V.T. Eric Layton Posted April 22, 2014 Share Posted April 22, 2014 Easter egg: DSL router patch merely hides backdoor instead of closing it 2 Quote Link to comment Share on other sites More sharing options...
Guest LilBambi Posted April 22, 2014 Share Posted April 22, 2014 That is nuts! Quote Link to comment Share on other sites More sharing options...
ross549 Posted April 22, 2014 Share Posted April 22, 2014 Whoops. You weren't supposed to notice that. Adam Quote Link to comment Share on other sites More sharing options...
ebrke Posted April 22, 2014 Share Posted April 22, 2014 Why am I not surprised. They're out to get us--all of us. 1 Quote Link to comment Share on other sites More sharing options...
V.T. Eric Layton Posted April 22, 2014 Author Share Posted April 22, 2014 Jaded and paranoid... now there's a winning quinella ticket for sure. 1 Quote Link to comment Share on other sites More sharing options...
raymac46 Posted April 23, 2014 Share Posted April 23, 2014 It's all good. Having dealt with my ISP's technical service staff I doubt that anyone over there is smart enough to hack my router. 1 Quote Link to comment Share on other sites More sharing options...
ross549 Posted April 23, 2014 Share Posted April 23, 2014 Maybe not them..... but someone else on the internet could certainly hit it. Adam 1 Quote Link to comment Share on other sites More sharing options...
Guest LilBambi Posted April 23, 2014 Share Posted April 23, 2014 Ah, the router de jour! Quote Link to comment Share on other sites More sharing options...
ross549 Posted April 23, 2014 Share Posted April 23, 2014 OK, I had some time to do some research on this. This exploit will NOT work across the Internet. In order for the "back door" to be opened, a specially coded Ethernet frame must be sent to the router. Keep in mind that Ethernet frames do NOT survive transiting a router without being modified by the router. Why is this important? Your ISP has a variety of routers delivering data to you. In order for this to work, a device would need to be on the same local network as your modem/router. That network would not extend to the public Internet without going through another router. Theres's not a whole lot of information why this "back door" is even present, so speculation will run rampant until someone owns up to it. Based on what's been published so far, it sounds like this might be a remote management tool used by ISPs for tech support purposes. Adam Quote Link to comment Share on other sites More sharing options...
raymac46 Posted April 23, 2014 Share Posted April 23, 2014 Your ISP has a variety of routers delivering data to you. Yep. And the intelligence over there doesn't scare me all that much. Quote Link to comment Share on other sites More sharing options...
Guest LilBambi Posted April 24, 2014 Share Posted April 24, 2014 I thought it was already know to be local only? And of course if someone gets local access ... really anything might be possible. Good job on the research Adam. Quote Link to comment Share on other sites More sharing options...
ross549 Posted April 24, 2014 Share Posted April 24, 2014 With the previous iteration of the "backdoor" the IP would be open to the world for all to see. port 32764, I think it was. In this case, you have to feed it that special ethernet packet without jumping over a router for it to open. Essentially it is only open to the ISP LAN. Adam Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.