ADSL as a broadband access mode has been accepted by the majority of users, now some users have many computers at home, through an ADSL router dial-up Internet, so that the full use of bandwidth, for the home has more than one computer to share the Internet users, generally through the establishment and configuration of proxy server to achieve shared access to the Internet, The disadvantage is that the host must be open to achieve sharing, another effective way is to use the router to achieve sharing, so that each client can access the Internet, the disadvantage is to acquire expensive routing equipment. In fact, some ADSL modem itself with the routing function, as long as the user can correctly configure the relevant parameters can be routed share, there is no need to add equipment. Most of the modems provided by domestic ADSL service providers are built with routing capabilities, but because of technical reasons, a few ADSL modems design the routing function on the hardware, but the modem random software does not support the use of this feature in PPPoE virtual dial-up access mode, Only a dedicated user with a fixed IP address can use the routing function, or a product that requires a service provider with the same brand to be able to support the use of a PPPoE access mode, which requires upgrading the modem's software to use the built-in routing feature. Different routers have different configuration methods, there are many posts on this topic online, we mainly introduce those who use routing dial-up Internet users, need to pay attention to security issues. The most common security problem is that the user does not modify the router's configuration password, the general router in the appearance will have a default configuration password. Only know this password, users can configure the router. Many users do not modify this password after they have configured their own routers. Lead to some criminals on the Internet can control the router, thereby stealing the user's ADSL account. How these outlaws are doing it, we are going to expose their modus operandi by one by one. Scan ADSL internet user's IP segment, get open 80 Port host list these users first dial their home ADSL, and then use the ipconfig command to view their IP, as shown in the following figure: In the beginning-> run-> input cmd, Enter ipconfig in the DOS window that appears: 498) this.width=498 ' OnMouseWheel = ' Javascript:return ' Imgzoom (this); "Onmouseover=" if (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; This.style.cursor= ' hand '; this.alt=' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} Onclick= ' if (!this.resized) {return true;} else {window.open (' http://kuandai.kfinfo.ha.cn/UploadFiles/ 20051219818622.gif '); Src= "/files/uploadimg/20061107/1423110.gif" onload= "if" (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} Border=0> General Beijing's ADSL internet users are more than 61.49.*.*. After you have obtained your own IP segment, you can find a good port scanning tool. New in the port scanning tool there are many, which support multithreading, small size, fast the most superscan. We use it here as a demonstration tool. The Superscan interface is as follows: 498) this.width=498 ' OnMouseWheel = ' javascript:return big (This) ' onmousewheel= ' Return to Imgzoom (this); Onmouseover= "if (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; This.style.cursor= ' hand '; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} Onclick= ' if (!this.resized) {return true;} else {window.open (' http://kuandai.kfinfo.ha.cn/UploadFiles/ 200512192631893.gif '); Src= "/files/uploadimg/20061107/1423111.gif "onload=" if (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} Border=0> generally we enter our IP segment first address at the start address, that is, 61.49.*.1, the end IP address will automatically show the 61.49.*.254, where it is necessary to note that the next ping, and connect data need to enter according to their own situation, For this segment of the IP, that is, the IP address of the first 3 parts with their own IP address the same IP, in the scan can be set to a small number of these data, and for other network segments of the address, the general need to set a larger point. Depending on the results of the scan, if the data entered is too small, the computer will not be found after the scan. The following need to set up the scan port, we need to detect the router only needs to scan 80 ports. So click the configuration list on the right of the form, and the following form appears: 498) this.width=498 ' OnMouseWheel = ' javascript:return big (This) ' onmousewheel= ' return imgzoom (this); " Onmouseover= "if (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; This.style.cursor= ' hand '; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} Onclick= ' if (!this.resized) {return true;} else {window.open (' http://kuandai.kfinfo.ha.cn/UploadFiles/ 20051219128408.gif '); Src= "/files/uploadimg/20061107/1423112.gif" onload= "if" (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} border=0> Modify the Select ports as shown in the figure, remove all other port's green hooks (click the port) and end with only 80 ports, and then click Save to save the port configuration table to the hard disk. Every time you use Superscan, you no longer need to configure it, just load it. When all is set, click Start to scan. After the scan is finished, as shown in the figure: 498) this.width=498 ' OnMouseWheel = ' javascript:return big (This) ' onmousewheel= ' Return to Imgzoom (this); Onmouseover= "if (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; This.style.cursor= ' hand '; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} Onclick= ' if (!this.resized) {return true;} else {window.open (' http://kuandai.kfinfo.ha.cn/UploadFiles/ 200512191325888.gif '); Src= "/files/uploadimg/20061107/1423113.gif" onload= "if" (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} Border=0> we can see that the network segment has two machines open 80 ports, click on the left of the two machines, the small + symbol icon, you can display the two machines developed port information. 61.49.150.68 This machine is open to an IIS serviceDevice, 61.49.150.85 This machine is a 302 logo, according to experience, we can know that the open here is a ZTE Series router configuration interface. In this article, we mainly introduce the security of ADSL routers, IIS security issues we will be introduced in the following article, here we just click on the 61.49.150.85 right-click, select Web browsing can. 498) this.width=498 ' OnMouseWheel = ' javascript:return big (This) ' onmousewheel= ' Return to Imgzoom (this); "Onmouseover=" if (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; this.style.cursor= ' hand '; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} Onclick= ' if (!this.resized) {return true;} else {window.open (' http://kuandai.kfinfo.ha.cn/UploadFiles/ 200512191515376.gif '); Src= "/files/uploadimg/20061107/1423114.gif" onload= "if" (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} Border=0> after clicking, a Connection Configuration dialog box appears, as shown in the figure: 498) this.width=498 ' OnMouseWheel = ' javascript:return big (This) ' onmousewheel= ' Return Imgzoom (this); "Onmouseover=" if (this.width>screen.width*0.7) {this.resized=true; This.width=screen.width*0.7; This.style.cursor= ' hand '; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} Onclick= ' if (!this.resized) {return true;} else {window.open (' http://kuandai.kfinfo.ha.cn/UploadFiles/ 20051219166803.gif '); Src= "/files/uploadimg/20061107/1423115.gif" onload= "if" (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} Border=0> Click OK, you can connect. After the connection pops up the prompt box as shown: 498) this.width=498 ' OnMouseWheel = ' javascript:return big (This) ' onmousewheel= ' Return to Imgzoom (this); Onmouseover= "if (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; This.style.cursor= ' hand '; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} Onclick= ' if (!this.resized) {return true;} else {window.open (' http://kuandai.kfinfo.ha.cn/UploadFiles/ 200512191657153.gif '); Src= "/files/uploadimg/20061107/1423116.gif" onload= "if" (THIS.WIDTH>SCreen.width*0.7) {this.resized=true; this.width=screen.width*0.7 this.alt= ' Click here to open new Window\nctrl+mouse Wheel to zoom in/out ';} ' Border=0> through just connect the page on the logo, we can be sure that this is a ZTE 831 router, enter the factory default username, password: ZXDSL, ZXDSL, entered the Configuration Interface: 498) this.width=498; ' OnMouseWheel = ' Javascript:return big (This) ' Onmousewheel= ' return imgzoom (this); "Onmouseover=" if (this.width>screen.width*0.7 ) {this.resized=true this.width=screen.width*0.7; this.style.cursor= ' hand '; this.alt= ' Click here to open new window\ Nctrl+mouse Wheel to zoom in/out ';} ' Onclick= ' if (!this.resized) {return true;} else {window.open (' http://kuandai.kfinfo.ha.cn/UploadFiles/ 200512191750551.gif '); Src= "/files/uploadimg/20061107/1423117.gif" onload= "if" (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} border=0> clicks on the navigation bar "quick revisit" to enter the quick configuration interface, as shown in the picture: 498) this.width=498; ' OnMouseWheel = ' javascript:return big ( This) ' onmousewheel= ' rEturn Imgzoom (this); "Onmouseover=" if (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width* 0.7; This.style.cursor= ' hand '; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} Onclick= ' if (!this.resized) {return true;} else {window.open (' http://kuandai.kfinfo.ha.cn/UploadFiles/ 200512191840679.gif '); Src= "/files/uploadimg/20061107/1423118.gif" onload= "if" (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} Border=0> user name has been seen, the password is shown as small black spots, this How to do it, in fact, it is difficult not to pour everyone, click the right button, select View Source code: 498) this.width=498; ' OnMouseWheel = ' Javascript:return Big (This) ' Onmousewheel= ' return imgzoom (this); "Onmouseover=" if (this.width>screen.width*0.7) {this.resized=true ; this.width=screen.width*0.7; This.style.cursor= ' hand '; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} Onclick= ' if (!this.resized) {return true;} else {window.open (' HTTP://KUANDAI.KFinfo.ha.cn/uploadfiles/200512191941213.gif ');} Src= "/files/uploadimg/20061107/1423119.gif" onload= "if" (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} Border=0> so an ADSL account was easily stolen. In fact, the method of filling up this vulnerability is very simple, as long as the user in the installation of the router to modify their default password can be, but many people did not do this step, for hackers left a lot of "target". 498) this.width=498 ' OnMouseWheel = ' javascript:return big (This) ' onmousewheel= ' Return to Imgzoom (this); "Onmouseover=" if (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; this.style.cursor= ' hand '; this.alt= ' Click here to open new window\nctrl+mouse wheel to Zoom in/out ';} Onclick= ' if (!this.resized) {return true;} else {window.open (' http://kuandai.kfinfo.ha.cn/UploadFiles/ 20051219242336.jpg '); Src= "/files/uploadimg/20061107/14231110.jpg" onload= "if" (this.width>screen.width*0.7) {this.resized=true; this.width=screen.width*0.7; This.alt= ' Click here to open new window\nctrl+mouse wheel to zoom in/out ';"Border=0> we have some common router configuration password and IP address, I hope everyone according to their own router brand screening, modify the default password." Need to note that these data are not confidential, they are printed on the product specifications above, so we strongly recommend the routing way to the Internet ADSL users quickly modify your password, do not leave the space for criminals. To force (0 Votes) Tempted (0 Votes) nonsense (0 Votes) Professional (0 Votes) The title of the party (0 Votes) passed (0 Votes) Original: Remote theft ADSL account is so simple to return to the network security home
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.