Journal 140Mandak262Jamuna's Journal: Security concerns over Port 4567 of Verizon FiOS
Though Actiontec claims this port could not exploited I have quite a few concerns about it. If that password is cracked, hackers can upload a cracked version of the firmware and disable all protections at the router. I tried putting another router behind the verizon router but then my speed drops to 10Mbps. Thinking of getting a switch with firewall or configure the second router as a switch to protect my computers in case the Verizon router gets hacked.
I really would like to know the protections against password cracking on the router. How many failed logins are allowed per minute, per hour, per day, per week? Verizon knows which of its banks of servers are authorized to upgrade the firmware on the routers. Should it simply filter out all traffic to these ports originating from any other IP address? And why is the firmware upgrade initiated by an inbound call? Why cant the routers initiate a peridic check and look up their home servers and get a firmware upgrade? I don't like the way Verizon is implementing the automatic firmware upgrade. I fear someday soon somebody is going to crack that password and the hackers are going to get a million bots all with 20 Mbps connection to the world. Even if you are not a Verizon FiOS customer, you will be affected then.
Security concerns over Port 4567 of Verizon FiOS More Login
Security concerns over Port 4567 of Verizon FiOS
Slashdot Top Deals