SSH default user name and password

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

SSH default user name and password

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
SSH default user name and password
SSH default user name and password
2016-06-09 12:48:07 - last edited 2021-07-28 02:21:29
Model :

Hardware Version : Not Clear

Firmware Version :

ISP :

Hi there
I have a Archer C3200. Any one knows the SSH user name and password? There is nothing in the user guide and the GUI about SSH and I don't like to have an uncontrolled open service with a unknown username and password I cant change or deactivate.

Thanks!
  0      
  0      
#1
Options
1 Accepted Solution
Re:SSH default user name and password-Solution
2016-06-21 14:09:17 - last edited 2021-07-28 02:21:29
Well, port 22 is opened for tplink's management APP called Tether.
http://www.tplink.com/us/download/Archer-C3200.html#Apps
I asked them on the phone and got this answer.
Recommended Solution
  19  
  19  
#2
Options
28 Reply
Re:SSH default user name and password-Solution
2016-06-21 14:09:17 - last edited 2021-07-28 02:21:29
Well, port 22 is opened for tplink's management APP called Tether.
http://www.tplink.com/us/download/Archer-C3200.html#Apps
I asked them on the phone and got this answer.
Recommended Solution
  19  
  19  
#2
Options
Re:SSH default user name and password
2016-11-17 11:54:58
So basically, a back door.:(
I will dig a bit
  0  
  0  
#3
Options
Re:SSH default user name and password
2016-11-17 20:29:44
It's the user name and the password you have set in order to authenticate in the router web interface. A simple login attempt ends up with an error about not being able to create a TTY. Consequently, you must know in advance what command to launch on the router instead of a shell.
  5  
  5  
#4
Options
Re:SSH default user name and password
2017-03-25 06:48:39

alx_max wrote

It's the user name and the password you have set in order to authenticate in the router web interface. A simple login attempt ends up with an error about not being able to create a TTY. Consequently, you must know in advance what command to launch on the router instead of a shell.


I cannot confirm this. Telnet will work with the credentials from the WEBGUI, but SSH won't authenticate me.
Firmwareversion:0.8.0 0.5 v0053.0 Build 160122 Rel.41839n Hardwareversion:Archer VR200 v1 00000000

It's not a good feeling having a running ssh daemon, that you can't access...
  4  
  4  
#5
Options
Re:SSH default user name and password
2017-03-25 14:44:03
Actually the port 22 is opened only for the Tether App from TP-Link which will restrict any other SSH connections.
It's designed to avoid any security problems.
The default login username and password are the ones you set for the web UI.
  0  
  0  
#6
Options
Re:SSH default user name and password
2017-03-25 18:57:45
I'm not going to argue with you on what I regard to be security by obscurity...
BTW1: I find it embarrassing not be able to log in to a router with ssh with just a normal busybox available on it, nowadays. Since latest firmware was updated, many security breaches, e.g. in the linux kernel (2 priviledge escalation exploits, the latest for mod_hdlc, that is used by mod_ppp and 1 DoS) have been discovered. These issues have not yet been addressed.
I'd appreciate to receive updated firmware.

Back to the main topic: what you explain, does not seem to be right - at least not with a secure password containing special characters:
If the user name and password where the same for the app's ssh access, the non-app-ssh client would log in first and ssh would terminate the session right after.
But in my case, the user 'root' or rather 'admin' with the password from the GUI won't be accepted - the password will be asked for over and over until ssh terminates after on the third try. As mentioned before, the telnet server on the VR200 would accept the very same user/pass combination I am trying to use for SSH.

If there where mere USB-VDSL2-Vectoring modems models available on the market, I'd rather prefer these over any router model with limited access or ageing firmware. Unfortunately, this isn't possible right now.

I'd now like to debug the MTU-issue, that's causing packet loss or at least packet fragmentation. The VR200's CLI obviously isn't usuable for even debugging this.
What other solutions exist to reliably set the MTU to 1500 + 6 + 2 + 4 = 1512 bytes on the ptm? I need to get an effective MTU of 1500, that is, PPPoE with tagged VLAN.

Any helpful suggestions are highly welcome!

Best regards!
Epek
  3  
  3  
#7
Options
Re:SSH default user name and password
2017-04-18 00:21:59
I don't think allowing telnet and restricting SSH makes ANY sens in terms for security, in terms of insecurity, maybe.
  4  
  4  
#8
Options
Re:SSH default user name and password
2017-04-23 22:34:33
Any news on that?
  0  
  0  
#9
Options
Telnet with busybox
2017-10-10 02:03:48
In the meanwhile I figured out how to obtain a root shell on my VR200 instead of the TP-LINK Cli.
The results are disappointing. Setting an MTU greater than 1500 on any of the interfaces will fail with an RTNETLINK error. This indicates, that drivers and kernel (2.6.x) are way too old to support this feature.

My hope now is, that an open firmware may circumvent these problems.
Nevertheless a bad feeling remains, since the root shell exploit is hardly difficult to apply. Unchecked variable values from the GUI... subshell. Requires a local user. Nuff said.
  0  
  0  
#10
Options
Re:SSH default user name and password
2018-01-15 18:05:11

epek wrote

In the meanwhile I figured out how to obtain a root shell on my VR200 instead of the TP-LINK Cli.


How you did it?
I'm trying to do the same with an Archer VR400 because the CLI is really limited (cannot configure port forwarding throught CLI).
  2  
  2  
#11
Options