Next, the user interface: Quite extraordinarily, much of the NVG510's user interface isn't, and can't be, password protected though other sections of the user interface are protected by what Motorola calls an "access code". The first thing you see when you load the root page in your browser is way more detail than you'd expect, such as the wireless SSID and the network key in plain text!
Wait! It gets better: If you go to the Device page you can see the IP addresses of all network-connected gear, while the broadband page gives you lots of detail about your WAN interface and the Home Network Page shows you everything any hacker could ever want to know about your LAN configuration.
The access code is only required to restart the device, configure the WAN, LAN, firewall, and wireless services, examine the VoIP interface details, and, for no accountable reason, to examine the device's log.
The code is also required to change the access code and, oddly, while the supplied code is simply 10 numeric characters, any code you'd like to use "must contain characters from two of these categories: alpha, numeric, and special characters". Do as we say, not as we do ...
As security goes, this device has no clear strategy and has the feel of something that was left to a junior engineer to design. I'm amazed that this product could have passed the technical selection process for AT&T.
The various entries you might see in the log aren't explained anywhere I can find and, while some of them are decodable, others are not at all obvious. It also looks like the logging system is buggy: All devices that disconnect and then reconnect are almost always listed as reconnecting after however long it was plus 30 days and 16 hours ... for example, here's the log entries for a device that disconnects and reconnects after 18 seconds:
2012-03-13T07:06:36-07:00 L3 sdb: Wi-Fi: Client a4:d1:d2:71:c1:c0 left XXXX
2012-03-13T07:06:36-07:00 L3 sdb: Wi-Fi: Number of clients associated 2
2012-03-13T07:06:54-07:00 L3 sdb: Wi-Fi: a4:d1:d2:71:c1:c0 re-joined XXXX after 30 d 16 h 0 m 18 seconds
2012-03-13T07:06:54-07:00 L3 sdb: Wi-Fi: Number of clients associated 3
Perhaps I'm being picky, but I think the quality of code is always visible in the attention (or lack thereof) to detail in the stuff you see. In the case of the log above, why are days, hours, and minutes abbreviated while seconds is fully spelled out? That's just sloppy thinking.
An old and ongoing problem with the NVG510 concerns DNS resolution. The modem doesn't allow you to change the default DNS servers and either or both of AT&T's DNS servers keep failing to respond ... for example:
- Case Study Adopting ITSM Tech to Support ITIL Initiatives CIO Bart Murphy Improves Service Delivery while Lowering Costs by consolidating services across 6 business units.
- Upstream Print Solutions improve customer service Fuji Xerox Australia subsidiary Upstream Print Solutions is rolling out SaaS service delivery to facilities, field engineering, health and safety, client service and...
The Wall Street Journal: CIO Journal
Article describes how cloud ITSM:
* Reduces drain on IT, increased response time
* Eliminates roadblocks to completion
* Enables IT to deliver...
- Comprehensive Advanced Threat Defense The hot topic in the information security industry these days is "Advanced Threat Defense" (ATD). This paper describes a comprehensive, network-based approach to...
- On-demand webinar - 7 Keys to Service Catalog Implementation Success Watch this webinar to learn 7 crucial keys to make your service catalog a success!
- Transform Your IT Service Management Watch this webinar, to learn how EasyVista can increase IT productivity & efficiency and deliver streamlined & integrated IT Service & Asset Mgmt. All Broadband White Papers | Webcasts