One ISP I tested could reset the connection and give you new IP address every second, it was literally as quick as the device could handle getting the new ip address in bridge mode. So that will include disconnecting your ADSL connection, reconnecting and giving you a new IP address if you dont pay for a fixed ip address. So in the UK if you are limited to say a 40Mb or 80Mb download and whatever upload, when your adsl router/modem connects or negotiates a speed (max DSLAM throughput), even if you could negotiate a 100Mb speed, you would be throttled to whatever you package speed is and then with things like TR069 ( ) they can remote control your router. So one of the reasons why its set by the cabinet is they charge different fees for different connection speeds. Not in the UK, its set by the cabinet which in my case is a Broadcom running version 12.3.16. The DOCSIS cert and private key were right there in the flash too, I'm pretty sure I still have a backup somewhere. Worked fine until I moved out of that place and stopped using cable. I got tired of that nonsense, found an old firmware image, and directly flashed it to the SPI flash chip on the board (except I left the version metadata as the higher one, so it wouldn't try to update itself again). Later, the ISP broke this in an update, possibly inadvertently: bridge mode was still there, but enabling it caused some process to crashloop and destroyed performance. Back when I was on cable, my cable router didn't have an official bridge mode, but there was a way to get telnet by uncommenting a hidden settings field in the HTML (lol) and then you could use an undocumented command to enable it. Hacking is the more general term for what this is :-)Ĭable modems in general don't seem to really make much of an attempt at physical-access security, even though they rely on being "secure from the owner" to enforce ISP bandwidth limits. Exploitation means breaking intended security, but there is no security here obviously this device was not designed to attempt to stop you from tinkering with eMMC directly. Just a terminology nit in the article: this isn't really exploiting anything.
0 kommentar(er)
