Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×
Network

Deutsche Telekom Says 900,000 Fixed-Line Customers Suffer Outages (reuters.com) 27

About 900,000 Deutsche Telekom fixed-line customers have been hit by network outages, the carries said on Monday, and it could not rule out "targeted external factors" as the reason. From a Reuters report: Fixed-line customers have had problems connecting to Deutsche Telekom's network since Sunday afternoon, the company said. "Based on the pattern of errors, it can not be ruled out that the router has been targeted externally, with the result that it can no longer log on to the network," Deutsche Telekom, which has 20 million fixed-line customers, said in a statement on it website.

Deutsche Telekom Says 900,000 Fixed-Line Customers Suffer Outages

Comments Filter:
  • >> it could not rule out "targeted external factors"

    I had no idea Hillary was working for Deutsche Telekom now. Happy to see her land on her feet!

    More likely, it was a terrorist squirrel (http://cybersquirrel1.com/).
  • by 110010001000 ( 697113 ) on Monday November 28, 2016 @09:53AM (#53377053) Homepage Journal
    What will the Germans do without their daily dose of spam calls from India?
  • As their first working fix was blocking Port 7547, one can safely assume that the TR-069 implementation of specific router models were targeted. 3rd party routers are/were completely unaffected.
    • by Shatrat ( 855151 )

      As someone who has worked with TR-069 from the carrier/vendor side, that doesn't surprise me at all. There are some provisions for security in the TR-069 protocol, but they're not taken as seriously or implemented as rigorously as they should be. I think this is inevitable when it's done over a public interface. A better solution is to give the router two WAN interfaces on two different VLANs, one public for Internet service and one private for SNMP, TR-069, et cetera.

    • by I4ko ( 695382 )

      It is interesting that you point this out. I've been seeing port scans for TR-069 for the past 4 days. I've since added the port to a rule that will permanently ban an IP if they try to connect on that port.

  • I helped a friend install a new computer and then after all was fine he started to lose the telephony (which looks for the customer like PSTN but is voip over Telekom's router), the DNS (which was by default served from the same router) and ultimately all internet connectivity. After reboot it would work again for 10-20 minutes then start to lose it gradually. I guess it could be some kind of DoS.

    It took us quite a while to actually google and find there's a big outage going on. All the while the friend ins

  • by Anonymous Coward

    and possibly other routers. There's a thorough article [sans.edu] about the issue. Apparently the handler for a SOAP request doesn't sanitize untrusted input and executes backticked shell code.

  • by UnderAttack ( 311872 ) * on Monday November 28, 2016 @11:35AM (#53377733) Homepage

    see https://isc.sans.edu/forums/di... [sans.edu]

    looks like a new SOAP vulnerability was added to Mirai. Here come a few million more mirai bots.

  • For the average customer it means no internet. Me I simply replaced the dns by 8.8.8.8 and 8.8.4.4 temporarily (I'll go back to their dns afterward).
  • I think they should actually state where did the outages happen. One can guess it is somewhere in Germany, but geez...

    And before the whole "the Russians are coming" starts on this topic, here is an interesting link

    http://www.spiegel.de/internat... [spiegel.de]

    • by rtb61 ( 674572 )

      So it would seem the NSA's excuse of choice is to be a toddler, we didn't do it, Russia did (it has been pretty noticeable for a while). So much so, they have to intersperse it with, we didn't do it, China did. When ever they are asked to prove their claim in court the always claim national security (they can not prove how Russia and China did it with out proving how they did it to Russia and China and that Russia and China are just retaliating). How about a treaty to stop doing, nope, nuh uh, they don't wa

  • by Ralf-Philipp Weinmann: https://comsecuris.com/blog/po... [comsecuris.com] just so you know ;)

If all else fails, lower your standards.

Working...