Networking Forums
Home Register Members Search Links
Member Login:

Networking Forums > Computer Networking > Broadband > Draytek 2900 router exposes its config to the outside

Reply
Thread Tools Display Modes

Draytek 2900 router exposes its config to the outside

 
 
Peter
Guest
Posts: n/a

 
      11-15-2004, 11:54 AM

The Draytek 2900Gi exposes its login to the outside network, via
HTTPS. Not very clever, and disabling "configuration from the
internet" which is supposed to stop this, doesn't actually stop it.
This exposes the router to dictionary attacks, or DOS attacks, the
latter being possible because the router's processor has to run some
crypto software to run HTTPS.

I got a security specialist from a big IT infrastructure company to do
a security check on our system and he found this.

We are running the latest firmware, emailed straight to us from
Draytek Taiwan.


Peter.
--
Return address is invalid to help stop junk mail.
E-mail replies to (E-Mail Removed) but remove the X and the Y.
Please do NOT copy usenet posts to email - it is NOT necessary.
 
Reply With Quote
 
 
 
 
Peter M
Guest
Posts: n/a

 
      11-15-2004, 01:01 PM
On 15 Nov 2004 in uk.telecom.broadband, Peter wrote:

>The Draytek 2900Gi exposes its login to the outside network,

The cheap ones I've used allow for the port to be defined, rather than
using common ones such as 80, 81, 8080, etc. Also some allow a fixed
IP to be defined as an 'allowed' connection. OK, it might be 'spoofed'
but an attacker would presumably not get any return traffic :-) PGM


--
PlusNet <http://tinyurl.com/24ymz> - I recommend them and save some cash.
 
Reply With Quote
 
James Hurrell
Guest
Posts: n/a

 
      11-15-2004, 04:28 PM

"Peter M" <us-(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
> On 15 Nov 2004 in uk.telecom.broadband, Peter wrote:
>
>>The Draytek 2900Gi exposes its login to the outside network,
>
> The cheap ones I've used allow for the port to be defined, rather than
> using common ones such as 80, 81, 8080, etc. Also some allow a fixed
> IP to be defined as an 'allowed' connection. OK, it might be 'spoofed'
> but an attacker would presumably not get any return traffic :-) PGM

Yes the 2600 lets you do both of these. Careful when specifying IP addresses
to be defined as an allowed connection (the 2600 lets you add three) - I
managed to lock myself out of the router for a day as you need to specify
local/internal IP addresses also!

Just tried my 2600 with a "https" type connection - no connection was
possible (running latest firmware).
 
Reply With Quote
 
 
 
Reply

« NDO | Broadband possible when using phone filter "pigs">?? »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Draytek 2900 v 2910 - difference? Peter Broadband 0 10-24-2011 01:01 PM
Replacing some Draytek 2900 routers Peter Broadband 18 09-06-2011 08:28 PM
Re: Wizard Exposes Carrier IQ Ian Anderson Wireless Internet 11 03-11-2011 02:43 PM
Draytek 2900 firmware bug occassionally-confused@nospam.co.uk Broadband 3 11-04-2007 04:25 PM
draytek 2900 router badman Windows Networking 2 10-07-2005 03:56 AM


Forum Software Powered by vBulletin®, Copyright Jelsoft Enterprises Ltd.
SEO by vBSEO 3.3.2 ©2009, Crawlability, Inc.
Contact Us - Archive - Privacy Statement - Top

1 2 3 4 5 6 7 8 9 10 11