Hi

My BT Homehub has a username of 'bthomehub@btbroadband.com'.

Is there a default password?

Many thanks

Starman2112 wrote:
What password?

Which password (possibly more importantly) ?

"kraftee" <kraftee@b&e-cottee.me.uk> wrote in message
news:NbOdne8BaYy_4aHVnZ2dneKdnZydnZ2d@bt.com...
The password which allows me to get online (ie 'dialup password' as opposed
to the password which allows me to access the device config).

Regards

Starman2112 wrote:
between you and your ISP. Who set it up.

"The Natural Philosopher" <a@b.c> wrote in message
news:1211962427.30407.1@proxy01.news.clara.net...
BT don't seem to validate ADSL username and password, relying on the
identity of your line (phone number etc) to determine who you are. You still
need to supply a username/password for reading your POP email box.

I've seen a number of BT routers (certainly the 220, and maybe the HomeHub
as well) where the username field is a dummy value of the form that you
give, and the router connects perfectly well.

Most other ISPs (PlusNet, Tiscali, AOL) seem to validate the ADSL
username/password and will not allow a connection unless these match the
entry in their accounts database.

On Wed, 28 May 2008 09:18:59 +0100, Mortimer scribbled:

The default DSL connection password used to be formed from the first half
of the email address thus:

iamstupidtobe@btbroadband.com would have the password iamstupidtobe but I
used to be able to log in with 'anypasswordilike' before I ditched BT.

IIRC the connection was not really exploitable unless you happened to be
on the same DSLAM. However, I think you were (and still are) able to
exploit some email accounts because of this laziness.

Starman2112 wrote:
There you, go plenty of answers when you post the complete question & no
most BTInternet home users don't require a password to login with.

"The Natural Philosopher" <a@b.c> wrote in message
news:1211962427.30407.1@proxy01.news.clara.net...
BT don't say what that password is.

On Wed, 28 May 2008 09:18:59 +0100, "Mortimer" <me@privacy.net> wrote:


I echo that.
I've managed to connectl several neighbours to BT Broadband with_out_
having to use any of their resource-hogging software at all.
--
Locate your Mobile phone: <http://www.bizorg.co.uk/news.html>
Great gifts: <http://www.ThisBritain.com/ASOS_popup.html>

Starman2112 wrote:

Anything you like.

BT Consumer Broadband does not use a username/password from the router for
validation, and any value is permitted for either parameter (pretty certain
it must be set to something, not blank).

The validation is done via the line which connects; if its a BT consumer
connected DSL line, then a device connecting on that line is permitted to
log-in to the network.

Most other ISPs don't use this approach.




- Nigel (previously employed in BT development, including design of internet
services).



--
Nigel Cliffe,
Webmaster at http://www.2mm.org.uk/

On Thu, 29 May 2008 09:47:34 +0100, Nigel Cliffe passed an empty day by
writing:

Having been able to connect to a customers BT broadband on any port of an
exchange DSLAM, I would like to know how this is supposed to work. It
also offers no security as far as POP3 or SMTP servers are concerned,
does it?

Klunk wrote:
It works, it is fine, really.
Its been that way for several years.
You'll have to search for how it works and why its adequate (network
security isn't my trade, so I will decline the opportunity to give an
approximation which someone can pick holes in).


Regardless of ISP, a customer's ADSL Modem/Router establishes a network
session to get an IP address, it has no role in POP3 or SMTP authentication.




- Nigel (not a security expert, but I *do know* how BT consumer broadband
works)





--
Nigel Cliffe,
Webmaster at http://www.2mm.org.uk/

"Nigel Cliffe" <me@invalid.invalid> wrote in message
news:g1mqa6$bks$1@news.albasani.net...
POP3 authentication usually requires both username and password. With some
ISPs the password is quite different to that used to authenticate the PPP
connection over the ADSL service.

SMTP is generally rather more complicated. Some ISPs require authentication
(either same or different to the POP credentials). If you have an email
service independently of your ISP then you will require authentication,
otherwise they run the risk of being used as an open mail relay and explited
to send spam. Other ISPs will use the IP address that they have issued you
as authentication - usually on the basis that any of the IP addresses
within the set managed by that ISP can be used to sent SMYTP traffic. Thus
one BT Consumer Broadband customer may be able to send email from another BT
Consumer Broadband customer's connection.

--
Graham J

On Thu, 29 May 2008 19:57:19 +0100, Graham J passed an empty day by
writing:

We have already established username and password, did you miss that
somewhere? Go on, go back and read it . . .

Username: iamatwattobe@btinternet.com
Password: iamatwattobe

That's the POP3 dealt with

Now,
with BT is the same as the username and password. Most people using a BT
Internet password are open to this abuse unless they have changed their
password. Good ole BT ;-)

As for the connection being locked to the line - I've yet to see just how
that is. You were able to go across any of the ports on the DSLAM in the
exchange with no PSTN jumper in and connect with a subs details without
any problems (only common point was the DSLAM). You could NOT do it from
a different exchange mind you. I'll look it up - I have the details of it
somewhere.