Kitz ADSL Broadband Information
adsl spacer  
Support this site
Home Broadband ISPs Tech Routers Wiki Forum
 
     
   Compare ISP   Rate your ISP
   Glossary   Glossary
 
Please login or register.

Login with username, password and session length
Advanced search  

News:

Pages: 1 [2] 3 4 5

Author Topic: VMG1312-B10D new Web GUI 2.0 on V5.13(AAXA.8)C0?  (Read 16384 times)

jelv

  • Helpful
  • Kitizen
  • *
  • Posts: 2054
Re: VMG1312-B10D new Web GUI 2.0 on V5.13(AAXA.8)C0?
« Reply #15 on: November 03, 2018, 01:26:29 PM »

Has anyone managed to do a V.5.13(AAXA.7) to V.5.13(AAXA.8) upgrade?
Logged
Broadband and Line rental: Zen Unlimited Fibre 2, Mobile: Vodaphone
Router: Fritz!Box 7530

burakkucat

  • Respected
  • Senior Kitizen
  • *
  • Posts: 38300
  • Over the Rainbow Bridge
    • The ELRepo Project
Re: VMG1312-B10D new Web GUI 2.0 on V5.13(AAXA.8)C0?
« Reply #16 on: November 03, 2018, 04:57:48 PM »

. . . would I be correct in assuming that a SHA-512 crypt will be more difficult / time consuming to decrypt ?

In theory, yes. But in practice not necessarily so. What do I mean? Clearly, from a read of the crypt() manual page, there is the possibility of using a significantly longer (plain-text) password. That, in turn, would therefore require the usage of a significantly longer mask . . . However as you have confirmed that the supervisor (and root) plain-text password is the same as with MD5 crypt, you will know its length.

Hashcat (legacy hashcat) documentation shows --

Quote
* Mask-attack attack-mode specific:

       --increment                   Enable increment mode
       --increment-min=NUM           Start incrementing at NUM
       --increment-max=NUM           Stop incrementing at NUM

Those three flags are quite useful, at times.

Finally, the required argument to follow the "-m" flag --

500  is md5crypt
1500 is DEScrypt
1800 is SHA512crypt


If I was experimenting with the data for the supervisor login, harvested from your shadow file, I would first try the following command line (legacy hashcat) --

hashcat -a 3 -m 1800 --custom-charset1=?dabcdef --increment VMG1312-B10D.hash ?1?1?1?1?1?1de
« Last Edit: November 03, 2018, 05:04:46 PM by burakkucat »
Logged
:cat:  100% Linux and, previously, Unix. Co-founder of the ELRepo Project.

Please consider making a donation to support the running of this site.

tiffy

  • Kitizen
  • ****
  • Posts: 1319
Re: VMG1312-B10D new Web GUI 2.0 on V5.13(AAXA.8)C0?
« Reply #17 on: November 03, 2018, 05:28:29 PM »

Has anyone managed to do a V.5.13(AAXA.7) to V.5.13(AAXA.8) upgrade?

For convenience, I will refere to the FW revisions by single digit numbers 5, 7 & 8:

Have previously just updated from rev. 5 to 8 without any issues.
To answer your question, I tried an update from rev. 5 to 7, no problems encountered.
Then a further update from rev. 7 to 8, no problems encountered.
For all operations, logged in to router GUI @ supervisor level, never tried admin level, likely not significant.

As previously reported, I find there is an issue trying to roll back revisions 8 to 5, have to complete in 2 steps 8 to 7 then 7 to 5, only way it will work for me.

Will be interesting to get your opinion on the new rev. 8 GUI, I was glad to leave it behind and scurry back to rev. 5.
 
Logged
BT FTTP 150/30, BT Smart Hub 2

burakkucat

  • Respected
  • Senior Kitizen
  • *
  • Posts: 38300
  • Over the Rainbow Bridge
    • The ELRepo Project
Re: VMG1312-B10D new Web GUI 2.0 on V5.13(AAXA.8)C0?
« Reply #18 on: November 03, 2018, 05:49:27 PM »

If all else fails, the firmware could be upgraded/downgraded via ftp.
Logged
:cat:  100% Linux and, previously, Unix. Co-founder of the ELRepo Project.

Please consider making a donation to support the running of this site.

tiffy

  • Kitizen
  • ****
  • Posts: 1319
Re: VMG1312-B10D new Web GUI 2.0 on V5.13(AAXA.8)C0?
« Reply #19 on: November 03, 2018, 05:50:52 PM »

@ b*cat

Thanks for the further information.

Yes, will have a further play with Hashcat and the SHA-512 format, I can carry out a direct time comparison with MD5 format on my very limited Intel based system supplying some of the known answers as you suggest to get the time down to something reasonable.

Of course it's easy to experiment with the Hashcat command line parameters when we already know the decrypted PW format, in our case the actual PW's, in the absence of this information I can see why we would require the services of a benefactor with very extensive (and expensive) GPU resources.
Logged
BT FTTP 150/30, BT Smart Hub 2

jelv

  • Helpful
  • Kitizen
  • *
  • Posts: 2054
Re: VMG1312-B10D new Web GUI 2.0 on V5.13(AAXA.8)C0?
« Reply #20 on: November 03, 2018, 09:26:48 PM »

I finally managed to upgrade: used the laptop instead of the PC - different browser and different antivirus software. Not sure which was the difference but it is done.

Will be interesting to get your opinion on the new rev. 8 GUI, I was glad to leave it behind and scurry back to rev. 5.

It's different but everything is there under the same menu options. Have you looked at the new GUI using your mobile phone? It's 1000% better than the old GUI if you look at it using a mobile device as it is now fully responsive.

BUT...

Telnetting in I'm still only presented with the ZySH so no RouterStats!  :(
Logged
Broadband and Line rental: Zen Unlimited Fibre 2, Mobile: Vodaphone
Router: Fritz!Box 7530

meritez

  • Content Team
  • Kitizen
  • *
  • Posts: 1623
Re: VMG1312-B10D new Web GUI 2.0 on V5.13(AAXA.8)C0?
« Reply #21 on: November 03, 2018, 10:04:23 PM »

I have asked Zyxel for the gpl source for research purposes, but have been informed its internal only at present  :o

Logged

tiffy

  • Kitizen
  • ****
  • Posts: 1319
Re: VMG1312-B10D new Web GUI 2.0 on V5.13(AAXA.8)C0?
« Reply #22 on: November 03, 2018, 10:12:19 PM »

Quote
I finally managed to upgrade: used the laptop instead of the PC - different browser and different antivirus software. Not sure which was the difference but it is done.

Yes, can be very temperamental, I've had some further difficulties tonight getting back to revision 5, finally downloaded a fresh FW copy and that went through ?

Quote
It's different but everything is there under the same menu options. Have you looked at the new GUI using your mobile phone? It's 1000% better than the old GUI if you look at it using a mobile device as it is now fully responsive.

Yes, it certainly is different, just not to my liking.
I would never have thought of a mobile phone interface, never had occasion to try this.

Quote
Telnetting in I'm still only presented with the ZySH so no RouterStats!

Wonder if it's actually RouterStats or DSLStats program you refer to ? (same principal regarding router data collection)
In my ignorance, I made the assumption that if I could Telnet/Busybox into the router then DSLStats would work, having this afternoon actually tried pointing DSLStats (running on a RPi 3B) at the router found that it won't work on FW revisions 7 & 8 but does on rev. 5 as indeed was always reported.
Apologies for any confusion.

Is there an easy / positive way to identify if DSLStats / RouterStats will communicate with a router other than trying a connection to the utility ?
Logged
BT FTTP 150/30, BT Smart Hub 2

tiffy

  • Kitizen
  • ****
  • Posts: 1319
Re: VMG1312-B10D new Web GUI 2.0 on V5.13(AAXA.8)C0?
« Reply #23 on: November 03, 2018, 10:14:13 PM »

If all else fails, the firmware could be upgraded/downgraded via ftp.

Out of interest, how is this achieved ?
Logged
BT FTTP 150/30, BT Smart Hub 2

burakkucat

  • Respected
  • Senior Kitizen
  • *
  • Posts: 38300
  • Over the Rainbow Bridge
    • The ELRepo Project
Re: VMG1312-B10D new Web GUI 2.0 on V5.13(AAXA.8)C0?
« Reply #24 on: November 03, 2018, 10:44:46 PM »

You would need to use an ftp client and have it transfer the firmware to the device using the admin credentials. It would be best done with the device reset to the factory defaults, so that "admin" and "1234" are used.

An alternative method is to open up the device, connect to the serial console header pins on the PCB, interrupt the boot process and upload the firmware from the CFE> prompt.

Here are the commands recognised at the CFE> prompt for a ZyXEL VMG1312-B10D --

Code: [Select]
CFE> ATHE
Available commands:

ATMB                Use for multiboot.
ATBB                Mark/unmark the Block X to be bad block.
ATCMP               Compare the contents at start address X and Y with
                    Length Z
ATLD                Download data with file name X to memory address Y
                    from PC via TFTP
ATRB                Load the CFERAM to run by TFTP or UART!
ATDS                Dump data of spare area in block X`s page Y
ATRF                Read/Dump flash data
ATER                Erase NAND flash from block X to block Y
ATWF                Write data from RAM to flash
ATRT                Test memory.
ATCR                reset to default, erase Data partition
ATCD                Erase ROM-D partition
ATWZ                write (a)MAC addr, (b)Country code, (c)EngDbgFlag,
                    (d)FeatureBit, (e)MAC Number to NVRAM
ATCO                set Country Code to NVRAM.
ATSN                set Series Number to NVRAM.
ATSH                dump manufacturer related data from NVRAM
ATGO                Run program from flash image or from host depend on
                    [f/h] flag.
ATSE                show the seed of password generator
ATEN                set BootExtension Debug Flag
ATBT                block0 write enable
ATPH                Set/Get PHY`s registers.
ATWW                Set memory or registers.
ATDU                Dump memory or registers.
ATBL                Print boot line and board parameter info
ATIP                Change booline parameters
ATAF                Change board AFE ID
ATBP                Change board parameters
ATSR                System reboot
ATUD                Upload ROM-D to flash from TFTP
ATUB                Upload bootloader to flash from TFTP
ATUR                Upload router firmware to flash from TFTP
ATUW                Write the whole image start from beginning of the flash from TFTP
ATHE                print help

For more information about a command, enter 'help command-name'
*** command status = 0
CFE>
Logged
:cat:  100% Linux and, previously, Unix. Co-founder of the ELRepo Project.

Please consider making a donation to support the running of this site.

jelv

  • Helpful
  • Kitizen
  • *
  • Posts: 2054
Re: VMG1312-B10D new Web GUI 2.0 on V5.13(AAXA.8)C0?
« Reply #25 on: November 03, 2018, 11:49:11 PM »

Sorry - I meant DSLStats.

Is there an easy / positive way to identify if DSLStats / RouterStats will communicate with a router other than trying a connection to the utility ?

If when you telnet in you get the busybox it will work. If you get ZySH it won't.
Logged
Broadband and Line rental: Zen Unlimited Fibre 2, Mobile: Vodaphone
Router: Fritz!Box 7530

tiffy

  • Kitizen
  • ****
  • Posts: 1319
Re: VMG1312-B10D new Web GUI 2.0 on V5.13(AAXA.8)C0?
« Reply #26 on: November 04, 2018, 12:44:42 PM »

@ b*cat

Quote
You would need to use an ftp client and have it transfer the firmware to the device using the admin credentials. It would be best done with the device reset to the factory defaults, so that "admin" and "1234" are used.

An alternative method is to open up the device, connect to the serial console header pins on the PCB, interrupt the boot process and upload the firmware from the CFE> prompt.

Many thanks for the comprehensive reply, much appreciated.

I've been down the serial connection route before to unlock the 1312-B10D, biggest issue I found was getting the case open without damaging the plastic catches, could not master the "plastic card" technique !

Hope I never have to go down this route which I would imagine would be required if a device was "bricked" however, the information is certainly filed away just in case.
Logged
BT FTTP 150/30, BT Smart Hub 2

burakkucat

  • Respected
  • Senior Kitizen
  • *
  • Posts: 38300
  • Over the Rainbow Bridge
    • The ELRepo Project
Re: VMG1312-B10D new Web GUI 2.0 on V5.13(AAXA.8)C0?
« Reply #27 on: November 04, 2018, 02:41:10 PM »

For the serial-console, CFE> prompt method, the required command is --

ATUR                Upload router firmware to flash from TFTP

(TFTP = trivial file transfer protocol.)
Logged
:cat:  100% Linux and, previously, Unix. Co-founder of the ELRepo Project.

Please consider making a donation to support the running of this site.

tiffy

  • Kitizen
  • ****
  • Posts: 1319
Re: VMG1312-B10D new Web GUI 2.0 on V5.13(AAXA.8)C0?
« Reply #28 on: November 04, 2018, 02:57:34 PM »

Sorry - I meant DSLStats.

If when you telnet in you get the busybox it will work. If you get ZySH it won't.

Yes, that certainly was my understanding, however, I'am now confused !

Quote
If you get ZySH it won't.
Sorry, I don't understand this bit ?

Set up my off line 1312-B10D running FW revision V.5.13(AAXA.5), DSLStats V.6.5.9 running on my RPi 3B configured to suit the 1312-B10D router, communicating perfectly (obviously showing no DSL connection)

Updated router FW to V.5.13(AAXA.7) and repeated exercise, unable to collect stats from router via DSLStats.

In both cases full Telnet/Busybox access (as I understand it) was available from Win cmd window.

Did not take the trouble to repeat the exercise with FW revision 5.13(AAXA.8) as you have already reported that DSLStats would not work and I found previously that Telnet/Busybox access was still possible from Win cmd window with this FW revision.
Logged
BT FTTP 150/30, BT Smart Hub 2

jelv

  • Helpful
  • Kitizen
  • *
  • Posts: 2054
Re: VMG1312-B10D new Web GUI 2.0 on V5.13(AAXA.8)C0?
« Reply #29 on: November 04, 2018, 03:14:55 PM »

What login are you using?

I only get ZySH which if I key ? shows the available commands - no stats available!

Code: [Select]
VMG1312-B10D login: admin
Password:
ZySH>
cfg                                                  - DAL command line interface
dns                                                  - ZYXEL command line
ethwanctl                                            - ZYXEL command line
exit                                                 - Close an active terminal session
history                                              - Display or clear CLI history
ifconfig                                             - Show network interface configuration
ping                                                 - Send ICMP ECHO_REQUEST to network hosts
pppoectl                                             - ZYXEL command line
sys                                                  - ZYXEL command line
tcpdump                                              - Text based packet capture utility
traceroute                                           - monitor each routed node during whole routing path to <host>
vcautohuntctl                                        - ZYXEL command line
voicedbgcli                                          - ZYXEL command line
wan                                                  - ZYXEL command line
wlan                                                 - ZYXEL command line
xdslctl                                              - ZYXEL command line
zycli                                                - ZYXEL command line

This is the same as I was seeing with .7
« Last Edit: November 04, 2018, 03:18:32 PM by jelv »
Logged
Broadband and Line rental: Zen Unlimited Fibre 2, Mobile: Vodaphone
Router: Fritz!Box 7530
Pages: 1 [2] 3 4 5