13 Jun
2013
13 Jun
'13
1:56 p.m.
On 13/06/2013 18:42, Leo Bicknell wrote:
A hard coded backdoor password and username.
e.g.: http://www.phenoelit.org/dpl/dpl.html Or alternatively if you want access to any huawei device with software older than about a year ago: http://phenoelit.org/stuff/Huawei_DEFCON_XX.pdf
A sequence of port-knocking that enables ssh on an alternate port with no ACL.
e.g.
http://krebsonsecurity.com/2013/01/backdoors-found-in-barracuda-networks-gea...
There's no need to resort to malice to explain these problems when alternative explanations exist. Nick