by dstream on ul
Virgins attack cloners head on. New modem countermeasure the encypted configs
Across the country slowly area by area is the all new encrypted config data.
this started with a small certificate update in the modem ready for this. Not only that the mac broadcast on the older modem is affected. Older 200 down to 4100 are affected.
250 and 255 as you are aware do not broadcast themselves onto the network hence the lack of them in dhcp sniff etc. So virgin have decided to attack the cloners head on and use encrypted config data.
Simply put the config is sent to the modem in an encrypted packet and the modem unencrypts it and stores its information. Currently your forcing the modem up to 20 meg or similar by requesting that packet for your modem to be sent to you.
Well the server now sez sorry p off dont recognise that packet dont have that stored to me.
for instance you send in plain english.
250 cfg high please.
it expects the packet sent to be encrpted so it aplies its algo and codes the packet to this
zxexcreddfdjhwedfdfd
goes hmm dont have that erm bye logs modem off network 1k up 1k down. Its initial setup config.
but what you should of sent is i want dshgdsjfsjg9oruo config send it.
it decrypts packet ahh you want 120 mid config. and sends it back.
now heres where the fun is the data is encrypted on a modem by modem basis no 1 modem or 1 modem ack packet is ever the same. I.E. THEY aint scannable. A cloned modem dont work as it carnt force a config.
Some people say erm well piece of p atm dead easy let the modem accept the normal config dont force one. Okay lets look at this for a mo.
120 gimme a config. okay vm check do you have new certificate installed no okay ill let you have it this time.
120 gimme a config. hmm still no certif update k this time.
120 gimme config look you should of taken an update now ur a clone
1k up 1k down. Modem banned of network.
Think this wont happen, ladies and gentlemen its happing right now ntl areas are updating as we speak. Happened in my area last week and modem banning is there now.
enjoy the time you have until uk full rollout.
** not sure if we can get round this using self certs or by accepting the download. adam **
Across the country slowly area by area is the all new encrypted config data.
this started with a small certificate update in the modem ready for this. Not only that the mac broadcast on the older modem is affected. Older 200 down to 4100 are affected.
250 and 255 as you are aware do not broadcast themselves onto the network hence the lack of them in dhcp sniff etc. So virgin have decided to attack the cloners head on and use encrypted config data.
Simply put the config is sent to the modem in an encrypted packet and the modem unencrypts it and stores its information. Currently your forcing the modem up to 20 meg or similar by requesting that packet for your modem to be sent to you.
Well the server now sez sorry p off dont recognise that packet dont have that stored to me.
for instance you send in plain english.
250 cfg high please.
it expects the packet sent to be encrpted so it aplies its algo and codes the packet to this
zxexcreddfdjhwedfdfd
goes hmm dont have that erm bye logs modem off network 1k up 1k down. Its initial setup config.
but what you should of sent is i want dshgdsjfsjg9oruo config send it.
it decrypts packet ahh you want 120 mid config. and sends it back.
now heres where the fun is the data is encrypted on a modem by modem basis no 1 modem or 1 modem ack packet is ever the same. I.E. THEY aint scannable. A cloned modem dont work as it carnt force a config.
Some people say erm well piece of p atm dead easy let the modem accept the normal config dont force one. Okay lets look at this for a mo.
120 gimme a config. okay vm check do you have new certificate installed no okay ill let you have it this time.
120 gimme a config. hmm still no certif update k this time.
120 gimme config look you should of taken an update now ur a clone
1k up 1k down. Modem banned of network.
Think this wont happen, ladies and gentlemen its happing right now ntl areas are updating as we speak. Happened in my area last week and modem banning is there now.
enjoy the time you have until uk full rollout.
** not sure if we can get round this using self certs or by accepting the download. adam **