[ale] OT: Comcast Wi-Fi
Scott Castaline
skotchman at gmail.com
Wed Jan 21 16:17:35 EST 2015
On another thread I had mentioned that you can yourself put the
multi-function device (Modem/AP/Router) within the Modem's admin gui.
You just login to the device and on on of the pages there is a soft
button that you can click on to place the router into bridgemode. This
will disable the wireless ap going online to the website will confirm
this that the public wifi is disabled. and the wireless activity light
on the modem goes dark as well.
when I had originally done this I was monitoring on my smartphone for
XfinityWiFi and at first it was strong then once I clicked on the soft
switch and the activity light went out XfinityWiFi momentarily dropped
to reappear as very weak intermittently dropping out which had convinced
me at that time that it did exactly what I thought it would do and that
someone else in the neighborhood also has ComCraptistic.
On 01/21/2015 10:56 AM, Justin Goldberg wrote:
> I knew there was a mitm vulnerability with comcast's mimo wifi! To be
> fair, it's really a PEBKAC issue.
>
> https://blog.logrhythm.com/security/xfinity-pineapple/
>
>
> Here's how to turn this feature off (I had to click it a few times in
> the comcast customer portal):
>
> http://www.twincities.com/ci_25037995/worried-you-can-always-turn-off-public-wi
>
>
> Comcastic!
>
>
> On Sat, May 24, 2014 at 7:50 PM, Justin Goldberg <justgold79 at gmail.com
> <mailto:justgold79 at gmail.com>> wrote:
>
> I pay for the lowest tier speed, 3mb down, and I pay for no
> premium service, tv or phone, and I'm able to sign on to the
> xfinitywifi ssid captive portal using the comcast billing login
> username (without the @comcast.net <http://comcast.net>). The
> speed is faster through the neighbors than my own, though, to be
> fair, I could very well be signed on to my own technicolor tc35xx
> modem that I am renting from them.
>
> I originally signed on at a cafe that had the ssid and then it
> worked at home without signin in, in a different browser, so it
> appears that they are remembering your login based on the wifi
> adapters mac address. Since it's an open ap, in theory it wouldn't
> be too hard for a non comcast user to sign on, just run a packet
> capture and then change your mac address to someone elses.
>
> Since the whole neighborhood shares the same headend bandwidth, I
> don't dislike this idea, especially in the age of wifi 802.11n
> MIMO. That's how they are able to market themselves as the
> "fastest wifi around".
>
> Justin
>
>
>
> On Mon, Apr 28, 2014 at 8:12 AM, JD <jdp at algoloma.com
> <mailto:jdp at algoloma.com>> wrote:
>
> Comcast announced this wifi network about a year ago. Their
> intent is to allow
> any comcast customer to have access to hot-spots, tracked by
> their normal login.
> Sorta like how many OTA networks now require a paid TV
> subscription to access
> their internet shows. It is an added service for all their
> paying customers and
> can be convenient. AT&T has had something like this for about
> a decade, they
> just did it at B&N stores, Starbucks, McDs, ...
>
> I haven't had residential Comcast service for years, but they
> were good about
> putting those things into their "Terms of Service" agreements.
> You've already
> agreed to it by continuing to use the service, I'm certain. I
> would be surprised
> if a call into the help desk couldn't get your device removed
> from this plan. A
> few years ago, comcast started intercepting DNS queries. 1
> call fixed that for
> me ... er ... after breaking things for a few days forced me
> to call in.
>
> Pretty much any cable modem you place on their network will be
> controlled by
> them. If you don't like that, get over it. The same applies to
> DSL too. The
> best we can do it treat their equipment like someone elses'
> equipment and put a
> strong pfSense router just inside it. Don't trust any
> commercial routers and
> definitely DO NOT TRUST the firmware shipped with any router,
> doesn't matter who
> made it. The most trusted vendors seem to be just as likely to
> have back doors.
>
> On 04/28/2014 12:21 AM, Steve Nicholas wrote:
> > I have Comcast and have a wireless network. My same status
> has not changed.
> > Will let you know if things change. Have you pinged Comcast
> about it? I would,
> > just to make sure THEY did it not not someone else. If they
> did, please post
> > their response.. If not, you may have some security
> issues. If the latter is
> > true, don't panic initially. Let the list do some forensics
> to see what might
> > be going on. Have dealt with hackers, and if this is the
> case, patience is a
> > virtue. Let us know. But don't do info sensitive
> transactions on said box.
> >
> >
> >
> > On Thu, Apr 24, 2014 at 2:40 PM, Boris Borisov
> <bugyatl at gmail.com <mailto:bugyatl at gmail.com>
> > <mailto:bugyatl at gmail.com <mailto:bugyatl at gmail.com>>> wrote:
> >
> > Yesterday I've noticed Comcast silently enabled
> additional wireless network
> > on my cable router named "xfinitywifi". I didn't get the
> reason behind the
> > idea but is open with web based login. Someone else with
> same issue.
> >
> _______________________________________________
> Ale mailing list
> Ale at ale.org <mailto:Ale at ale.org>
> http://mail.ale.org/mailman/listinfo/ale
> See JOBS, ANNOUNCE and SCHOOLS lists at
> http://mail.ale.org/mailman/listinfo
>
>
>
>
>
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://mail.ale.org/mailman/listinfo/ale
> See JOBS, ANNOUNCE and SCHOOLS lists at
> http://mail.ale.org/mailman/listinfo
--
Sent from my Fedora Linux PC to you, NSA, the CIA, FBI, HSA and God only knows who else?!
More information about the Ale
mailing list