Ubuntu
firefox-3.0 package

stolen password

Asked by sally

Binary package hint: firefox-3.0

Someone stole the password for opening the local website connected to my router. I tried to manually reset
the router to the default but was still unable to enter the website. How do I get into the router website?

ProblemType: Bug
Architecture: i386
DistroRelease: Ubuntu 8.10
NonfreeKernelModules: nvidia
Package: firefox-3.0 3.0.8+nobinonly-0ubuntu0.8.10.2
ProcEnviron:
 PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games
 LANG=en_US.UTF-8
 SHELL=/bin/bash
SourcePackage: firefox-3.0
Uname: Linux 2.6.27-11-generic i686

Question information

Language:
English Edit question
Status:
Solved
For:
Ubuntu firefox-3.0 Edit question
Assignee:
No assignee Edit question
Solved by:
Tom
Solved:
Last query:
Last reply:

This question was originally filed as bug #352871.

Revision history for this message
sally (julesflwr) said : 		#1
Revision history for this message
Vojtěch Trefný (vojtech.trefny) said : 		#2

And where tehere is an Ubuntu bug? Converting to question -- hope somebody will help you.

Revision history for this message
Mohamed Zaian (mzaian) said : 		#3

what you mean by a local website? this website is hosted in your machine?

Revision history for this message
Bhavani Shankar (bhavi) said : 		#4

A major lapse of physec.. Is the website locally hosted?

Revision history for this message
Tom (tom6) said : 		#5

Is the 'site' the router settings and is really a page held on your router?

Revision history for this message
Tom (tom6) said : 		#6

I think a way to do this is to switch the router off, often the off switch is a rocker-switch at the back of the router, usually on the right hand side. Keeping it off for a while might also encourage whoever is trying to use it to go elsewhere. Switching the router back on should restore defaults and allow you access. Change the password quickly and keep a note of it somewhere handy, such as taped to the bottom of the router.

Please wait until someone else makes a comment about this suggestion because i'm not entirely sure about it.

Good luck and regards from
Tom :)

Revision history for this message
Best Tom (tom6) said : 		#7

Ok, my network admin said to find the "restore to factory settings" little button on the router device itself. Apparently there isn't a 'standard way' so you'll have to hunt around the router box. Once reset unplug the router from the external internet and use your machine to find the routers web-page (it is stored on the router, i was right :) ) change the password to something safe and note it down somewhere safe. Also make sure the "Internet facing web access" is not enabled but if you must use it then at least make sure it's not open on Port 80. Then plug the external internet back into the router and all should be good :)

Hope this makes more sense to you than it did to me
Regards and good luck from
Tom :)

Revision history for this message
sally (julesflwr) said : 		#8

I was able to fix the problem. Thanks much.

Revision history for this message
Tom (tom6) said : 		#9

Brilliant, nicely done :))))
It looks like my network administrator got the right answer, superb :)
Thanks and regards from
Tom :))

Revision history for this message
Roman Gritsulyak (rtg-mail) said : 		#10

https://addons.mozilla.org/ru/firefox/addon/2848

The presence of this plugin, practically shows that it is possible to stole passwords under Ubuntu linux.

Abuser can develop plugin and persuade user to use the plugin, that will stole passwords, and send information to Abuser's host.

Revision history for this message
Tom (tom6) said : 		#11

Well the plugins description starts by saying

"This extension allows you to export your saved passwords and disabled login hosts using XML or CSV files that can be imported in another browser or computer."

Which would be a bit like saying that if you kept giving your bank card to random strangers and told them your pin-code that there's a security risk of them being able to access your money! lol

I've not found many people asking me to do any of those 3 things tho!
Good luck and regards from
Tom :)

Revision history for this message
Tom (tom6) said : 		#12

Hi :)

Have you been able to test the new Ubuntu 10.04 before it gets officially released?
http://www.ubuntulinux.org/testing/lucid/beta1
Trying it as a LiveCd or as an extra dual/multi-boot would be ideal. Developers and everyone are keen to try to iron out any problems before 10.04 gets officially released so you might find faster & more effective answers to your bug reports which would make 10.04 work better on your system for you

Thanks and regards from
Tom :)