Sprint DSL's Security Hole Easy As 1,2,3,4 373
An Anonymous reader points to this Wired article, excerpting "Sprint officials acknowledged that remote access to the administrative software embedded in the ZyXel Prestige 642 and 645 modems is by default protected with a password of '1234.' But the company said users are responsible for securing the equipment, which stores login data, including the user's e-mail address and password." Wired found that more than 90% of the modems they polled were using that default password.
Shit (Score:5, Funny)
Obligatory Space Balls Quote... (Score:4, Funny)
Colonel Sandurz: "1-2-3-4-5."
Skroob: "1-2-3-4-5?"
Sandurz: "Yes."
Skroob: "That's amazing! I've got the same combination on my luggage!"
So, who needs Kevin Mitnick? (Score:5, Funny)
New Sprint Ad (Score:5, Funny)
Randomize (Score:3, Funny)
Jason
ProfQuotes [profquotes.com]
Re:Randomize (Score:2, Funny)
For boosted security, they could make it re-randomize the password every hour.
Yes, that makes a lot of sense, randomly change the password and lock out the user after an hour. Or were you suggesting something even more brilliant: change the password and display it on the user's screen?
Sheeeesh.
Re:Unrelated, but much more serious security hole (Score:4, Funny)
Re:What is the big deal for Sprint to fix this? (Score:1, Funny)
WTF!
keeping their eye on you? (Score:3, Funny)
% wget http://some.site.out.there/foo
--15:23:09-- http://some.site.out.there/
=> `foo'
Connecting to 1.2.3.4:80... connected!
HTTP request sent, awaiting response... 200 OK
Length: 666 [text/html]
0K ->
Re:Shit (Score:3, Funny)
"tell us the combonations to the air lock."
"fine, i'll tell. its
"1,2,3,4,5?! that's the kind of code an idiot would put on their baggage!" (president scrooge arrives)
""so whats the combo"
"the combo is 1,2,3,4,5."
"woah, what a coincidence. thats the exact same code i have on my luggage!"
----i love that movie ----
Re:As I've always said (Score:1, Funny)
Okay, I only have only parented *two* children so far, so I don't have as much experience as others here may have. That said, it seems to me that the default settings for people pretty much can only be *stupid*. That said, I will verify that these settings can be changed, but it does takes a while.
Judging by a few folks I have met in my life, though, it seems that *sometimes* the settings may return to the defaults.