On 01/06/10 11:06, Wayne Stallwood wrote:
On 01/06/10 10:42, Chris Walker wrote:
What I find annoying is that Talktalk have known about this for some months - the discussions online took place last year - and yet they're still sending out hardware with badly written firmware. Who knows what else is coded in there. But perhaps that's just my cynical nature to expect such things.
Can I offer a public thank-you to Martijn who offered to come round and do the setup for me.
That sounds worse than "badly written" that sounds compromised.
If there is a Huawei DNS server in china that these routers are pushing DNS lookups to then this could have either been logging your activity or worse poisoning lookups so that your bank's domain for example points to a phishing site. I can't think of any reason Huawei would have for hard coding the DNS to their own server that isn't nefarious.
Although at the moment it seems broken as I can't get it to resolve anything, I was trying to see if it returned the "correct" results for paypal, ebay and common banks etc.
It resolved to this yesterday - http://www.5542.com/ which seems to be just a site showing off women's clothes. But that's probably because I can't read Chinese.