Penetration Testing mailing list archives

RE: Linksys Pen Test

From: "Bridis, Ted" <Ted.Bridis () dowjones com>
Date: Wed, 20 Jun 2001 14:14:09 -0400

One of my clients uses a Linksys DSL router, and the

default authentication is admin/admin unless changed manually.<<

Actually, the default is blank username and "admin" for password.

http://www.linksys.com/products/userguide.asp

Also, some of the Linksys routers can be managed remotely over 8080 but the
default is not to allow this, so you can always try to hit the target's
static IP (the one in front of the NAT) on 8080 and punch in the default
password.

The defaults for the Netgear routers, if I remember correctly, are "admin"
and "1234," and I caught one listening on Port 43 but didn't check to see if
it was administrable....

Current thread:

Linksys Pen Test IUSR_MAIL (Jun 19)
- RE: Linksys Pen Test Mark Curphey (Jun 19)
- <Possible follow-ups>
- RE: Linksys Pen Test NetW3.COM Consulting (Jun 20)
  - Re: Linksys Pen Test Nexus (Jun 21)
    - Re: Linksys Pen Test Dragos Ruiu (Jun 21)
- RE: Linksys Pen Test auto241065 (Jun 21)
- RE: Linksys Pen Test Bridis, Ted (Jun 21)
  - Re: Linksys Pen Test Nexus (Jun 22)