Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations derfloh on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Hilarious Bad system Management

Status
Not open for further replies.
NARSBARS

NARSBARS

Technical User
Joined
Nov 20, 2002
Messages
883
Location
US
I just found a Google search term, which I will not give out, that shows several BCMs on the web with public IP addresses. Some are using default passwords. and on all of them you can download applications.
I am going to do a traceroute and try to notify the owners but why would anyone do that?

NARSBARS
 
Sort by date Sort by votes
That is like walking around with a "Please kick me" sticker on your back.

SHK Certified (School of Hard Knocks)
 
Upvote 0 Downvote
I've often questioned why anyone would put a BCM on the Internet. At the very least configure an ACL on the router that is in front of it and restrict who can talk to it.
 
Upvote 0 Downvote
Funny, isn't that the whole point of a BCM - "Business Commincations Manager", an office in a box: Phone, network, router, firewall, VPN.

At least that's how they tried to sell it to me. Of course I would never actually try to do that with it :)
 
Upvote 0 Downvote
Supposed to be. I've always been leary of putting all my eggs in one basket, especially with some past issues with reliability (i.e, base function tray). Makes maintenance kind of a pain in the rear if something needs to be done to the BCM - instead of just being out of phone service, you're out of darn near everything.

We've had customers approach us saying they wanted the VPN keycode in the BCM, wanted to enable the firewall, NAT, etc. Once we mention that a Contivity 1010 will do that stuff for not much more money than the IPSEC keycode, and do it more reliably, it's an easy sale.

Reminds me of a few years back when I bought a cisco router off ebay for lab work. Cracked the password, found the config, telnetted to the external IP that was on the router, and presto - I was talking to their "new" router with the same password that was on the old one that was sold on ebay. Had I felt malicious, I could have whacked the config, reloaded their router and left someone in a world of hurt. Instead I emailed the domain that belonged to the IP and informed them that they need to review their security practices. Never did hear back.

I'll let my phone system be my phone system, and let my firewall be my firewall - just my opinion.
 
Upvote 0 Downvote
Heard back from one person I warned. They were insulted and P.O.ed at me. I had no place telling them how to run their system. This was the user with the default password.
I am glad I did the notification from a blind account as they were sounding like they wanted to sic a lawyer on me.
Well as they say, no good deed goes unpunished.

NARSBARS
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

kpzan
  • Locked
  • Question Question
Bad expansion cabinet?
Replies
17
Views
993
curlycord
curlycord
I_Miss_POTS
  • Locked
  • Question Question
Troubling Bcm system
Replies
3
Views
428
curlycord
curlycord
ramblingrebel
  • Locked
  • Question Question
new ip set registration on new system error
Replies
11
Views
707
ramblingrebel
ramblingrebel
dukane123
  • Locked
  • Question Question
System reboot and Call Centre on BCM50
Replies
4
Views
340
dukane123
dukane123
Kyra.Johnson
  • Locked
  • Question Question
Nortel BCM50 - active incoming phone number management
Replies
3
Views
345
Firebird Scrambler
Firebird Scrambler

Part and Inventory Search

Sponsor

Back
Top