This is the first thing I do when I get a new router. I change that master password ASAP. I also make it non-pingable.
Thor Johnson
February 21, 2007 10:36 AM
Suggestion: Keep the password in meatspace.
I keep it on a post-it-note on the bottom of the router.... I don't have to remember it, and there is just about zero chance it can be discovered online (use the roomba to turn the router on its back and point it at the webcam?).
Scott
February 23, 2007 6:50 PM
Also, use MAC address filters!!!
Tony
February 24, 2007 5:10 AM
When I set up a router for friends I always change the password and enable WPA. I also tell them to take full advantage of the 63 characters that they can use for the WPA key, write it down in a safe place, show them how to reset the master password if they forget the WPA key, and, by all means, don't tell me the password!!!
Brian
February 25, 2007 1:43 PM
Some routers have an option not to allow remote administration. This prevents anyone outside the LAN from accessing the configuration page. If your router has this option, I highly recommend turning that on as well. Most home users should have no need to configure their router from anywhere other than home.
Anand Gounder
February 28, 2007 8:46 AM
Very interesting and scary. I have a linksys router. I am going to change my default username and password. Thanks.
And while on the subject of router configuration, I agree to use very long WPA passwords and to turn off remote admin. Let me also suggest turning off UPnP.
Chuck
March 5, 2007 8:55 AM
Everyone should be using full 63 bits for the the WPA PSA key. Also change the SSID and turn off broadcasting, and use MAC address filtering limited to the machines you use. For long PSA keys and SSID's simply type out the info into Notepad and save the file somewhere on your PC where you can find it. Use ALL and/or ANY of the first 128 ASCII characters. Don't use words or names. You can easily load/reload the key and/or SSID to router, wireless device, etc. by simple copy and paste. Full security and nothing to remember.
Jerry
March 6, 2007 8:36 AM
How can you change the password? The prompt screen for my Linksys WRT54G offers no apparent way to change from "ADMIN". Please tell me how to do this-- I must be overlooking something obvious.
Leo Notenboom
March 6, 2007 8:47 AM
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
It varies some, but after I've logged into my LinkSys, across the top
there's a tab labeled "Password" right inbetween "Setup" and "Status".
Leo
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (MingW32)
Comments
Read the article that everyone's commenting on.
February 18, 2007 5:58 PM
This is the first thing I do when I get a new router. I change that master password ASAP. I also make it non-pingable.
February 21, 2007 10:36 AM
Suggestion: Keep the password in meatspace.
I keep it on a post-it-note on the bottom of the router.... I don't have to remember it, and there is just about zero chance it can be discovered online (use the roomba to turn the router on its back and point it at the webcam?).
February 23, 2007 6:50 PM
Also, use MAC address filters!!!
February 24, 2007 5:10 AM
When I set up a router for friends I always change the password and enable WPA. I also tell them to take full advantage of the 63 characters that they can use for the WPA key, write it down in a safe place, show them how to reset the master password if they forget the WPA key, and, by all means, don't tell me the password!!!
February 25, 2007 1:43 PM
Some routers have an option not to allow remote administration. This prevents anyone outside the LAN from accessing the configuration page. If your router has this option, I highly recommend turning that on as well. Most home users should have no need to configure their router from anywhere other than home.
February 28, 2007 8:46 AM
Very interesting and scary. I have a linksys router. I am going to change my default username and password. Thanks.
March 3, 2007 3:53 PM
Here is another explanation of the same problem.
http://michaelhorowitz2.blogspot.com/2007/03/home-routers-can-be-dangerous-very.html
And while on the subject of router configuration, I agree to use very long WPA passwords and to turn off remote admin. Let me also suggest turning off UPnP.
March 5, 2007 8:55 AM
Everyone should be using full 63 bits for the the WPA PSA key. Also change the SSID and turn off broadcasting, and use MAC address filtering limited to the machines you use. For long PSA keys and SSID's simply type out the info into Notepad and save the file somewhere on your PC where you can find it. Use ALL and/or ANY of the first 128 ASCII characters. Don't use words or names. You can easily load/reload the key and/or SSID to router, wireless device, etc. by simple copy and paste. Full security and nothing to remember.
March 6, 2007 8:36 AM
How can you change the password? The prompt screen for my Linksys WRT54G offers no apparent way to change from "ADMIN". Please tell me how to do this-- I must be overlooking something obvious.
March 6, 2007 8:47 AM
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
It varies some, but after I've logged into my LinkSys, across the top
there's a tab labeled "Password" right inbetween "Setup" and "Status".
Leo
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (MingW32)
iD8DBQFF7ZsiCMEe9B/8oqERAsvMAJ4r9sckMH53p5dyzFuwfqp9RxEMSQCfVki5
u1kVu1kb0Or+j6GzIvzNxEE=
=oOup
-----END PGP SIGNATURE-----
To post a comment on "Change Your Password - No, not that one...", please return to that article's main page.