So I've moved into a new flat share. This shady technician guy/janitor isn't willing to give us the Password to the pic related router. He was saying something weird about "having bad experiences with that" and how "we would be able to see bank Details"
Anyway: it's shady as fuck and I'm just wondering what privacy is compromised if he has Access to pic related. Can they read my Passwords/bank Details/ porn history?
The router is the Fritzbox 7362sl
>yes, germanfag here
So I've moved into a new flat share...
Other urls found in this thread:
github.com
twitter.com
If he has access to it, everything non-encrypted you do is compromised.
botnet
So get your own installed you entitled fuck, unless it says somewhere in whatever paperwork you signed that WiFi is included then you haven't got a leg to stand on.
There's nothing shady about him he's just a dick.
Keine Ahnung von was du da faselst.
Wenn du und er im gleichen netzwerk sind könntest du seinen unverschlüsselten Datenverkehr mitlesen. Der datentransport zu Onlinebankingseiten ist in der Regel verschlüsselt also da sollte es wenig bedenken geben.
Whatever you say, fuckshit
>Somewhere n the paperwork you signed that wifi is included
Yeah maybe get the whole story faggot. You gonna help now?
What? You have to speak coherent English mate. Not sure what exactly you're saying.
No, I don't want to help. You're beyond help. And you're German.
the fritz! routers are generally really good routers. you can even ssh and telnet into them and just install packages since theyre running bsd based operating systems. that also means if he gets a hold of it nothing unencrypted is safe.
They removed telnet.
that's exactly it motherfucker: it's included in the contract
so what exactly IS unencrypted then? I'm using Fag Os Sierra on my hackintosh, so I'm guessing I'm not totally fucked since afaik Safari is SSL encrypted, no?
...
>Can they read my Passwords
If the sites which require passwords were written by incompetent fools then yes(unlikely). Otherwise I'd say as long as you see the green lock next to https in the browser bar you should be fine but my confidence in the CA system has been severely knocked recently.
>bank Details
Depends on what you do with your bank details.
>porn history
Yes.
>How can I fix this?
Tor will probably keep you safe but banking websites and gmail 'nd stuff hate it.
You could buy a proxy which you trust more than the shady router, make the job of the NSA easier.
If you have a friend who you trust or access to a uni or work server you could tunnel out from the insecure network using ssh or whatever protocol tickles you.
Https connections are fine
Just hope any programs you use or logins authenticate you with an encrypted connection
Oh man I should start doing this, giggle erry time
Nobody cares about your stupid faggot problems, kys kike
Was it unreadable ?
I once had this moroccon housemate, that always wanted to prove his masculinity. (failing at it though)
When internet was slow I always checked the router, to watch what was happening. Router kept a log of DNS lookups.
See tons of gay-porn website requested from his computer.
Had a jolly good laught.
Yes, heil hitler and so forth
Why not just reset the router when he's not around? You should be fine by simply re-entering the wifi pass. And he will have a hard time to prove it was you, won't he? Or is it physicially inaccesible?
doesn't this reset the internet login details too?
The last time I had to enter the login details was years ago. Last few setups identified the router and I didn't need to enter a thing. Germanfag too. Try to ask at your ISP, play stupid and say you need to reinstall your grandpa's router and need to know if you have to dig up information first.
my flatmates would kill me if it didn't work anymore. I just feel my privacy is compromised when someone might have remote access to our router.
...
> fritz
> fucking FRITZ BOX
> Fritz was also a name given to German troops by the British and others in the First and Second World Wars
Literally imagine platoons of SS men in that little black box.
>>>pol
Post-Snowden I don't think your router matters that much regarding privacy. Try to check in the online setup manuals of your ISP.
Either kill the router or hook up another one behind it, using Tor or some proxy as already suggested.
Who the fuck cares you disgusting sausage gobbler. Privacy is an illusion anyway, you nerds make way too big a deal about it.
>mfw I get a C
everry time?
sry m8 it, jusst Habbens
Can you fuck off, please?
Only a terrorist would use Tor. Especially in germany they'll lock you up on suspicion of having thoughts about doing nazi/pedo things.
Still waiting for the van. Heck, I'd prefer a helicopter, but...
>I just feel my privacy is compromised when someone might have remote access to our router.
As if you mattered. Note no paranoid has a fantasy where they are so unimportant the evil hackers ignore them for a profitable target.
Do you even logic?
Trump is going to use the NSA to find illegal immigrants.
Yes if they hack the web control panel they can set up an iptables rule that redirects all traffic to their pc. After they use sslstrip to anally own you
You can always reset the password
> What is DNSSEC?
run some super epicch pings of death to the router until it shits itself
then do it over and over just to piss the cunt off
i know a lot of older netgear routers tend to shit the bed when a lot of pings or connections are made all at once
>sslstrip
THATS CURRENT_YEAR-2 (before browsers started cert pinning)
regards, 2014 frogs
>xkcd
cringe @ ur'e life
A fucking joke.
HSTS protocol and SSL pinning. Really think it is the death of mitm and the start of mitb
Oh god, 1&1 made networking hardware? They had better have contracted a proper company that actually makes it. They're still doing their proprietary CMS to make "websites" right? I wouldn't touch that shit with a 50 foot pole made out of dead WRT54G's
Fun can be stil had in other places. There are 2 well known ad libraries for android, which classload dex files from ad servers in plain.
Much better than just sniffing the web form fields.
Are you a burger?
Incorrect use of a semicolon; instead of fixing it you introduces an error. I give you a D.
It's a crippled AVM router, which is shit by itself already.
Ernsthafte Antwort:
Zum einen kann es nicht sein, dass du die Zugangsdaten zu deinem Router nicht bekommst. Lass dich nicht verarschen. Wenn du dir die Wohnung teilst sollten alle nur einen Teil vom Passwort haben, so dass niemand alleine drauf zugreifen kann.
Zum anderen hat eine Fritzbox ein rudimentäres Logging onboard, so dass jemand mit Zugriff darauf je nach technischer Fähigkeit Teile bis alles von dem einsehen kann, was du unverschlüsselt überträgst. Einen richtigen Paket-Sniffer muss man manuell drauf packen. Passwörter und Banking sollten immer über TLS/SSL laufen, so dass er maximal sehen kann, dass du Daten mit der Bank ausgetauscht hast, aber nicht, was diese beinhalten. Deine Porn-Aufrufe sind ne andere Geschichte.
It's not incorrect it's just pointless, like semicolons in general. There's a reason a lot of writers just pretend they don't exist.
By the way, in addition to logging everything you do unencrypted, an attacker with access to your router can also modify the data. Like, a script that makes everything you post on Sup Forums (over plain, unencrypted http) allcaps? Entirely doable.
> I give you a D.
S-senpai...
>I give you a D.
>ignorant retard spotted in the wild
>you can even ssh and telnet into them
No you can't, unless you replace its OS
Wenn du ein fremdes Netzwerk mit jemandem teilst sollte keiner der Nutzer das Adminpasswort kennen. Nur der Besitzer/Techniker. Wenn du der einzige bist, dann ist es ein wenig verdächtig, aber wenn es der Anschluss nicht auf deinen Namen läuft, dann klar berechtigt, da die Anschlusskennung misbraucht werden könnte. Wohnst du in einer WG oder Wohnheim? Niemand interessiert sich für deine Pornovorlieben (excl. KP)
>Tldr
OP is shady as fuck. Technician has good reason not to trust this faggot.
V P N
P
N
Just pay for your own internet service instead of using the building's.
was koennte ich tun mit router passwort, was ich nicht ohne auch tun könnte? Außerdem wäre es auch ganz nett, die Server Funktion zu nutzen, sowie das WLAN passwort nach unseren Vorlieben zu ändern.
Also kann er, sofern alles verschlüsselt über Safari/iCloud abläuft, nur sehen, DASS ich mich mit Servern verbinde. Also nicht das gelbe vom Ei? Ich bin beruhigt.
Are you prohibited from getting your own?
I don't have the log-in details of the internet provider. That's why I don't wanna reset the router either. There might be a chance that it auto-fills itself but nah- I need internet since we didn't have any connection for over a month
i'm the guy you replied to
This exists github.com
ur not safe :^)
No. Are you expressly prohibited from getting your own internet service?
no, but internet is included in our contract. I'm a student and wouldn't be able to afford paying another 40 bucks a month
Tell your landlord about the situation and ask for a reduction in rent.
I've seen this quite a few times now, it is pretty much a new form of autism.
You can't get a reduction for no real reason.
If you don't perceive that as a real reason, then stop complaining and gtfo this thread.
Internet is included in the contract, not having admin access to the router, which isn't needed to get Internet.
"I'm not getting admin access to a router I don't own" is not a complain that will net you anything more than a laugh.
Trying to reduce the rent with it is ridiculous.
About 70% sure it's only done by one faggot.
>Latest commit 87f1397 on 31 Mar 2015
Yeah right.
Fucking fritzbox shit; their antennae have enough range to give you wifi up to 5ft away but no more.
>german engineering
lmao
Then you should have thought about that before signing anything. You made a shitty decision.
even spoofing the dns is not going to work for the majority of sties, and every day less work.
facebook, twitter and others will not work and will detect the forged dns. gmail SOMETIMES can work but more often than not the browser will detect the extra w