Next, the user interface: Quite extraordinarily, much of the NVG510's user interface isn't, and can't be, password protected though other sections of the user interface are protected by what Motorola calls an "access code". The first thing you see when you load the root page in your browser is way more detail than you'd expect, such as the wireless SSID and the network key in plain text!
Wait! It gets better: If you go to the Device page you can see the IP addresses of all network-connected gear, while the broadband page gives you lots of detail about your WAN interface and the Home Network Page shows you everything any hacker could ever want to know about your LAN configuration.
The access code is only required to restart the device, configure the WAN, LAN, firewall, and wireless services, examine the VoIP interface details, and, for no accountable reason, to examine the device's log.
The code is also required to change the access code and, oddly, while the supplied code is simply 10 numeric characters, any code you'd like to use "must contain characters from two of these categories: alpha, numeric, and special characters". Do as we say, not as we do ...
As security goes, this device has no clear strategy and has the feel of something that was left to a junior engineer to design. I'm amazed that this product could have passed the technical selection process for AT&T.
The various entries you might see in the log aren't explained anywhere I can find and, while some of them are decodable, others are not at all obvious. It also looks like the logging system is buggy: All devices that disconnect and then reconnect are almost always listed as reconnecting after however long it was plus 30 days and 16 hours ... for example, here's the log entries for a device that disconnects and reconnects after 18 seconds:
2012-03-13T07:06:36-07:00 L3 sdb: Wi-Fi: Client a4:d1:d2:71:c1:c0 left XXXX
2012-03-13T07:06:36-07:00 L3 sdb: Wi-Fi: Number of clients associated 2
2012-03-13T07:06:54-07:00 L3 sdb: Wi-Fi: a4:d1:d2:71:c1:c0 re-joined XXXX after 30 d 16 h 0 m 18 seconds
2012-03-13T07:06:54-07:00 L3 sdb: Wi-Fi: Number of clients associated 3
Perhaps I'm being picky, but I think the quality of code is always visible in the attention (or lack thereof) to detail in the stuff you see. In the case of the log above, why are days, hours, and minutes abbreviated while seconds is fully spelled out? That's just sloppy thinking.
An old and ongoing problem with the NVG510 concerns DNS resolution. The modem doesn't allow you to change the default DNS servers and either or both of AT&T's DNS servers keep failing to respond ... for example:
- Improving IT Efficiencies: Four Advantages of Multi-Tenant Data Centers Increasing demands on IT are forcing organizations to rethink their data center options. For many organizations, that means turning to the flexibility afforded...
- Accelerating Cloud Deployment and Operations with Managed Services Companies that do not have sufficient in-house expertise to either deploy or maintain an IaaS cloud should turn to Managed Service Providers .
- Rethinking IT Operations in the Cloud This paper breaks down the challenges that often prevent the cloud from delivering the fast, flexible and affordable infrastructure companies seek - and...
- Gartner Magic Quadrant for Cloud-Enabled Managed Hosting, North America Cloud-enabled managed hosting brings cloudlike consumption and provisioning attributes to the traditional managed hosting market
- NSS Labs & Cisco Present: Evaluating Leading Breach Detection Systems Today's constantly evolving advanced malware and APTs can evade point-in-time defenses to penetrate networks. Security professionals must evolve their strategy in lockstep to...
- Will the Real Endpoint Threat Detection and Response Please Stand Up? This webinar explores new technologies & process for protecting endpoints from advanced attackers as well as the innovations that are pushing the envelope... All Broadband White Papers | Webcasts