Cayman 3220-H router may be insecure.

Like other DSL routers, the Cayman 3220-H allows users to easily configure their settings through a Web browser interface. But the router makes that interface accessible, not just from the user's local area network, but also from the 'WAN port' that connects to the Internet.

The device is protected from unauthorized reprogramming by an administrative password set by the owner. But unless the subscriber also sets a separate 'user password', the router's configuration settings can be viewed, though not changed, through the browser interface. There, the 'PPPoE' password used to log onto the DSL service is masked as a series of asterisks, but it is plainly visible in the HTML source code of the page.

Hackers can use the purloined password to download the subscriber's email from SBC servers, or view and edit portions of their account information.

But sources say the vulnerability has found its greatest utility in the computer underground as a wellspring of free, anonymous Internet access. Because the same password works on SBC's dial-ups, without interfering with the subscriber's DSL use, the purloined passwords help hackers cover their tracks by borrowing other people's ISP accounts, according to 20-year-old Internet hacker Adrian Lamo.

Post #14,339 by a6l6e6x 10/20/01 6:22:50 PM Reply	Cayman 3220-H router may be insecure. If you happen to have one of these, look out! [link\|http://www.theregister.co.uk/content/55/22353.html\|Register link.] Hackers have developed a trick for pilfering DSL account names and passwords right from subscriber's routers ... Alex Men never do evil so completely and cheerfully as when they do it from religious conviction. -- Blaise Pascal (1623-1662)
Post #14,350 by boxley 10/20/01 8:51:54 PM Reply	couldnt get the reg but is true of all routers snoop the line from the router to the authentication server, name and passwd are in clear text. The modem connection is secure, but the router routes that stuff in the clear. thanx, bill tshirt front "born to die before I get old" thshirt back "fscked another one didnja?"
Post #14,501 by a6l6e6x 10/21/01 10:22:23 PM Reply	Yes, but it's worse than that. Like other DSL routers, the Cayman 3220-H allows users to easily configure their settings through a Web browser interface. But the router makes that interface accessible, not just from the user's local area network, but also from the 'WAN port' that connects to the Internet. The device is protected from unauthorized reprogramming by an administrative password set by the owner. But unless the subscriber also sets a separate 'user password', the router's configuration settings can be viewed, though not changed, through the browser interface. There, the 'PPPoE' password used to log onto the DSL service is masked as a series of asterisks, but it is plainly visible in the HTML source code of the page. Hackers can use the purloined password to download the subscriber's email from SBC servers, or view and edit portions of their account information. But sources say the vulnerability has found its greatest utility in the computer underground as a wellspring of free, anonymous Internet access. Because the same password works on SBC's dial-ups, without interfering with the subscriber's DSL use, the purloined passwords help hackers cover their tracks by borrowing other people's ISP accounts, according to 20-year-old Internet hacker Adrian Lamo. Alex Men never do evil so completely and cheerfully as when they do it from religious conviction. -- Blaise Pascal (1623-1662)
Post #14,504 by boxley 10/21/01 10:52:42 PM Reply	thats bad need to buy a siemens router :) tshirt front "born to die before I get old" thshirt back "fscked another one didnja?"

Welcome to IWETHEY!