011, 13:10
Upthehatters2008's Avatar
Forum Legend
 
Join Date: May 2010
Location: In the kitchen at parties.
Posts: 4,540
Groaned at 204 Times in 120 Posts
Thanked 6,078 Times in 2,378 Posts
Upthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond repute
Re: New Cablecom WLAN/VOIP Router - Security warning.

Also, try a blank username with "admin" as the password... There are variants on this. If this works, I will correct my post.
Reply With Quote
This user would like to thank Upthehatters2008 for this useful post:
  #57  
Old 14.04.2011, 15:42
The Janitor's Avatar
Newbie 1st class
 
Join Date: Apr 2008
Location: Zurich
Posts: 19
Groaned at 0 Times in 0 Posts
Thanked 9 Times in 7 Posts
The Janitor has no particular reputation at present
Re: New Cablecom WLAN/VOIP Router - Security warning.

It was definitely username: "(blank)" password: "admin" for me.

I ordered the FP100 and didnt change my modem as I was happy with it. After a week my internet stopped working though as my service was changed to the new mac address of the new modem. I installed the new modem and am actually positiviely surprised. 99% of the options I wanted are included...
Reply With Quote
The following 2 users would like to thank The Janitor for this useful post:
  #58  
Old 14.04.2011, 16:11
Upthehatters2008's Avatar
Forum Legend
 
Join Date: May 2010
Location: In the kitchen at parties.
Posts: 4,540
Groaned at 204 Times in 120 Posts
Thanked 6,078 Times in 2,378 Posts
Upthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond repute
Re: New Cablecom WLAN/VOIP Router - Security warning.

Quote:
View Post
It was definitely username: "(blank)" password: "admin" for me.

I ordered the FP100 and didnt change my modem as I was happy with it. After a week my internet stopped working though as my service was changed to the new mac address of the new modem. I installed the new modem and am actually positiviely surprised. 99% of the options I wanted are included...
Sorry all, I screwed up the original post in my haste. Corrected now. Login credentials as per the above.
Reply With Quote
  #59  
Old 15.04.2011, 09:02
The Janitor's Avatar
Newbie 1st class
 
Join Date: Apr 2008
Location: Zurich
Posts: 19
Groaned at 0 Times in 0 Posts
Thanked 9 Times in 7 Posts
The Janitor has no particular reputation at present
Re: New Cablecom WLAN/VOIP Router - Security warning.

Hey quick question,

I tried to remotely log in to my router via WAN IP:8080 but cant. I activated the remote config setting, but the page just times out. Do I have to set up anything else?
Reply With Quote
  #60  
Old 15.04.2011, 09:06
Upthehatters2008's Avatar
Forum Legend
 
Join Date: May 2010
Location: In the kitchen at parties.
Posts: 4,540
Groaned at 204 Times in 120 Posts
Thanked 6,078 Times in 2,378 Posts
Upthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond reputeUpthehatters2008 has a reputation beyond repute
Re: New Cablecom WLAN/VOIP Router - Security warning.

Quote:
View Post
Hey quick question,

I tried to remotely log in to my router via WAN IP:8080 but cant. I activated the remote config setting, but the page just times out. Do I have to set up anything else?
What side of the router were you trying remote admin from ? Were you still at home or were you truly remote (at the office per se) ?

I have yet to test WAN access, and Cablecom say it is not possible...
Reply With Quote
Reply




Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
MICROSOFT CRITICAL WARNING - browser security flaw Guest General off-topic 6 29.04.2014 10:51
Cablecom offers (Router free) humano TV/internet/telephone 23 21.03.2011 17:41
wireless router with cablecom modem grimmus TV/internet/telephone 3 09.01.2010 22:50


All times are GMT +2. The time now is 10:58.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2022, Jelsoft Enterprises Ltd.
LinkBacks Enabled by vBSEO 3.1.0