From: pand0ra (pand0ra.usa@gmail.com)
Date: Mon Jul 16 2007 - 02:00:04 EDT
That would be "war dialing" hanging with the old school terminology.
One of the things you want to look for on modems is if they are set to
"auto answer".
What applications are being used in conjunction with the modem and how
are they configured.
What authentication is being used by those applications (and how
secure/reliable the authentication is).
Also look to see if any encryption is being used. Keep in mind that
all communication goes over POTS and the providers can monitor any
line they want to at any time.
What services are available over dial-up.
On 7/15/07, John Smith <mmu6culus@gmail.com> wrote:
> Is there existing any methodology to test security of modems?
>
> I am not asking about "war driving" (penetration testing of modem entry
> points to the computer systems/networks) but testing of modems as devices?
>
> What features shall one look for while assessing the security of modems
> of various types (dial model, cable modem, DSL modem, GPRS modems, other
> wireless modems, etc)?
>
> Are there any publicly accessible (or commercial) modem testing tools?
>
> Thank you,
> John
>
> ------------------------------------------------------------------------
> This List Sponsored by: Cenzic
>
> Swap Out your SPI or Watchfire app sec solution for
> Cenzic's robust, accurate risk assessment and management
> solution FREE - limited Time Offer
>
> http://www.cenzic.com/c/wf-spi
> ------------------------------------------------------------------------
>
>
------------------------------------------------------------------------
This List Sponsored by: Cenzic
Swap Out your SPI or Watchfire app sec solution for
Cenzic's robust, accurate risk assessment and management
solution FREE - limited Time Offer
http://www.cenzic.com/c/wf-spi
------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:56 EDT