is it possible or legal to replace TM's DIR-615?

im not sure if i should laugh or cry.

If you think they want to spy on YOU by creating a second management account. Then it is big fail for all you guys, pretending to know how internet works.

Your Modem/router will be connected a layer two switch. or lets say connected to a port. they can use "SPAN" to see all the traffic you are sending and receiving. 

But again, doing that to every indivicual will be really tiring. Easier is, run "SPAN" to the uplink, that is connecting the layer two switch to the distribution switch. and bam, they can get all i/o traffic from the whole switch.

WAIT.

They can add high end firewalls at the uplinks to every area (logical or geographical) or just again SPAN the traffic to the firewalls.  AND they practically SEE every traffic you sending.

Conclusion is. dont cry a river for a second account your ISP put it. if they did, it is to make your experience better. but if you think you can out smart them. please do.

How i know. I'm a CCNP and working under routing/ switching and security for some enterprise.

---

Added on May 29, 2010, 5:19 pm

No, they use packet shaping devices for that.

Probably why they put that up ;p

Okay, good job for TS as he found out this major security risk considering the number of IT grads and professionals these days are out there...
But posting this here is actually publicity to this loophole.

Only those who came to LYN would find out about this and if they are tech savvy enough, they will know how to get around it to minimize the exposure risk as much as possible.

But again, if someone with unholy intention stumbles upon this, it could mean disaster for those unaware and incapable to prevent it...

I would like to ask TS, now that you have found out and posted it to public, what is your next step? Will you report to relevant authorities?
Otherwise the purpose of this thread will be:

1. Publicize a major loophole in UniFi
2. Giving knowledgeable users the chance to avoid the risk, a really small amount of people in LYN.
3. Exposing a mass mount of UniFi-ers to exploits...

So, just be aware of that. I'm no IT expert with any qualification btw. TS, u're doing the right thing, salute! but there is still a loophole in what you are doing  haha

eh apologist. firstly its a wifi router. secondly, stop deflecting blame to dlink!!
that router is a custom router that tm oem-d from dlink. you cant buy it off the shelf from any store.
it is a tm router. i dont care if dlink or flink or nolink or slolink made it.

the tm logo pasted everywhere.

But, more significantly, the 615 could reliably sustain only 32 connections in the maximum simultaneous connections test. Ubicom questioned these results when they first posted in the charts and said its tests (also done with IxChariot) produced results more like the 625's. D-Link had no comment on the results.


WAN to LAN Throughput: 87.5 Mbps

LAN to WAN Throughput: 88.1 Mbps

Total Simultaneous Throughput: 62.1 Mbps

Maximum Simultaneous Connections: 32  !!!



Uploaded with ImageShack.us 

I am proud of u rivan:
http://www.tm.com.my/about-tm/media-centre...IFIROUTERS.aspx
STATEMENT


Telekom Malaysia Berhad ™ wishes to clarify the concerns raised by various parties with regards to the remote accessibility of UniFi routers which are part of the customer premises equipment (CPE) for all UniFi subscribers.

TM would like to assure all concerned parties that the only reason the UniFi router setting for remote access is enabled is for remote access troubleshooting purposes for the express use of our technical support personnel. In the event there is a technical support issue with any of our UniFi subscribers; at the first level of troubleshooting, TM’s network operation centre (NOC) can immediately remotely diagnose the problem before sending a support team on-site.

TM takes note of the security concerns that have been raised, and we have taken these issues to heart.

TM also acknowledges that there is a need to balance the public’s level of comfort with regards to security and privacy and TM’s own commitment to faster support turnaround time. As such, TM would like to maintain the higher level of service enabled by remote access management on customer routers, and in recognition of that TM will immediately change  every UniFi customers’ router management password into a high security, unique one (which will be only known to the customer and TM). TM will notify all our Unifi customers of this change accordingly.

Actually, if you read that carefully, they said they will change the passwords and then share that password with the customer. If they live up to their word, once they change it and inform you the new password, just change it back to another password.
If TM needs access in future, let them call you and you can reset the password to a temp password, let them use it and then change the password again in future.

hi

is there possible to just use our own router instead of theirs.... like belkin. what configuration need to do ???

HOLY CRAP! JUMPIN JIGGAWATS WATSON! dude, by uploading the screenshot, aren't you risking yourself and other UNIFI subscribers from hackers and arseholes? 

this is very alarming..my concern is if they can trace what the user download off the net..

just installed unifi today.. they completed it quite fast. Already disabled remote mgmt and changed both admin & operator password. hehe