One of the basic tenements of network security is the first principle, networks are non-permissive enviroments.
What this means is that every system that you introduce into the enviroment, you take good care to lock down to avoid outside operators gaining access.
The standard operating procedure for introducing new systems into an operating enviroment is trial by vetting and standardisation.
Net1 is a broadband isp, utilizing the old NMT(CDMA) network in Sweden, they do this at a low monthly cost to the consumer and with several different gateway router solutions.
After noticing that my d-35 router had the PfSense logo as a favicon — the icon you can see on a tab in chrome, or in your adressbar on firefox/ie — i started looking around and i gained root access to the pfsense telnet console from an external ip-adress.
So i decided to go the full length and check out the D-40 series model as well, and not only does it have an open telnet port facing all network interfaces. You also telnet into it, without typing in credentials, and gain access as the superuser.
After doing this, i was greeted by the openwrt banner and realised that there’s quite a few things that you can add to the D-40 to enable it to do more. If this was intentional by Net1 I do not know, since they have yet to reply to my week old email regarding this.
so to anyone reading this and being a net1/ice.net customer, please get your linux toting geek friend to lock down your router. there’s potential for lots of nasty stuff happening to your router if you do not.
