Skip to main content

RTP 300 log in script is still flawed

Tonight, while reconfiguring my network, I had to log into my Linksys RTP 300 router. If you remember, a while back I wrote about a security flaw I found in the log in script of that router. You can read my post here. Well, tonight while logging in I mistyped the last character of the router's password, which of course is still a digit. Guess what folks, I was able to log in without any problems.


Last year, when I wrote my post, the firmware version was 1.00.55. The current firmware version is 1.00.62. Before I wrote my first post about this, I had contacted Linksys and informed them of the problem. The email I received from them pretty much told me: thanks for the info. we will look into it. Well, in a couple of months it will be one year since I told them and the security flaw has not been fixed. Apparently Linksys, a company owned by one of the biggest network hardware manufacturer (Cisco), priding itself on security, does NOT think that simple password security flaw is important enough to fix.


Wonderful! With that kind of security/customer minds set, maybe we should look into switching to Netgear or D-Link.

Comments

Popular posts from this blog

Format MAC Address [JavaScript]

I am currently working on a project which will allow users to register their Wi-Fi enabled, non-web browser enabled, devices on the network. These are devices like printers, Apple TV, and Xbox*. One of the data points that have to be collected from the user is the device MAC address. The project customer wants that address to be properly formatted when they see it in the support ticket.

We have several options. We can format the address either on the back-end after the form has been submitted. Or we can format it on the front end via a separate text field for each character pair, but that is too many fields to handle. A better solution is to use a single field and format the user input at the time of input or upon submit. In those cases, the former is better because the data will already be formatted when the overall form input is being validation after the user clicks the “Submit” button.

We are going to format the user input as it is being provided, thus having proper data when vali…

Balloon Flowers of 2014

We have Balloon Flowers (platycodon grandiflorus) in a half barrow pot. They are one of my favorite flowers that we have around the house. Simply because of how the flower forms. It starts as a small ball, which slowly grows into the shape of a hot air balloon, and once it opens it looks like it had exploded.

[gallery type="rectangular" link="file" ids="2611,2612,2622,2615,2613,2614,2616,2617,2618,2619,2610,2620,2621"]

I planted the flowers from the pictures above about seven years, ago.

SNOOZ: Sound. Sleep.

I was on the Snooz Kickstarter page today, revisiting the project’s details and timeline progress. The device, which is a white-noise generating machine, recently became available for pre-order. Snooz is meant to be an alternative to having a TV or a stationary fan running at bed time. In my case, I bought it for my wife so we can get the TV out of the bedroom.

Whilst on the comments page I read the following comment, posted recently by Ken Tran:

I'm not a fan of the new fabric design. ...
I must disagree. If you take a look at the original design, which is all plastic and no style, I must say it is fugly. It is all utilitarian - not something I rally want to look at or see when I walk into the room. The final design, seen on the right, is something that beacons to be explored, looked at, utilized.

I am a big fan of Bang & Olufsen. They use fabric from Kvadrat in their line of products. Incorporating soft materials like fabric or leather in something which is meant to be place…