Windows 8 and 8.1 Forums


Hidden backdoor in my AT&T Gateway

  1. #11


    Central IL
    Posts : 3,468
    Linux Mint 17.2


    Quote Originally Posted by mattman View Post
    Quote Originally Posted by broe23 View Post
    Quote Originally Posted by mattman View Post
    Yes, that port is used as a Remote assistance port by AT&T. So, they could potentially use it as a back door into your network.

    I would recommend closing it on the Gateway or blocking it on your Netgear. However, if you block it, some games such as Call of Duty won't work completely right.
    Never going to happen, due to this supposed "Back door" is nothing more then a blank rumor. There is no open port for the techs to access on the RG's.
    Not exactly right. I used to work as a Network Security Admin at a university and using open ports as "back doors" was one of the first things we all learned to do and prevent in school. Trust me, if there is a way into a network or machine, somebody will find it and use it.

    Either way, the OP is concerned about the open port and that is reason enough to close it in my opinion.
    Again, there is no backdoor on the Pace Gateways. You do not use a Port as a Backdoor. ATT can access only the RG, just like Comcast can access their Gateways, to do stuff on them. But they do not have access to anything else attached to the Gateway.

      My System SpecsSystem Spec

  2. #12


    Quote Originally Posted by broe23 View Post
    Quote Originally Posted by Jcwisgod View Post
    Quote Originally Posted by broe23 View Post
    This again. There is no backdoor on the 2-Wire/Pace gateway. I really wish this false rumor would just stop and go away.
    Explain why the port is open then if there's no backdoor
    The port is not there for the Gateway. It is for RDP from Windows.
    Any way to close it then?
      My System SpecsSystem Spec

  3. #13


    Central IL
    Posts : 3,468
    Linux Mint 17.2


    Quote Originally Posted by Jcwisgod View Post
    Quote Originally Posted by mattman View Post
    Quote Originally Posted by Jcwisgod View Post

    I can't close it, I got the Gateway blocking all incoming connections which should mean it's closed, and I tried to block it on the Netgear also but it still appears as open when I do port scans.

    Screenshots: Screenshot by Lightshot
    Screenshot by Lightshot
    The next choice is blocking it in the firewall of each pc on your network.
    I got ​Windows
    firewall turned on, pretty sure it's blocking most of everything besides the few programs I've allowed through.
    A firewall only keeps the honest people out. In reality, it is nothing more then what a entrance door on a building is made to do. You lock it to keep people from just opening it and walking into the building. You can leave it unlocked, and anyone is able to open and close the door as they go in.

    The supposed port on the Pace Gateways, started out as minor FUD, and now has turned into a full blown fire out of control. All in due to people keep spreading miss information about something that is not really there.
      My System SpecsSystem Spec

  4. #14


    Posts : 1,883
    7601.18247.x86fre.win7sp1


    An open port on a hardware firewall is never good, unless intended on purpose by owner of said hardware (not any company), and the software running behind that port is known well and without any exploitable vulnerabilities.
      My System SpecsSystem Spec

  5. #15


    About to just put the Gateway in bridge mode for the 2wire, and use the Netgear as the Hardware Firewall, just not 100% sure on how to do it
      My System SpecsSystem Spec

  6. #16


    Posts : 1,883
    7601.18247.x86fre.win7sp1


    Well, the Netgear also filters incoming traffic, so unless you have opened a port on it, nothing is going to get through to your machines at all without request. (Unless perhaps exploited with its own vulnerability - they have them believe it or not.) What that means is things you solicit, such as web browsing, and all other general usage works and things you did not solicit, will not.

    Disable uPnP on Netgear for good measure.

    So, it is secure in that aspect, but still - someone can access your AT&T without your permission. (Notably, likely ISP.)
      My System SpecsSystem Spec

  7. #17


    Central IL
    Posts : 3,468
    Linux Mint 17.2


    Quote Originally Posted by MasterChief View Post
    An open port on a hardware firewall is never good, unless intended on purpose by owner of said hardware (not any company), and the software running behind that port is known well and without any exploitable vulnerabilities.
    You have to have open ports on the router, in order to have certain items work properly. If you were to close all available open ports, you would never be able to get onto the Internet, to browse websites, or retrieve files or email.

    You can Stealth the port, and that is how it should be. You do also have to have ports open when running a File server, or a IP camera. When a request is made to that device, it should only go to that port, and access only what that port is mapped to on the device from the Router.

    Think of port mapping, like following a road map across the country. Some exits may be open, others may be closed, while there are some that state on the map that they are there, but in reality are not. That is how the router works. It is told which ports to open and which to close, but should always be in Stealth mode.

    That is why when people state that they did a port scan and found a bunch of open ports. The first thing that comes to mind, is why are they looking for open ports. The second is does the person understand the information they are looking at, from the results that the scan test gave.
      My System SpecsSystem Spec

  8. #18


    Central IL
    Posts : 3,468
    Linux Mint 17.2


    Quote Originally Posted by Jcwisgod View Post
    About to just put the Gateway in bridge mode for the 2wire, and use the Netgear as the Hardware Firewall, just not 100% sure on how to do it
    There is no longer a "Bridge" mode for the Pace gateways. It is now DMZ Plus, which you use to allow devices full open access to the Internet.

    If you are connected to the Internet, and worried about someone watching what you are doing, it is too late now. Regardless what people think that they can hide what they are doing, those days have gone away.
      My System SpecsSystem Spec

  9. #19


    Posts : 1,883
    7601.18247.x86fre.win7sp1


    Quote Originally Posted by broe23 View Post
    If you were to close all available open ports, you would never be able to get onto the Internet, to browse websites, or retrieve files or email.
    Sorry, wrong. Doesn't work like that.
      My System SpecsSystem Spec

  10. #20


    Central IL
    Posts : 3,468
    Linux Mint 17.2


    Quote Originally Posted by MasterChief View Post
    Quote Originally Posted by broe23 View Post
    If you were to close all available open ports, you would never be able to get onto the Internet, to browse websites, or retrieve files or email.
    Sorry, wrong. Doesn't work like that.
    Uhm, yes it does. If you were to go into a router and shut down all ports, so nothing is able to get through the router firewall, you would get a dead request when the computer you are on, you are trying to browse a webpage, download email, etc.

    Modern day firewalls on today's routers, use IPTables. They will Stealth the port, so that it does not show to outside ping requests, if it is open, but IPTables on the router knows whether it is open or closed.
      My System SpecsSystem Spec

Page 2 of 4 FirstFirst 1234 LastLast
Hidden backdoor in my AT&T Gateway
Related Threads
as stated in the title, the laptop will not boot windows. every now and then it will try to. it will work its way passed the gateway splash screen and the screen will go black with the white dot progress indicator in the middle of the screen and there it will stay till you turn off the computer....
Cisco says it will fix backdoor found in routers - Computerworld
Solved Hidden items stay hidden in General Support
I unchecked the Hidden Items but those items did show up in the system drive. What could be wrong?
D-Link routers found to contain backdoor | ZDNet
Eight Forums Android App Eight Forums IOS App Follow us on Facebook