Dear Internet,
It has come to our attention that Verizon, Qwest/Centurytel, and other companies have numerous ports open for the modems which CAN NOT be disabled. Now, before you question if we're just all idiots that don't know what forwarded ports are, or how to disable remote admin - Simply look up "Qwest Port 4567" "Centurytel Port 4567" and realize how much of a wide spread issue this open port problem truly is. Now, why is it that these companies can't get this right? Could it be a backdoor? Could it be poor programming? Could it be that these companies are working with governments? The following is a conversation with a Qwest representative. Take what you will from it.
*
*
*
Tech Bob>How may I help you today?
XXXXXX>Give me one moment, and I'll get the specific model number for my router, so I can explain fully
XXXXXX>Ok
XXXXXX>I have an Actiontec Q1000
XXXXXX>And I've checked literally everything. Forwarded ports, I've set my firewall to high.
XXXXXX>I have no forwarded ports, and I've clicked and checked literally every setting
XXXXXX>Now, the issue is that port 4567 is open, regardless of what I do
XXXXXX>Now, why is this?
XXXXXX>Also, this port is internet-facing. When someone uses my IP address, and designates that port ( such as, 1.1.1.1:4567 ) it asks for a username and password
XXXXXX>This is not only a potential security issue, but the fact I can't fix this is bothering me. Can you help?
Tech Bob>Let me research that a little and I'll get right back to you
XXXXXX>I've looked it up, and it seems to effect the M1000 model too, and I've also seen that Verizon has the same issue
Tech Bob>I'm guessing that is all of our modems for allowing our internal diagnostic systems to access your modem
Tech Bob>again, that is a guess
XXXXXX>Is there any possible way for it to be fixed? I've been with a lot of ISPs including Time Warner, Comcast, CenturyTel, and who knows how many others and I've never dealt with this
Tech Bob>I don't think it can be blocked
Tech Bob>Let me see if I can look into it a little more
XXXXXX>If it can't be blocked, can I exchange routers to get one that doesn't have this "feature"?
Tech Bob>all of our modems would have that I would think
Tech Bob>you can go with a non-centurylink modem
XXXXXX>Would that be provided to me, free of charge?
Tech Bob>no
XXXXXX>So I wouldn't be able to get a Zyxel or other brand of router, specifically offered by Qwest/CenturyLink as an equal exchange?
Tech Bob>You might need to talk to one our engineers about this. I don't have anyone here this late at night
Tech Bob>The Zyxcel has the same firmware in it
XXXXXX>Is there any way I can be forwarded to Actiontec's Tier 2 support?
Tech Bob>You can call them directly, yes
Tech Bob>let me see if I can find that number
Tech Bob>800 720 9844
XXXXXX>I don't have the phone number, and I talked with a chat representative like yourself earlier. They told me that Actiontec would not respond to me unless the chat was bridged over to them
Tech Bob>You can call in the morning to see if we can transfer you over
Tech Bob>oh, you might be able to call now
Tech Bob>I'm showing they are open 24/7
Tech Bob>our number is 888-777-9569
XXXXXX>Now, before call them, what exactly would an engineer be able to do that you could not? Seeing as all of the modems have the same firmware, and what not.
Tech Bob>We have 1 person that works directly with our equipment vendors
XXXXXX>I understand that, but what exactly would they be able to do? Custom firmware, new hardware?
Tech Bob>bug report, get fixes put into next firmware release
XXXXXX>As an open source developer myself, how long do firmware releases normally take? I know companies like Netgear, Belkin, or Linksys don't push updates to their wireless routers once new hardware comes out
Tech Bob>we are working on a new one now, it should be out with in the next couple of months from my understanding
XXXXXX>Is there a ticketing system for Qwest/CenturyLink hardware, or does Actiontec have a system that someone can look at?
Tech Bob>We don't
Tech Bob>not an external one
XXXXXX>Alright, well.. I don't believe my problem can be fixed tonight then. Is there any way that I can find out if this open port issue is fixed without talking to a service representative such as yourself every day?
Tech Bob>I don't know of a way, sorry
XXXXXX>Well, alright then. Do you mind if I post pieces or this entire conversation online including but not limited to: Facebook, Twitter, and other social media or online forums?
Tech Bob>I would suggest our forum, I'm trying to find that address for you now
XXXXXX>Thank you, Bob
Tech Bob>an avenue that would lead to this possibly getting into the next firmware update
Tech Bob>https://forums.centurylink.com/
XXXXXX>Now, just for clarification, why exactly is port 4567 open again?
Tech Bob>I don't know exactly
Tech Bob>I can only guess
Tech Bob>Like I said in the beginning, that was a guess.
XXXXXX>Now, I haven't looked at the forum yet but is there a change log of what has changed from version to version?
XXXXXX>In regards to the firmware of routers
XXXXXX>and/or modems
Tech Bob>There should be on our http://ctlhelp.com site
Tech Bob>I want to check one more think also
Tech Bob>Thank You. One moment
Tech Bob>We can try the Zyxel if you would like
Tech Bob>wouldn't hurt to see
XXXXXX>You mean, changing hardware?
XXXXXX>yes, to another brand of modem
Tech Bob>that we talked about above
XXXXXX>Alright, is there anything I would need to do in order to verify the switch?
Tech Bob>I would be sending you a new modem
XXXXXX>I'm under the impression I would need to send back the Actiontec?
Tech Bob>yes
Tech Bob>I would swap out your modem for a new ZyXel branded modem
XXXXXX>Would someone come to my home, or would I just mail it back?
Tech Bob>it has the same uniform firmware but might not have this issue, we could try it
Tech Bob>no, it's done via UPS, it comes with a pre-paid return UPS label
Tech Bob>I think you could call them to pick it up
Tech Bob>Is that something you would want to try?
XXXXXX>That is in fact something I would love to do
Tech Bob>Thank You. One moment
Tech Bob>okay, it should be there on Friday
Tech Bob>11/02/12
XXXXXX>Alright, very good Bob
Tech Bob>Is there anything else I can do for you?
XXXXXX>Nope, that is the only reason that I came into this chat
Tech Bob>It has been a pleasure working with you today. Please bookmark our self help website at www.ctlhelp.com, it has many great resources related to your service. Thanks again for contacting CenturyLink Technical Support and have a great day.
*
*
*
If you associated for any ISPs which are backdoored, or otherwise sketchy and feel like talking about it anonymously over secure channels, please get in contact with us at https://twitter.com/Port4567
*
*
*
(02:12:06 AM) 000000: now ask him if he loves mudkipz?
(02:12:11 AM) XXXXXX: lolno
|`. ,'|
|. `. ,' .|
||`. `. ,' ,'||
||##`. `. ,' ,'##||
||####`. `. ,' ,'####||
||######`. | ___,-.___ | ,'######||
||#######| | ,='__/___\__`=. | |#######||
||#######| | / . . \ | |#######||
||#######| | ,--'\ .' _,-._ `. /`--. | |#######||
_|`-------' |-----' \: ,' ::: `. :/ `-----| `-------'|_
| `---------.|----------' /.: ''' :.\ `----------|,---------' |
{====------<|| [I( | | )I] :::: ||>------====}
|_,---------'|_________`- \ | | | | / -'_________|`---------._|
|,-------. |--.__ /: `._' '_,' :\ __,--| ,-------.|
||#######| | `--./ `. `-' ,' \,--' | |#######||
||#######| | \ `. ,' / | |#######||
||#######| | `.__`_____'__,' | |#######||
||#######| | |-._[_]_,-| | |#######||
||#######| | ::::: | |-| | :: | |#######||
||#######| | ::::: |___| |___| :: | |#######||
||#######| | ::::: | | ,-. | | :: | |#######||
||#######| | ::::: | | |n| | | :: | |#######||
||#######| | | | | | :: | |#######||
||#######| |`. | | | | ,'| |#######||
||#######| | `-._ | | | | _,-' | |#######||
||#######| | `--.__| |_____| |__,--' | |#######||
||#######| | |_|_____|_| | |#######||
||######,' | | `.######||
||####,' ,' `. `.####||
||##,' ,' `. `.##||
||,' ,' `. `.||
|' ,' `. '|
|,' `.|