OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Re: default password list - round 1.
From: Jonathan Leto (jonathanLETO.NET)
Date: Tue Jul 04 2000 - 15:06:02 CDT

Here are some more:

what user pass
----------------------------------------------------------------------
BayStack 350T HW:RevC FW:V1.01 SW:V1.2.0.10 n/a NetICs
BayStack 350T HW:RevC FW:V1.01 SW:V2.0.0.15 n/a NetICs
BayStack 350T-HD HW:RevA FW:V1.03 SW:V2.0.2.1 (24 port)n/a NetICs
BayStack 350T HW:RevC FW:V1.00 SW:V2.0.2.1 (16 port)n/a NetICs
3com CoreBuilder 7000/6000/3500/2500 debug synnet
3com CoreBuilder 7000/6000/3500/2500 tech tech
3com SuperStack II Switch 2200 debug synnet
3com SuperStack II Switch 2700 tech tech
3com HiPer ARC v4.1.x adm <blank>
3Com LANplex 2500 debug synnet
3Com LANplex 2500 tech tech
3com CellPlex 7000 tech tech
3com LinkSwitch 2000/2700 tech tech
BreezeCOM adapters 4.x (console only) n/a Super
BreezeCOM adapters 3.x (console only) n/a Master
BreezeCOM adapters 2.x (console only) n/a laflaf

snmp
what community pass
--------------------------------------------------------------------------------
Osicom Plus T1/Plus 56K write private

 Roelof Temmingh (roelofSENSEPOST.COM) spewed:

> All,
>
> Thanks for all the reponses I received! Many ppl have written to me stating
> that they too would want a list like this. Some said that the book "Hacking
> Exposed" contain such a list - maybe someone can go through the trouble to
> actually put that list online? I have started to compile a list. There are
> still many gaps - those are marked with a "?". I am sure the security community
> can help fill those gaps - or correct me where I have gone wrong. (Blue Boar -
> maybe ask permission for a cross post ?)
>
> The list below will go on the web as soon as I have some more info - hereby the
> list so far:
>
> Default password list.
> ======================
>
> Contributed by:
> ---------------
> Stephen Friedl <friedlmtndew.com>
> Sebastian Andersson <bofhdiegeekdie.com>
> Jonathan Leto <jonathanleto.net>
> Mike Blomgren <mike.blomgrenknowit.se>
> Knud Erik Hjgaard <knudcybercity.dk>
> mobileunitmobileunit.org
> Roelof Temmingh <roelofsensepost.com>
> and others..
>
> OS/type/vendor Username Password
> -----------------------------------------------------------------
> AT&T 3B2 firmware n/a mcp
> "old" Bay routers Manager <blank>
> ACC (Ericsson) netman netman
> Livingston portmaster3 !root <blank>
> UClinux for UCsimm root uClinux
> 3Com Office Connect 5x0 ISDN Routers n/a PASSWORD
> All Zyxel equipment n/a 1234
> Netopia 7100 <blank> <blank>
> Netopia 9500 netopia netopia
> digiCorp (viper?) n/a BRIDGE or password
> AXIS 200/240 netcam root pass
> Cayman DSL n/a <blank>
> Linksys DSL n/a admin
> BRASX/I01 (DataCom) n/a letmein
> Speedstream DSL (Efficient) n/a admin
>
> Needed
> ------
> Packeteer packetshaper ? ?
> Xyplex switches ? ?
> Cabletron switches ? ?
> DLink hub/switches ? ?
> SMC hubs/switches ? ?
> Accton hubs/switches ? ?
>
>
> Regards,
> Roelof.
>
> PS: I had a SNMP c.name colum in the list, but there is only one
> entry...:(, so I dropped it out for now.
>
> ------------------------------------------------------
> Roelof W Temmingh SensePost IT security
> roelofsensepost.com +27 83 448 6996
> http://www.sensepost.com 

--
jonathanleto.net
"With pain comes clarity."