Um, from the article it appears that this isn’t on the Management interface, but the WAN port of the OLT. Owen
On Jul 10, 2020, at 11:01 , Mel Beckman <mel@beckman.org> wrote:
But who, who I ask, opens their management interface to the public Internet?!?!
Maybe this is vulnerability if you have a compromised management network, but anybody who opens CPE up to the Internet is just barking mad :-)
-mel via cell
On Jul 10, 2020, at 10:00 AM, Owen DeLong <owen@delong.com> wrote:
https://www.zdnet.com/article/backdoor-accounts-discovered-in-29-ftth-devices-from-chinese-vendor-c-data/?ftag=TRE-03-10aaa6b&bhid=29077120342825113007211255328545&mid=12920625&cid=2211510872 <https://www.zdnet.com/article/backdoor-accounts-discovered-in-29-ftth-devices-from-chinese-vendor-c-data/?ftag=TRE-03-10aaa6b&bhid=29077120342825113007211255328545&mid=12920625&cid=2211510872>
Wow… Just wow.
Owen