labfrog
join:2006-09-16
Carbondale, CO | reply to Security Guy
Re: Is someone trying to hack my network? I dug into this a little bit and here's what I found. That the password and username is sent to »pqwesthdm.qwest.motive.com/cwmpWeb/CPEMgt qwests Home Device Manager server.
Here's you answer:
telnet into you box
example from OS cmd prompt:
"telnet 192.168.0.1"
"cd /var/tmp"
"cat tr69_acs.cf"
output:
ACS_URL »pqwesthdm.qwest.motive.com/cwmpWeb/CPEMgt
ACS_Username 00247BSPAB0561200694
ACS_Password 230155e95613
ACS_PeriodicInformEnable 1
ACS_PeriodicInformInterval 86400
ACS_PeriodicInformTime 2011-07-24T02:53:35
ACS_BackoffInterval 86400
ACS_ConnectionRequestURL »154.6.166.179:4567/tr69/
ACS_ConnectionRequestUsername 00247BSPAB0561200694
ACS_ConnectionRequestPassword 230155e56913
so to test it out
goto your web browser and use the »154.6.166.179:4567/tr69/ in your address field
should prompt you for the user/password
enter:
00247BSPAB0561200694 - username - from ACS_Username
230155e56913 - password from - ACS_Password
should get a tr69 test ok response.
bingo you just logged into that port.
so big deal right - well here's what you can do with it with the right software from motive.com
info on Home Device Manager
Intelligent, remote management of CPE.
For broadband service providers, simplifying CPE management in home networks has become mission-critical—especially for those looking to roll out advanced broadband and converged services.
Motive’s Home Device ManagerTM HDM allows service providers to remotely manage CPE, such as residential gateways, IP set-top boxes, and VoIP terminal adapters that comprise a home networking environment. The product supports one-to-one and one-to-many device configuration, as well as device troubleshooting, firmware management, event management and reporting. In addition, a standardized CPE integration layer gives providers a choice of CPE supported either by the Broadband Forum’s TR-069 or Simple Network Management Protocol (SNMP). |
