Re: [ilugd] Broadband Connection
Scanning MTNL's ip space, I noticed with a faint sense of horror that a script kiddie could DOS MTNL's service pretty thoroughly in the space of about half an hour, since most of MTNL's modems allow wan access and have a default username/password combination. Other details are then available, which will apparently allow a cracker to abuse the victim's account. Allegedly MTNL doesn't use caller ID as part of its authentication. If this is true (I find it hard to believe this), then MTNL is being inexcusably negligent. Of course, MTNL doesn't have much incentive to stop this, since they just pass the bill on to users (and if the user doesn't have an unlimited account, too bad). If this is not true, then the crackers who are using cracked accounts are likely being naive idiots. So another tip for users is: Make sure you have all WAN services disabled in Management-Access control- services to avoid this sort of abuse. regards PJ ___ ilugd mailinglist -- ilugd@lists.linux-delhi.org http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/ilugd@lists.linux-delhi.org/
Re: [ilugd] Broadband Connection
On Monday 02 July 2007 11:34, PJ wrote: Scanning MTNL's ip space, I noticed with a faint sense of horror that a script kiddie could DOS MTNL's service pretty thoroughly in the space of about half an hour, since most of MTNL's modems allow wan access and have a default username/password combination. Other details are then available, which will apparently allow a cracker to abuse the victim's account. Ah, but the question is, can you connect to my MTNL account from a different MTNL number? I haven't tried it, but if they have a bit of a clue they should only allow logging into, e.g. the 23456789 PPP from 23456789 and not from 98765432. Has anyone tried this? Allegedly MTNL doesn't use caller ID as part of its authentication. Hmm, that seems to indicate that you CAN connect to any account from any phone. Scary. If this is true (I find it hard to believe this), then MTNL is being inexcusably negligent. Of course, MTNL doesn't have much incentive to stop this, since they just pass the bill on to users (and if the user doesn't have an unlimited account, too bad). If this is not true, then the crackers who are using cracked accounts are likely being naive idiots. So another tip for users is: Make sure you have all WAN services disabled in Management-Access control- services to avoid this sort of abuse. Or just use the modem in bridge mode, which is what I've been advocating all along. In bridge mode the modem doesn't have an external IP at all. Regards, -- Raju -- Raj Mathur [EMAIL PROTECTED] http://kandalaya.org/ GPG: 78D4 FC67 367F 40E2 0DD5 0FEF C968 D0EF CC68 D17F It is the mind that moves ___ ilugd mailinglist -- ilugd@lists.linux-delhi.org http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/ilugd@lists.linux-delhi.org/
Re: [ilugd] Broadband Connection
Ah, but the question is, can you connect to my MTNL account from a different MTNL number? I haven't tried it, but if they have a bit of a clue they should only allow logging into, e.g. the 23456789 PPP from 23456789 and not from 98765432. Has anyone tried this? I know that BSNL in Kolkata does not tie the account to the telephone number by default. They do it only if specifically requested. Somebody I know recently ran into a huge bill and found that his account had been used by somebody else. Vikas ___ ilugd mailinglist -- ilugd@lists.linux-delhi.org http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/ilugd@lists.linux-delhi.org/
[ilugd] [commercial] American company seeking Asterisk consultants
Hello, We're looking for Asterisk consultants to assist us with some new deployments. Anyone that is interested is welcome to reply to this email with their qualificaitons and pay requirements. Additionally, we are willing to train the right candidate on Asterisk, but he must have a strong CentOS background. Please direct all inquiries to [EMAIL PROTECTED] Have a nice day. Justin ___ ilugd mailinglist -- ilugd@lists.linux-delhi.org http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/ilugd@lists.linux-delhi.org/
Re: [ilugd] Broadband Connection
On 02-Jul-07, at 7:51 PM, Raj Mathur wrote: space of about half an hour, since most of MTNL's modems allow wan access and have a default username/password combination. Other details are then available, which will apparently allow a cracker to abuse the victim's account. Ah, but the question is, can you connect to my MTNL account from a different MTNL number? i dont know about mtnl, but bsnl broadband, if you have a broadband connection, you can connect to any account for which you have the username and password -- regards Kenneth Gonsalves Associate, NRC-FOSS [EMAIL PROTECTED] http://nrcfosshelpline.in/web/ ___ ilugd mailinglist -- ilugd@lists.linux-delhi.org http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/ilugd@lists.linux-delhi.org/
Re: [ilugd] 5,000 ubuntu desktops at delhi university
On Sun, 1 Jul 2007 10:27:51 +0530, Anand Shankar [EMAIL PROTECTED] said: I believe FOSS gained significant acceptance worldwide due to patronage and a strategic corporate policy of such majors as IBM, Google, Yahoo, HP, Intel etc. For things to happen in India, we need more than one such major Corporate and/or Academic body adopting FOSS, and in a way encouraging / cajoling others to ponder for adoption. As an outsider, I find this curious that this is so very different from the genesis of free software; where free software started, grew, and flourished in the developer/IT/CS community before it was grudgingly acknowledged by major companies. Interestingly, the focus in this forum seems to be mostly on business acceptance, not on community/educational institution deployment; which is different from the places where free software was born. manoj -- If I were to awaken after having slept for a thousand years, my first question would be: Has the Riemann hypothesis been proven? - David Gilbert Manoj Srivastava [EMAIL PROTECTED] http://www.golden-gryphon.com/ 1024D/BF24424C print 4966 F272 D093 B493 410B 924B 21BA DABB BF24 424C ___ ilugd mailinglist -- ilugd@lists.linux-delhi.org http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/ilugd@lists.linux-delhi.org/
Re: [ilugd] [commercial] American company seeking Asterisk consultants
On Mon, 2007-07-02 at 10:43 -0400, Justin Moore wrote: [...] Since you found it necessary to mention it, is there something special about your being an American company? Should we all fall down in awe? Regards, Gora ___ ilugd mailinglist -- ilugd@lists.linux-delhi.org http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/ilugd@lists.linux-delhi.org/
Re: [ilugd] [commercial] American company seeking Asterisk consultants
On Mon, 2007-07-02 at 23:46 +0530, Gora Mohanty wrote: Since you found it necessary to mention it, is there something special about your being an American company? Should we all fall down in awe? Maybe because they are proclaiming beforehand that if your IQ is more than 80, that is, definitely more than Forrest Gump, they will never employ you: it is the AAS, Average American Standard? ___ ilugd mailinglist -- ilugd@lists.linux-delhi.org http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/ilugd@lists.linux-delhi.org/
Re: [ilugd] [commercial] American company seeking Asterisk consultants
?? I've had a lot of great success recruiting from this list before, so I won't let your comments affect my feelings toward the talent on this list. It DOES matter for your tax purposes that you are working for an American company as a contractor rather than being taken on as an employee of an Indian company. We value our employees and contractors abilities and intelligence and always strive to give them enough information to make an informed decision. To all of you who have responded with Resume's and other inquiries, we would like to thank you for your submissions, and we will review your emails and reply shortly. Have a great day. Justin On 7/2/07, das [EMAIL PROTECTED] wrote: On Mon, 2007-07-02 at 23:46 +0530, Gora Mohanty wrote: Since you found it necessary to mention it, is there something special about your being an American company? Should we all fall down in awe? Maybe because they are proclaiming beforehand that if your IQ is more than 80, that is, definitely more than Forrest Gump, they will never employ you: it is the AAS, Average American Standard? ___ ilugd mailinglist -- ilugd@lists.linux-delhi.org http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/ilugd@lists.linux-delhi.org/ ___ ilugd mailinglist -- ilugd@lists.linux-delhi.org http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/ilugd@lists.linux-delhi.org/
Re: [ilugd] [commercial] American company seeking Asterisk consultants
On 02-Jul-07, at 11:46 PM, Gora Mohanty wrote: Since you found it necessary to mention it, is there something special about your being an American company? Should we all fall down in awe? given that most free software comes from america, that most standards are set by america and that India produces negligible amount of free software, why not? Yes, we *did* invent the zero - and make good use of it in cricket -- regards Kenneth Gonsalves Associate, NRC-FOSS [EMAIL PROTECTED] http://nrcfosshelpline.in/web/ ___ ilugd mailinglist -- ilugd@lists.linux-delhi.org http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/ilugd@lists.linux-delhi.org/