Dear Internet, It has come to our attention that Verizon, Qwest/Centurytel, and other companies have numerous ports open for the modems which CAN NOT be disabled. Now, before you question if we're just all idiots that don't know what forwarded ports are, or how to disable remote admin - Simply look up "Qwest Port 4567" "Centurytel Port 4567" and realize how much of a wide spread issue this open port problem truly is. Now, why is it that these companies can't get this right? Could it be a backdoor? Could it be poor programming? Could it be that these companies are working with governments? The following is a conversation with a Qwest representative. Take what you will from it. * * * Tech Bob>How may I help you today? XXXXXX>Give me one moment, and I'll get the specific model number for my router, so I can explain fully XXXXXX>Ok XXXXXX>I have an Actiontec Q1000 XXXXXX>And I've checked literally everything. Forwarded ports, I've set my firewall to high. XXXXXX>I have no forwarded ports, and I've clicked and checked literally every setting XXXXXX>Now, the issue is that port 4567 is open, regardless of what I do XXXXXX>Now, why is this? XXXXXX>Also, this port is internet-facing. When someone uses my IP address, and designates that port ( such as, 1.1.1.1:4567 ) it asks for a username and password XXXXXX>This is not only a potential security issue, but the fact I can't fix this is bothering me. Can you help? Tech Bob>Let me research that a little and I'll get right back to you XXXXXX>I've looked it up, and it seems to effect the M1000 model too, and I've also seen that Verizon has the same issue Tech Bob>I'm guessing that is all of our modems for allowing our internal diagnostic systems to access your modem Tech Bob>again, that is a guess XXXXXX>Is there any possible way for it to be fixed? I've been with a lot of ISPs including Time Warner, Comcast, CenturyTel, and who knows how many others and I've never dealt with this Tech Bob>I don't think it can be blocked Tech Bob>Let me see if I can look into it a little more XXXXXX>If it can't be blocked, can I exchange routers to get one that doesn't have this "feature"? Tech Bob>all of our modems would have that I would think Tech Bob>you can go with a non-centurylink modem XXXXXX>Would that be provided to me, free of charge? Tech Bob>no XXXXXX>So I wouldn't be able to get a Zyxel or other brand of router, specifically offered by Qwest/CenturyLink as an equal exchange? Tech Bob>You might need to talk to one our engineers about this. I don't have anyone here this late at night Tech Bob>The Zyxcel has the same firmware in it XXXXXX>Is there any way I can be forwarded to Actiontec's Tier 2 support? Tech Bob>You can call them directly, yes Tech Bob>let me see if I can find that number Tech Bob>800 720 9844 XXXXXX>I don't have the phone number, and I talked with a chat representative like yourself earlier. They told me that Actiontec would not respond to me unless the chat was bridged over to them Tech Bob>You can call in the morning to see if we can transfer you over Tech Bob>oh, you might be able to call now Tech Bob>I'm showing they are open 24/7 Tech Bob>our number is 888-777-9569 XXXXXX>Now, before call them, what exactly would an engineer be able to do that you could not? Seeing as all of the modems have the same firmware, and what not. Tech Bob>We have 1 person that works directly with our equipment vendors XXXXXX>I understand that, but what exactly would they be able to do? Custom firmware, new hardware? Tech Bob>bug report, get fixes put into next firmware release XXXXXX>As an open source developer myself, how long do firmware releases normally take? I know companies like Netgear, Belkin, or Linksys don't push updates to their wireless routers once new hardware comes out Tech Bob>we are working on a new one now, it should be out with in the next couple of months from my understanding XXXXXX>Is there a ticketing system for Qwest/CenturyLink hardware, or does Actiontec have a system that someone can look at? Tech Bob>We don't Tech Bob>not an external one XXXXXX>Alright, well.. I don't believe my problem can be fixed tonight then. Is there any way that I can find out if this open port issue is fixed without talking to a service representative such as yourself every day? Tech Bob>I don't know of a way, sorry XXXXXX>Well, alright then. Do you mind if I post pieces or this entire conversation online including but not limited to: Facebook, Twitter, and other social media or online forums? Tech Bob>I would suggest our forum, I'm trying to find that address for you now XXXXXX>Thank you, Bob Tech Bob>an avenue that would lead to this possibly getting into the next firmware update Tech Bob>https://forums.centurylink.com/ XXXXXX>Now, just for clarification, why exactly is port 4567 open again? Tech Bob>I don't know exactly Tech Bob>I can only guess Tech Bob>Like I said in the beginning, that was a guess. XXXXXX>Now, I haven't looked at the forum yet but is there a change log of what has changed from version to version? XXXXXX>In regards to the firmware of routers XXXXXX>and/or modems Tech Bob>There should be on our http://ctlhelp.com site Tech Bob>I want to check one more think also Tech Bob>Thank You. One moment Tech Bob>We can try the Zyxel if you would like Tech Bob>wouldn't hurt to see XXXXXX>You mean, changing hardware? XXXXXX>yes, to another brand of modem Tech Bob>that we talked about above XXXXXX>Alright, is there anything I would need to do in order to verify the switch? Tech Bob>I would be sending you a new modem XXXXXX>I'm under the impression I would need to send back the Actiontec? Tech Bob>yes Tech Bob>I would swap out your modem for a new ZyXel branded modem XXXXXX>Would someone come to my home, or would I just mail it back? Tech Bob>it has the same uniform firmware but might not have this issue, we could try it Tech Bob>no, it's done via UPS, it comes with a pre-paid return UPS label Tech Bob>I think you could call them to pick it up Tech Bob>Is that something you would want to try? XXXXXX>That is in fact something I would love to do Tech Bob>Thank You. One moment Tech Bob>okay, it should be there on Friday Tech Bob>11/02/12 XXXXXX>Alright, very good Bob Tech Bob>Is there anything else I can do for you? XXXXXX>Nope, that is the only reason that I came into this chat Tech Bob>It has been a pleasure working with you today. Please bookmark our self help website at www.ctlhelp.com, it has many great resources related to your service. Thanks again for contacting CenturyLink Technical Support and have a great day. * * * If you associated for any ISPs which are backdoored, or otherwise sketchy and feel like talking about it anonymously over secure channels, please get in contact with us at https://twitter.com/Port4567 * * * (02:12:06 AM) 000000: now ask him if he loves mudkipz? (02:12:11 AM) XXXXXX: lolno |`. ,'| |. `. ,' .| ||`. `. ,' ,'|| ||##`. `. ,' ,'##|| ||####`. `. ,' ,'####|| ||######`. | ___,-.___ | ,'######|| ||#######| | ,='__/___\__`=. | |#######|| ||#######| | / . . \ | |#######|| ||#######| | ,--'\ .' _,-._ `. /`--. | |#######|| _|`-------' |-----' \: ,' ::: `. :/ `-----| `-------'|_ | `---------.|----------' /.: ''' :.\ `----------|,---------' | {====------<|| [I( | | )I] :::: ||>------====} |_,---------'|_________`- \ | | | | / -'_________|`---------._| |,-------. |--.__ /: `._' '_,' :\ __,--| ,-------.| ||#######| | `--./ `. `-' ,' \,--' | |#######|| ||#######| | \ `. ,' / | |#######|| ||#######| | `.__`_____'__,' | |#######|| ||#######| | |-._[_]_,-| | |#######|| ||#######| | ::::: | |-| | :: | |#######|| ||#######| | ::::: |___| |___| :: | |#######|| ||#######| | ::::: | | ,-. | | :: | |#######|| ||#######| | ::::: | | |n| | | :: | |#######|| ||#######| | | | | | :: | |#######|| ||#######| |`. | | | | ,'| |#######|| ||#######| | `-._ | | | | _,-' | |#######|| ||#######| | `--.__| |_____| |__,--' | |#######|| ||#######| | |_|_____|_| | |#######|| ||######,' | | `.######|| ||####,' ,' `. `.####|| ||##,' ,' `. `.##|| ||,' ,' `. `.|| |' ,' `. '| |,' `.|