Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Hack my own router to patch what my provider wont


  • Please log in to reply
1 reply to this topic

#1 forthepeople

forthepeople

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:04:17 PM

Posted 08 August 2017 - 10:35 PM

So the Telnet exploit is not patched on the gateway I get from my ISP. Somebody knows this and will use my gateway to attack a server. When that happens I assume the thing gets so overloaded it reboots. After reboot the infection is gone, but from what I know the hacker with me in his/her botnet probably lists my IP and auto scans for my IP and just auto injects the code to get me back online in the botnet.

 

I am not skilled in security but would like to be. I figured, since comcast techs cant even help me and say I can just get a new gateway...I want to basically patch this myself. I'll do this by compiling Mirai (not cheating and using the auto installer) on CentOS and infecting the gateway myself to "patch" it.

 

I just wonder how well it'll work. I can unfortunately not block or close the open port which is why this exploit can happen. Comcast gives those who rent equipment zero control over any admin settings. I only portforwarded the port thats open to a machine that doesn't exist on the network. Still, this didn't seem to work.

 

The attacker has evolved more balls and has actually been trying to brute force my routers password. When I try to login it tells me I'm locked out because of 3 wrong attempts. I am almost sure this means a device on the network has been infected, or else how does somebody get access to 10.0.0.1



BC AdBot (Login to Remove)

 


#2 DelPomerinke

DelPomerinke

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:01:17 PM

Posted 14 August 2017 - 03:30 PM

Well part of the issue is it sounds like you don't own your router,  and you rent the router from your provider.   Most providers will allow you to purchase and own and administer your own router.   Which gives you much more control as well could save you some money with monthly rental.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users