Jump to: navigation, search

Category:ZyXEL VMG3925 B10B

94 bytes added, 13:05, 19 August 2019
Explain the challenges of reading /etc/passwd and /etc/shadow
*4x 10/100M/1000M ports.
*Modem supports VDSL (FTTC) and ADSL/ADSL2+.
*WiFi is 2.4GHz and 5Ghz5GHz, 802.11b/g/n, 802.11a/n/ac
*Broadcom 63168 chipset
*MTU 1500 when in bridge mode not possible yet, but we are working with ZyXEL on this. (2018-03)
===Suitable for:===
*VDSL (FTTC), G.Fast (Modem doesn't support G.Fast, so you'd need a separate G.Fast modem)
*an Ethernet (PPPoE) router plugged in to a separate VDSL or ADSL modem or a FTTP or FTTPoD ONT
*a bridging modem to a third-party PPPoE router (e.g. FireBrick, Mikrotik etc)
We estimate the throughput to be around 250Mb/s - this was tested using iperf with the router NATing the sessions using wired rather than WiFi.
==='Consumer' grade===
Supervisor password:
The B10B has an autogenerated supervisor password (hashed from the serial number). Earlier models left a md5crypt type hash in /etc/passwd, however firmware AAVF.10 introducedchanged theseto beinga SHA-512 type hash stored in /etc/shadow. YouPrior mayto havefirmware someAAVF.10 successyou readingwill thisbe fileable to read /etc/passwd by logging into the router as the "admin" user via SSH or Telnet. With firmware AAVF.10 and later you would have to log in as the supervisor user - but you'd need to know the password.... You willwould need to crack the hash (ege.g. with hashcat), the password will be 8 characters long using characters 0-9,a-f (lower case)
[[Category:AA Routers]]

Navigation menu