Tech Support > Computer Hardware > Modems > Help identifying system
Help identifying system
Posted by sophia2521@supanet.com on January 3rd, 2006




Sorry if this post is off topic.

I recently conducted a war dial as part a security audit of
modems connected to our companies telephone lines.

While I was able to identify most of the modems found there
are a few I need help with.

If anyone recognises any of these or can give me any idea what
they are, I'd be very grateful. Specific software/vendor/model
details would be great.

Please reply directly.

Thanks in advance


1)

The first simply asks for a password, it allows 4 tries,
Each character typed echoes a '#', including the newline.



===== BEGIN LOG =====
CONNECT 2400

PASSWORD> #####
PASSWORD> ######
PASSWORD> #####
PASSWORD> ######
NO CARRIER

===== END LOG =====

The passwords tried in the example are root, guest, test and
admin.




2)

The second carrier is a simple ']' password prompt. You get
hree attempts until you are disconnected with what appears to
be a error code, or possibly a serial number.



===== BEGIN LOG =====
CONNECT 2400

]
]
]
0000004E0DD4
+++
===== END LOG =====




3)

The third carrier asks for a passcode and echos '*' for every
character entered, including the new line.



===== BEGIN LOG =====
CONNECT 28800


Enter PassCode ******
Access Denied


Enter PassCode *****
Access Denied


Enter PassCode ****
NO CARRIER
===== END LOG =====

The passwords tried in the example are guest,test and admin.

Posted by Moe Trin on January 3rd, 2006


On 2 Jan 2006, in the Usenet newsgroup comp.dcom.modems, in article
<1136252858.160249.109220@z14g2000cwz.googlegroups .com>,
sophia2521@supanet.com wrote:

Contact the person in charge of the telephone system, and determine
where the lines terminate. Go to that location and ask. If necessary,
bring a couple 'People Who Do Not Smile'(tm) to back you up, but you
had better have _signed_ permission from 'The Powers That Be'(tm). If
no one knows were the lines terminate, you have bigger weeds to hoe.
If the 'The Powers That Be'(tm) won't back you up, it's a lost cause.

If the systems are authorized to have modem connections, that's one
thing. If they are not authorized, inform management that they have
the security problem. One does assume that the company does have
WRITTEN POLICIES in place and signed by some big cheese. If this is
not the case, consult a security consultant for much needed advice.

Old guy

Posted by risadler on January 8th, 2006


You aren't seeing the modems, you're seeing the software responding to
the login request.


Similar Posts