{"id":87713,"date":"2014-07-17T14:20:23","date_gmt":"2014-07-17T18:20:23","guid":{"rendered":"https:\/\/www.voipsupply.com\/blog\/voip-insider\/?p=87713"},"modified":"2016-12-08T16:44:08","modified_gmt":"2016-12-08T21:44:08","slug":"edgemarc-password-security","status":"publish","type":"post","link":"https:\/\/www.voipsupply.com\/blog\/voip-insider\/edgemarc-password-security\/","title":{"rendered":"Warning: EdgeMarc Gateways and Session Border Controllers Passwords Could be Compromised"},"content":{"rendered":"<p style=\"text-align: center\"><a class=\"post-thumbnail\" href=\"\/manufacturer\/edgewater-networks\" onclick=\"ga('send', 'event', 'voip-insider-blog-post', 'click', 'image1');\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-87723\" alt=\"WARNING-Check Your EdgeMarc Password\" src=\"\/blog\/voip-insider\/files\/2014\/07\/WARNING-Check-to-MakeSure-YourEdgeMarc.png\" width=\"600\" height=\"400\" srcset=\"https:\/\/www.voipsupply.com\/blog\/voip-insider\/files\/2014\/07\/WARNING-Check-to-MakeSure-YourEdgeMarc.png 600w, https:\/\/www.voipsupply.com\/blog\/voip-insider\/files\/2014\/07\/WARNING-Check-to-MakeSure-YourEdgeMarc-150x100.png 150w, https:\/\/www.voipsupply.com\/blog\/voip-insider\/files\/2014\/07\/WARNING-Check-to-MakeSure-YourEdgeMarc-300x200.png 300w\" sizes=\"auto, (max-width: 600px) 100vw, 600px\" \/><\/a><\/p>\n<p>Our partner <a title=\"Bandwidth\" href=\"http:\/\/bandwidth.com\/\" target=\"_blank\">Bandwidth<\/a> has alerted us that there is potentially a problem with the password security of <a title=\"EdgeMarc Gateways and Session Border Controllers (ESBC)\" href=\"\/manufacturer\/edgewater-networks\" onclick=\"ga('send', 'event', 'voip-insider-blog-post', 'click', 'EdgeMarc Gateways and Session Border Controllers (ESBC)');\">EdgeMarc Gateways and Session Border Controllers (ESBC)<\/a>.<\/p>\n<p>This might affect all EdgeMarc device owners. In short, the default Username \/ Password of &#8220;Root&#8221; \/ &#8220;Default&#8221; of these devices have been compromised.<\/p>\n<p>However, if you changed your log in credentials when you programmed your EdgeMarc device then you are probably safe. If you were never prompted to change the default username \/ password you may not have thought to change it.<\/p>\n<h2>How to Tell If Your EdgeMarc Password Should be Changed and Steps to Take<\/h2>\n<p>From the Bandwidth announcement, here&#8217;s how to tell if you need to change your password and the steps to take:<\/p>\n<blockquote><p>If you are unsure if your specific device has been compromised, you can take the following steps to investigate. However, it is still highly recommended to change the password:<\/p>\n<ul>\n<li>In the EdgeMarc GUI, under &#8216;System&#8217; click on &#8220;Client List&#8221;. If there are any entries listed other than known and local IP addresses, there is a strong possibility that your device has been compromised. To resolve, remove the offending IP address.<\/li>\n<\/ul>\n<p>Additionally, the following steps should be taken to to ensure a secure device:<\/p>\n<ul>\n<li>Disable PPTP (Point-to-Point Protocol) &#8211; Under PPTP server &gt; Username, ensure there is no user built unless it is a known user.<\/li>\n<li>Disallow WAN clients &#8211; Under VoIP ALG, uncheck both the &#8216;allow clients on WAN&#8217; option, as well as the &#8216;Enable LLDP&#8217; option.<\/li>\n<li>Verify no additional scripting has taken place, by looking under &#8216;User Commands&#8217;. Specifically, if the following script is present, it will need to be deleted:<\/li>\n<\/ul>\n<p><span style=\"color: #3366ff\">ln -sf \/etc \/etc\/images\/m.txt<\/span><br \/>\n<span style=\"color: #3366ff\"> chmod 777 \/etc\/images\/m.txt\/config\/passwd<\/span><br \/>\n<span style=\"color: #3366ff\"> sed -i -e s&#8217;_'&#8221;501&#8243;&#8216;_'&#8221;0&#8243;&#8216;_&#8217; \/etc\/images\/m.txt\/config\/passwd<\/span><br \/>\n<span style=\"color: #3366ff\"> sed -i -e s&#8217;_'&#8221;501&#8243;&#8216;_'&#8221;0&#8243;&#8216;_&#8217; \/etc\/images\/m.txt\/config\/passwd<\/span><br \/>\n<span style=\"color: #3366ff\"> sed -i -e s&#8217;_'&#8221;\/etc\/images&#8221;&#8216;_'&#8221;\/&#8221;&#8216;_&#8217; \/etc\/images\/m.txt\/config\/passwd<\/span><\/p>\n<p><strong>Note<\/strong>: Some EdgeMarc screens within the GUI save changes while you&#8217;re making them, and others require you to hit a &#8216;submit&#8217; button. Please take note of this while making your changes.<\/p><\/blockquote>\n<h2>Need EdgeMarc Help?<\/h2>\n<p>Thank you to Bandwidth for bringing this problem to our attention.<\/p>\n<p>If the above information did not help you and you still have concerns, please call us at <a href=\"tel:+8003988647\">800-398-8647<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Our partner Bandwidth has alerted us that there is potentially a problem with the password security of EdgeMarc Gateways and Session Border Controllers (ESBC). This might affect all EdgeMarc device owners. In short, the default Username \/ Password of &#8220;Root&#8221; \/ &#8220;Default&#8221; of these devices have been compromised. However, if you changed your log in [&hellip;]<\/p>\n","protected":false},"author":11,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1217],"tags":[],"class_list":["post-87713","post","type-post","status-publish","format-standard","hentry","category-voip-news"],"_links":{"self":[{"href":"https:\/\/www.voipsupply.com\/blog\/voip-insider\/wp-json\/wp\/v2\/posts\/87713","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.voipsupply.com\/blog\/voip-insider\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.voipsupply.com\/blog\/voip-insider\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.voipsupply.com\/blog\/voip-insider\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/www.voipsupply.com\/blog\/voip-insider\/wp-json\/wp\/v2\/comments?post=87713"}],"version-history":[{"count":10,"href":"https:\/\/www.voipsupply.com\/blog\/voip-insider\/wp-json\/wp\/v2\/posts\/87713\/revisions"}],"predecessor-version":[{"id":150903,"href":"https:\/\/www.voipsupply.com\/blog\/voip-insider\/wp-json\/wp\/v2\/posts\/87713\/revisions\/150903"}],"wp:attachment":[{"href":"https:\/\/www.voipsupply.com\/blog\/voip-insider\/wp-json\/wp\/v2\/media?parent=87713"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.voipsupply.com\/blog\/voip-insider\/wp-json\/wp\/v2\/categories?post=87713"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.voipsupply.com\/blog\/voip-insider\/wp-json\/wp\/v2\/tags?post=87713"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}