It is possible to sniff credentials of router web interface?

Post new topic   Reply to topic    DD-WRT Forum Forum Index -> General Questions
Author Message
vvvw
DD-WRT Novice


Joined: 23 Jun 2018
Posts: 9

PostPosted: Tue Nov 13, 2018 17:24    Post subject: It is possible to sniff credentials of router web interface? Reply with quote
My home network is build like that;

router/modem 1 is connect to the internet via adsl cable,
Router 2 is connect to router/modem 1 via LAN to Wan.
Ethernet cable from router 1 go to WAN port on router 2

Router 2 is DD-WRT

when i enter my username and password into router 2[DD-WRT]
web interface on HTTP.
With computer that connect only to Router 2 via Ethernet cable it is possible that hacker who found on network of the Router 1 [192.168.1.1] to sniff[man in the middle] those credentials ?

My router/modem 1 network is 192.168.1.1
Router 2 is 172.16.0.0
Sponsor
jxm
DD-WRT Guru


Joined: 23 Jul 2017
Posts: 726
Location: Brisbane, Australia

PostPosted: Wed Nov 14, 2018 0:27    Post subject: Reply with quote
If your DD-WRT router is connected via its WAN port to the first router, and is running NAT and firewall, and you don't have any trojans on any devices on your LAN, then te answer is no.. you cannot sniff packets on your prvate ethernet LAN through the WAN connection, only through the LAN.

Cheers
d0ug
DD-WRT Guru


Joined: 31 Jul 2015
Posts: 777

PostPosted: Wed Nov 14, 2018 7:58    Post subject: Re: It is possible to sniff credentials of router web interf Reply with quote
vvvw wrote:
My home network is build like that;

router/modem 1 is connect to the internet via adsl cable,
Router 2 is connect to router/modem 1 via LAN to Wan.
Ethernet cable from router 1 go to WAN port on router 2

Router 2 is DD-WRT

when i enter my username and password into router 2[DD-WRT]
web interface on HTTP.
With computer that connect only to Router 2 via Ethernet cable it is possible that hacker who found on network of the Router 1 [192.168.1.1] to sniff[man in the middle] those credentials ?

My router/modem 1 network is 192.168.1.1
Router 2 is 172.16.0.0


If they are on the LAN side of your network, by being physically connected, on your WiFi, or remoted into a compromised box or device then it is entirely possible to sniff the unencrypted HTTP sessions to get your password. Use HTTPS if this concerns you.
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Forum Index -> General Questions All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum