In early August, we covered Comcast's DNS hijacking redirection service that would take users to a Comcast page (complete with ads) when they entered a nonexistent URL. For instance, when Comcast customers visit animalsthatkeepclintawakeatnight.com, they see a page of suggested Web sites along with a few ads. Comcast has submitted its redirection service to the IETF, hoping to making it a standard.
The idea was controversial enough, but Comcast's opt-out method made it more so; it required subscribers to enter both an e-mail address and the MAC address from their cable modem. Providing a MAC address to opt-out is not only cumbersome, but to many Joe Sixpack users, it's arcane, and probably not worth the effort.
Comcast did offer a page of explanation, noting that the MAC number is printed on the modem and may begin with any of the following: CABLE, CABLE RF MAC, CM, CM MAC, CMAC, HFC MAC, RF, or RF MAC—which is not at all confusing. The example graphic provided shows a label with two lengthy numbers on it, one beginning with 'RF MAC' and the other with 'RG MAC.' The numbers differ by a single character, but enter the wrong one and you're out of luck, even though both are 'MAC' numbers.
What a nightmare—but Comcast's engineering staff got in touch with Ars to let us know that opting out of the DNS redirection process is now faster and easier. For one thing, it happens immediately, without the delay of a day or two that was possible under the old system. Also, no MAC address is required—just log in with your Comcast credentials and turn the service on or off.
It's a small thing, but kudos to Comcast for making the process easy enough for total non-techies to master. Now, if only the service itself was opt-in...
While searching around for a solution to the Arris(modem) password of the day I found out that these routers where being crawled by most common search engines. I found this out by doing the following google query:
Feb 12, 2015 That would probably be illegal without Comcast/Xfinity's permission. No I will NOT provide you with more detail. If you are asking you probably are hacking and not fixing. MAC addresses are notoriously easy to grab over the air. In all fairness to Comcast they state that they expire your MAC based auth every 24 hours. AIUI, on Comcast's network the modem gets an IPv6 address so that they can do network management stuff to it. Lstamour on Nov 19, 2015 That said, it's possible that your cable company could protect you (and their other customers) at the expense of you possibly losing access to port forward SSH, etc. Dec 27, 2007 I had the router spoof that NIC's Mac Address. So when I switched the router's spoofing to the second computer's MAC addy, voila, everything was working again. So again, the only possible explanation I have is that Comcast blocked the original MAC address I was using. So my question is, have Comcast been known to do that, and if so, why?
Comcast Mac Address Hacks
- Jan 08, 2019 Wi-fi is famous for the fastest Internet speed in schools and colleges as well.As you know, Xfinity WiFi Hotspot is a device that allows you to access the internet for free. So, if you want to get Free Unlimited Internet access, you need to get Xfinity WiFi Free Trail Hack and Xfinity WiFi Hack Login.All you need to learn How to Bypass Xfinity WiFi Login Page and WiFi Password.
- Download the App from here: Mac Address Changer to hack Xfinity Wi-Fi. Important Note: Before you start using MAC address changer App make sure that you are connected to Xfinity Wi-Fi hotspot. Otherwise, the process we are trying to do now will fail i.e. While changing the MAC address. Step 8: Open the MAC address changer App. Using this App we.
The in quote string comes from the default Arris Login page which looks something like this
From this page you can access the default Xfinity Login page by doing the following:
Upon clicking the Xfinity tab you will be redirected to the network’s external IP with an open port 8080. Now that you are on this page it will ask you for the Username and Password.
All Xfinity routers come with the exact same login info.
From here you can manage the “stranger’s” whole network. Change all kind of settings:
If you are lucky enough you might even be able to login to the modem itself. Though this modem has a daily changing password it could be obtain only if the Arris Modem is model TM602A and other few. To generate this password use this generator:
This password could also get you access to SSH, Telenet, others… (nmap the IP for more open ports)
————————————————————————————————————————–
I don’t know the reason as to why ports 80 and 8080 are opened to the public by default. I don’t think users are doing these port-forwards for two reasons, they didn’t even bother to change the default admin password AND they don’t show up on the router’s configuration.
Xfinity Wifi Mac Address
Comcast Mac Address Hacked
I tested this on my IP and fortunately they weren’t opened because I had my web-server running on these ports so they never reached the Arris/Xfinity login page.
Hack Comcast Cable
To protect yourself change the default admin password for your Xfinity router and/or open port 80/8080 on some other device.