MAIN MENU
 
Main Page
 
TM
 
Router Security (DIR-615)
 
Router Config (DIR-615)
 
Router Password Dump (DIR-615)
 
Using Custom Routers (DIR-615)
 
DD-WRT Guide (DIR-615)
 
MIKROTIK
 
MikroTik RB250GS
 
ASUS
 
ASUS RT-N13U
 
OTHERS
 
FTTH Wiring
 
IPTV Information
 
Downloads
 
Router Compatibility List
 
RESOURCES
 
Broadband U2U @ LYN
 
KlSeets Unifi Site
 
LYN Unifi DC++ Hub
 
 
 
 
 

Router Security (TMnet DIR-615 G1)

If you're not aware about this, there are a few additional steps that must be taken in order to fully secure your TMnet provided DIR-615 router. The current router firmware at the moment is version 7.05 and unfortunately, if you've only changed the administrator account password and set up a protected wi-fi network.. you are still running on an insecure network. It was discovered on the 29th of May that TMnet provided routers (Dlink DIR-615 G1's) contained a secondary administrator account with a much higher privilege level.

Read : WARNING TO ALL UNIFI USERS

UPDATE 27th January 2011 : With the release of the 7.09 firmware, many security holes (including the remote exploitation of the config file) have finally been rectified. Nevertheless, ensure remote management is disabled unless it is absolutely necessary.

UPDATE 10th October 2010 : Added the new password for the 'operator' account for users on firmware 7.05b :)

UPDATE 11th June 2010 : I've been receiving messages from Unifi users telling me that these passwords do not work on newer Unifi installs. If your router is using Firmware 7.05 (listed at the top right corner of the web user interface @ 192.168.0.1), these passwords listed below are the default combinations for that firmware. If these combinations are not working, it means that TM has changed their install policy to modify the passwords for the 'admin' and 'operator' account. Please contact TM and make sure they give you access to these accounts.. especially the 'operator' account so you can configure the security yourself using this guide. It is your right as a user to have access to both of these accounts so that you have control over your own router and network security. If they refuse to disclose the passwords, pressing and holding the RESET button with a small pin/pen tip for 10-20 seconds while the router is powered on (until the power light changes from green to orange) will reset your router to the stock username/password combinations listed below. This will also reset your wireless and internet connection settings, meaning you have to re-insert your Unifi username and password into the router and save the settings yourself. If you are refused access to the 'operator' account and have to reset the router to regain access to it, please get a tech savvy friend to setup your router for you properly. All the required material this person would need is on this website and the router configuration is the same as Streamyx (if you're on Unifi VIP home packages). If there's anything else, please contact me on my forum.lowyat.net account -- rizvanrp .

UPDATE 28th July 2010 : Unifi/TM is sending out text messages to customers telling them that it is 'encouraged' to enable the remote management option for troubleshooting issues. This should only be enabled when you call in to perform troubleshooting and they request access to your router and immediately disabled after that. The router firmware itself is bugged and allows an attacker to download the configuration file off your router without using the correct username/password combination so it is recommended that you DO NOT enable this option.

The default username/password combinations for TMnet DIR-615 routers between firmware versions 7.01 to 7.05b are :

Username : admin
Password : <blank>

Username : admin
Password : telekom

However, there is also a secondary account which must have its password changed in order to fully secure your network :

Username : operator
Password : telekom

Username : operator
Password : h566UniFi

Username : operator
Password : <your Unifi username in reverse order>

Firmware 7.12 and above :

Username : Management
Password : TestingR2

UPDATE 10th October 2010 : If none of these passwords work for you, you can also grab the password yourself by following the Router Password Dumping guide for the TM DIR-615 .

The secondary 'operator' account should be able to change both passwords on the system. It is also recommended that you 'untick' every available 'service' below the password management fields.

Please make the necessary changes to ensure that your home/company network is completely secure from unauthorized WAN access.

 

TR-069 Protocol

Please be sure to Disable the TR-069 protocol as it allows for remote auto-configuration. It's not required to be enabled at the moment for your Unifi to work properly.

 

Firewall Settings

It is also recommended that you enable the inbuilt SPI firewall on the DIR-615 for added protection. Be warned however, that this SPI firewall has been known to cause some problems under certain conditions (such as using BitTorrent with multiple connections, blocking port forwarding, etc.). If you experience any issues after enabling this firewall, feel free to disable it. You should have sufficient protection from Network Address Translation alone if you have followed the steps listed above.

 

Remote Management

Just a friendly reminder, keep this disabled unless it's required for troubleshooting.