Cream of IT or the Cream of Chicken Soup?
Disclaimer: the following contents are from an email received by one of our readers who happens to be anonymous (aren’t they all?), apparently had a go at Focus Infocom. The email is presented in its entirety on this blog, and does not present any view, options or involvement by digitalsquid blog. The events presented in the following article may or may not be true and we cannot confirm it at the moment but it is interesting enough for us to present it in the blog for comments by our viewers and what they think. Further this mail has relevance to one of our articles in this blog titled "How Secure is ROL's high speed network? How Secure is your Data?" which is again one reason that the email is published. We stress that this email is published purely for discussion, and if actual , and if actually happened, maybe someone at focus infocom or anyone else might be able to shed light on the issue. Of coz we do not recommend that anyone tries this at home or elsewhere to see if it works. Comments are highly welcomed, but any comments that are directed personally and irrelevant to the topic will be removed.
--------------------------------------------------------
A previous article here has clearly hinted the real vulnerability in his article about the ROL's security issue. The dumb and the dumbers did not get an idea of what he has pointed out. Instead they pulled his tail taking some webserver issue and log2space issue which was not the real vulnerability or the security issue. After reading the article i thought i will give some try to see if it is true or close to true and to my amuzement, The ROL's network equipments can be managed by just anybody using SNMP.
Managing the Interfaces of the Routers! (Images are self explanatory in most cases)
A peak at the virtual pptp interfaces. The numbers beginning with ROL are ROL pptp usernames.
Tried to see if the interface can be disabled. Success!
Disabled
Re-enabling the interface.
A glance at the traffic statistics of the pptp users.
A glance at the interfaces.
A glance at the system info.
Trying to disable Rahul’s pptp interface.
Succeed!!
Disabled
A glance at the system info of the linux machine.
Disabling first Ethernet interface
Disabling second Ethernet interface.A peak at the Cable Routers & their interfaces. The disabling of this interface led to lose the connectivity to JSAT side of the ROL’s network. At least it took them more than 4 hours to bring the network back to normal.
A glance at the interfaces.
A glance at the ARP info.
Still more glances at the ARP.
Disabling the upstream interfaces of the cable routers
Disabling the internal interfaces (fbus1 and fbus2) and upstream interfaces and downstream interfaces.
I hope ROL fixes this problem at the earliest
40 Comments:
This comment has been removed by a blog administrator.
i guess asoa made them think what he wanted them to think. he made them think the security issue was in some SQL server without a password. and they fell for it.
the best part is he gave hint to the real issue and nobody cared to check.
This is the hit given on the previous article.
Did some further scanning and ran a couple of tools by pressing keys and buttons here and there and I couldn’t even believe my eyes on where I end up. Where was I walking into wearing the dark black court?
Walking in – SNMP walk
DARK Black Court = MEN IN BLACK = MIB
Foking hilarious asoa.
ATTN: JSAT AND MESCO, you have monopolised the Cable TV operations and if you want your customers to be happy with your service, value added services like internet, pls leave ROL, move on to Dhiraagu, who is well armed with the resources for this kind of situation.Pleas dont rely on people who are over confident with the services they provide.
Can other people see what I send and receive through a Cable modem?
No, other people will not be able to see any data or information you transmit or receive via the Cable Modem. Your connection to the ROL Network is private and is restricted to you only. Our Network is enabled with maximum levels of security, protection and privacy to our customers.
Is your service secure?
Yes. To deliver ROL services we use the latest technology. In designing our network we have given a very high priority in implementing high level of security for our customers’ data and our network. Therefore our network provides maximum levels of security, protection and privacy to our customers.
rol faq,
i have a simple question.. nothing technical..i'm assumin you are from ROL by your post...
is it possible for someone external to ROL to disconnect ppl off rol's network like the post suggests?
i belive this is where the real issue is at the moment..
regards,
This comment has been removed by a blog administrator.
This comment has been removed by a blog administrator.
A wide range of 'always on' and 'always open' Broadband Internet access plans designed to meet the requirements of your business...
Focus Infocom is investing over Rf 2.5 million as part of this alliance, to enable this state-of-the-art network, to carry Internet traffic and other traffic from Internet based value added service that will be offered by ROL's Complex Network designed by the un professionals. A total of Rf 15 million has already been invested by MESCO to bring this landmark project costing a total of 17.5 million to it's current stage of development. -- WELL DONE MESCO
spare me some sparrows!
now lemme join here, is this about ROL. the great ROL or the better ROL? Let others decide.
Where are the techies of ROL? Having a smoke, downstairs?
I tell you something, you provide no good service. Not even bandwidth. Want to profit? What are you selling? What are you aiming for? Headaches and more of those? I think I better open a place to sell painkillers. For ROL staff only. Oh hell ye, gonna be great.
Not a tech guy I am. Saw the self explanatory photos, and they do tell a thousand stories. Didnt they? oooooh...i feel goosbumps...Bet they are not willing to accept the truth. STOP, the truth hurts. Thats why!
I wonder why big place, when I say BIG its HUGE okay, like MICROSOFT they worry about their vulenerabilities. Did I spell it right? Dont care much. They fix it.
PEOPLE THINK NOW. WHY DO THEY WORRY? I dont like to answer because I like riddles...
Its a service ROL. Its a responsibility. Why cant you shoulder it. If you cant I will. I am very straight.err, not my "that" (rolls) I can take the responsibility and would like to keep that to myself. :D SHEESH.
Once I was told they are gonna offer WIMAX. OW MAI GAWWD. YES WIMAX. But puleeeez is there someone from ROL who accepts they are weak, someonez should fix it.
I cant write. I am in tears.
(sob Sob) dont add an (a) to the end. its just that i am sobbing.
one more thing
"varah foohi vay ROL dheke, Huvaa hama"
:D now the techy grins...
Good that somebody was able to get the hint from my earlier post and bring this to the attention of all of us.
ROL, please fix this issue and other vulnerabilities at the earliest rather than bluff and making it a personal issue.
"No ma, If I shut down ma computer the whole network will be offline!"
ROL's clients security is their clients business
is it the service provider problem or is it a problem of clients????
correct me if im wrong. but dosent the article say that the user can be disconnected from ROL's system.isnt that ROLs crappiness? wats client security got to do with being forcefully disconnected?
Sexy Naughty Minded People (SNMP)?
A systems Administrators worst nightmare will be someone figuring out the community strings (a secret key)for his back yard (ofcourse, a sys admins back-yard will be his bulk & light machines).
U figure out the back yard secret code, u find out what is going on; and worst even pull the plug off the back yard.
SNMP - SImple Network Management Protocol (it is never Simple) :) is a suit used to monitor and trouble shoot systems attached on a network remotely.
some vendors ship thier hardware with default SNMP community strings - but they advise on this fact.
Its a fine package, but everyone has got silver lines.
Unfortunately it do not use a secure communication, maybe there are plans for it.
More info on it can be found at http://net-snmp.sourceforge.net/
It is so difficult to see that ROL as a service provider are in such a hurry to roll out thier services that they forgot or maybe even didnt cared to change the default settings on thier core equipments.
With these default settings anyone ( within thE ROL IP boundaries ofcourse ) could get vital information off thier network - Links Speed / HDW type / Number of online user / etc - even someone would be able to replace the configs with thier own by exploiting SNMP write community strings.
Or maybe ROL is offering free management passwords for its customers OR they want thier customers to view and modify the configurations of thier CORE network equipments - ofcourse they love customers so much.
SO ppl look from a positive point of view - its a very close relationship, u get to shut / bring up ur ROL neighbours interfaces, we should be so proud that we live in such a bonded community - Amen to Soba :)
http://www.engrish.com/image/engrish/do-not-scream.jpg
Not making fun of you ROL but here is something which fits for you!
accepting the problem is not in our blood, look around our society. have gone through some comments here and its pretty harsh, personally. Somewhere some how there is a link broken, fix it. Together. We find it, we the shout it out loud about it, for the betterment of the people who recieve your service. Take those points, and the reasons are crystal clear here.
Think about how much time is being lost for a page to download...err...I dont want to say ithere right now.but I am sure ROL you know how very slow bandwidth you are selling. Not as you say BROADBAND.
I feel very unsecure, please
for the curious people...
about what the hell is this sofware
(see screenshots)...
this software is called LANsurveyor
(http://www.isaacs.org/LSwin.shtml)
ey..please correct me if im wrong..:->
heh.. i dont think i am wrong anyway..
no shit. okay for those who are wondering, this is true! much thanks to digitalsquid for discovering and informing in a non destructive manner.
soup :)
finally...prim0..good on ya....lets hope the ROL techies can eat some humble pie n fix this damn prob...damn slackers..
kudos to digitalsquid....next up the movie " the life of digital squid"
not to gloat. but heck yeah. go squiddies. what happened to all those idiots who were talking about log2space and someones SQL server? the whole problem was not even related to them.
primary0.. you just earned my respect, takes a little bit of something to say that a mistake was made somewhere along the line. cheers to you :)
(of coz this issue might not be your problem. but i took it as a representative from ROL.)
Is there an excuse really, only this time??
PULEEZEUUU??? I wish they'd gimme two months free 1MB atleast. eheh. compromized.
Even Monkey's may fall from trees, but what if they always fall? Do know that they are bound to fall always, the risk is there.
faya, the software looks like Lan Surveyor to me too but it can be done using any SNMP software.
I bet I can do the same thing with Pocket SNMP or vxSNMP running on my pda from a Wi-Fi hotspot of ROL.
primary0, nice to know that you have admitted that it can be done. Do always admit if you have an issue and then fix the problems. that's how it should be rather than denying and pointing fingers at others.
hmmm, if cant be done please handover ROL to me. hell no, its worse than my home network though its not world class like ROL
my point on this whole issue is, yeah ok lets say anyone can join or what ever that maybe, but when poeple can disconnect other users from the network, isnt that a MAJOR FLAW? or not?
Squid, I guess it is a major flaw. Some may consider it a minor flaw too.
One thing I know is that this is not a client's database or a log2space demo.
This comment has been removed by a blog administrator.
This comment has been removed by a blog administrator.
Digitalsquiddies: You made me (and plenty of others) eat my words. My hat's off to you.
Has ROL fixed this problem? Can somebody from ROL (primary0 or anyone else) comment if it has be fixed.
fixed
This comment has been removed by a blog administrator.
This comment has been removed by a blog administrator.
This comment has been removed by a blog administrator.
This comment has been removed by a blog administrator.
Connecting to ROL..
Error connecting to ROL
Redial..
Disconnected..
Connecting to ROL..
Verifying username and password...
Registering your computer on the network...
Disconnected..
Redial..
Disconnected!
damn! where is the system admin? downstairs, smoking while enjoying huge asses walking by? googling so hard to find something kool to post in the so called blog to impress an imbecile? goddamnit! wat do i do now? when can i surf the web on a huge wave for atleast 3 hrs at a stretch without being drowned? when can i download a 3MB mp3 in 5 mins instead of this 55 minutes? for.flying.spaghetti.monster.sake we need better service ROL! or else why dont you sell your equipments, buy a boat and go fishing with all your staff! or else go fly a kite! :@
lol
guess somebody's really mad at primary0
kekekek
i dont kno wat to say here!! only thing i have to tell you is love inforcom...... :D may b there is a good reason :D lol
Is "outraged customer" trying to dial up to ROL???? KEKEKEEEKEKE
Post a Comment
<< Home