<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"><html>
<head>
<meta name="GENERATOR" content="IncrediMail 1.0">
</head>
<BODY background="" bgColor=#ffffff style="BACKGROUND-POSITION: 0px 0px; FONT-SIZE: 10pt; MARGIN: 1px; FONT-FAMILY: Arial" scroll=yes ORGYPOS="0">
<TABLE border=0 cellPadding=0 cellSpacing=0 id=INCREDIMAINTABLE width="95%">
<TR>
<TD id=INCREDITEXTREGION width="100%" style="PADDING-RIGHT: 7px; PADDING-LEFT: 7px; FONT-SIZE: 10pt; FONT-FAMILY: Arial"
>
<DIV>Any idea how to get into the @Home cable router that I have(it's
operating system)? It's a Motorola Surfboard 3100. </DIV>
<DIV> </DIV>
<DIV>Gary</DIV>
<DIV> </DIV>
<DIV id=IncrediOriginalMessage><I>-------Original Message-------</I></DIV>
<DIV> </DIV>
<DIV id=receivestrings>
<DIV dir=ltr style="FONT-SIZE: 11pt" <i><B>From:</B></I> <A
href="mailto:bneill@yahoo.com">Brandon N</A></DIV>
<DIV dir=ltr style="FONT-SIZE: 11pt" <i><B>Date:</B></I> Sunday, August
26, 2001 04:32:37 PM</DIV>
<DIV dir=ltr style="FONT-SIZE: 11pt" <i><B>To:</B></I> <A
href="mailto:clue-talk@clue.denver.co.us">clue-talk@clue.denver.co.us</A></DIV>
<DIV dir=ltr style="FONT-SIZE: 11pt" <i><B>Subject:</B></I> Re:
[CLUE-Talk] Security Issue with @Home</DIV></DIV>
<DIV> </DIV>There is really no way to fix this on a shared
connection, although the<BR>modems detect the IP's behind them and can
show this to @home techs. <BR>All you have to do to hijack an IP is look
at your host IP, subnet mask<BR>and then pick another IP on your subnet.
This is probably what<BR>happened to the people mentioned on slashdot that
had thier connection<BR>turned off while they were on vacation for running
a warez site. <BR><BR>Brandon<BR>--- Warren <warren@guano.org>
wrote:<BR>> If you are considering broadband service with @Home, be
aware of the<BR>> following security issue of "IP address hijacking"
being discussed on<BR>> Bugtraq.<BR>> <BR>> Aside from the
inconvenience, it is possible that someone could use<BR>> your<BR>>
IP address for subversive activities, trading mp3s or sending<BR>>
instructions on how to rip CDs, for example, and point the finger
at<BR>> you. Refer to<BR>>
http://www.salon.com/tech/feature/2001/08/23/pirate/index.html<BR>>
<BR>> <BR>> <BR>> Forwarded message:<BR>> <BR>> From:
Roadkill Randu <randy@viopac.com><BR>> To:
bugtraq@securityfocus.com <bugtraq@securityfocus.com><BR>> Date:
Saturday, 25 August, 2001, 4:20:25 PM<BR>> Subject: @Home network
subject to DHCP hijacking<BR>> <BR>> <BR>> <BR>>
======================Original message text=================<BR>>
<BR>> Greetings:<BR>> <BR>> Problem:<BR>> <BR>> The @Home
network assigns IP addresses on a fairly permanent basis to<BR>>
its<BR>> subscribers, but it does use DHCP for IP address assignment.
It is<BR>> trivial matter, however, to take over another @Home
account's IP<BR>> address<BR>> by simply providing another
customer's ID for the hostname parameter<BR>> in<BR>> DHCP. It is
also trivial to acquire this hostname parameter, since<BR>> all
it<BR>> requires is 'host @HomeIPaddress' to determine what the
customer ID<BR>> is.<BR>> <BR>> Notification:<BR>> <BR>> I
have notified @Home of this problem twice in the last two months. <BR>>
Not<BR>> being an expert in DHCP, I do not know what could be done to
fix<BR>> this. I<BR>> figure at least using something different than
my actual hostname for<BR>> my<BR>> hostname parameter would at
least raise the bar to sniffing for DHCP<BR>> packets, instead of the
trivial hack it currently is.<BR>> <BR>> Reason for this
message:<BR>> <BR>> I have had my @Home connection hijacked from me
repeatedly in the<BR>> last six<BR>> months. Given @Home's aparent
lack of concern for this problem, and<BR>> the<BR>> current mood of
ISPs shutting down users without warning whenever the<BR>> MPAA<BR>>
rattles it saber, I felt that the larger community needed to be
aware<BR>> of<BR>> this potential problem. It should not be this
trivially easy for<BR>> someone<BR>> to break the law in your
name.<BR>> <BR>> Randy<BR>> <BR>> <BR>> <BR>>
=================End of original message text===============<BR>>
<BR>> -- <BR>> <BR>> </W><BR>> <BR>>
http://guano.org/~warren/pgp.txt<BR>> <BR>> <BR>>
_______________________________________________<BR>> CLUE-Talk mailing
list<BR>> CLUE-Talk@clue.denver.co.us<BR>>
http://clue.denver.co.us/mailman/listinfo/clue-talk<BR><BR><BR>__________________________________________________<BR>Do
You Yahoo!?<BR>Make international calls for as low as $.04/minute with
Yahoo!
Messenger<BR>http://phonecard.yahoo.com/<BR>_______________________________________________<BR>CLUE-Talk
mailing
list<BR>CLUE-Talk@clue.denver.co.us<BR>http://clue.denver.co.us/mailman/listinfo/clue-talk</TD>
</TR>
<TR>
<TD id=INCREDIFOOTER width="100%">
<TABLE cellPadding=0 cellSpacing=0 width="100%">
<TR>
<TD width="100%"></TD>
<TD align=middle id=INCREDISOUND vAlign=bottom></TD>
<TD align=middle id=INCREDIANIM vAlign=bottom></TD>
</TR>
</TABLE>
</TD>
</TR>
</TABLE><SPAN
id=IncrediStamp><SPAN dir=ltr><FONT face="Arial, Helvetica, sans-serif"
size=2>_________________________________________________<BR><FONT
face="Comic Sans MS" size=2><I>IncrediMail</I> - <B>Email has finally
evolved</B> - </FONT><A href="http://www.incredimail.com/imstampa.html"><FONT
face="Times New Roman" size=3><B><U>Click
Here</U></B></FONT></A></SPAN></SPAN></FONT>
</BODY>
</html>