ISP in con­trol

TechLife Australia - - THE WALL -

Your re­cent ar­ti­cle on ‘Se­cur­ing your router’ (TechLife 79, pages 100-101) prompted me to check my own NBN fi­bre router, which was sup­plied within the last 12 months by my ISP (Ex­e­tel). It is a ZTE H268A and has per­formed well. How­ever, this modem-router was pre-in­stalled with some­thing called ‘TR-069 re­mote man­age­ment’ ca­pa­bil­ity which ap­par­ently means that its firmware can be re­motely up­graded by the ISP with­out no­ti­fi­ca­tion to the user. Is this com­mon? Is it a sig­nif­i­cant se­cu­rity risk that I should try and dis­able, and if so, how? [ DAVID LUCKETT ]

Ed replies: The con­sen­sus from our peers says that the TR-069 pro­to­col could pos­si­bly open you up to hack­ing, but in re­al­ity it’s not likely to hap­pen. TR-069 is not per­fect, but then what is? Your so­lu­tions, we think, are thus: One: re­place the router, which is likely to be ex­pen­sive and un­nec­es­sary. Two: do noth­ing. Three: get in touch with Ex­e­tel, ex­plain you’re con­cerned about se­cu­rity, and ask them if it’s safe to turn off. Our ad­vice? Start at so­lu­tion three and work back­wards.

Newspapers in English

Newspapers from Australia

© PressReader. All rights reserved.