Reliance Jio Fiber Router are broadcasting hidden SSID even when Wi-Fi is disabled
- Thread starter f3rmion
- Start date
- Replies 97
- Views 43,579
For those who are actively concerned with this SSID thing:
Get a raspberry pi or arudino with powerful wifi module and send deauth packet for particular ssid 24x7
Get a raspberry pi or arudino with powerful wifi module and send deauth packet for particular ssid 24x7
Airtel Xstream Fiber Jio would still have to provide the credentials right ? It is still a monopoly unless they decide to make it vendor independent and they wont do that
Can you elaborate on the hardware bypass ?
@shashankb : It has been my experiences that when hardware related things become big has certain restriction which people want to bypass...it happens for e.g. PlayStation, VSNL old modem(which people hacked to get more speed in 56Kbits era)
You either need to abide your time or...
Open up the ONT , it is based on cheapest of ARM processors and I'm damn sure when these things are made they make them secure enough to not be bypassed by common person who can access 192.168.1.1 but not secure enough to be bypassed by person who can open and look inside the ONT to save the development cost (sad reality of software world)...so it just matter of time somebody takes a look inside ONT which will happen sooner or later.
If you want pointers: look into DEF CON 22 talks about TR069 stuff(very old 2010 stuff but TR069 exploits weer used a lot by Mirai botnet a few years back) or have your day with JTAGs and other stuff to play directly at hardware level...or if you pragmatic search for android vulnerabilities for the given version of android on ONT
You either need to abide your time or...
Open up the ONT , it is based on cheapest of ARM processors and I'm damn sure when these things are made they make them secure enough to not be bypassed by common person who can access 192.168.1.1 but not secure enough to be bypassed by person who can open and look inside the ONT to save the development cost
(sad reality of software world)...so it just matter of time somebody takes a look inside ONT which will happen sooner or later.If you want pointers: look into DEF CON 22 talks about TR069 stuff(very old 2010 stuff but TR069 exploits weer used a lot by Mirai botnet a few years back) or have your day with JTAGs and other stuff to play directly at hardware level...or if you pragmatic search for android vulnerabilities for the given version of android on ONT
GUYS IMPORTANT UPDATE ---
Source
I struggled with the hidden ssid issue myself and tried everything but those hidden ssids were still broadcasted.
BUT since last 4 days i made complaint and followed up , so ...
THIS IS THE FIX
STEP 1 --- Contact jiocare and make them to arrange a complaint as hidden ssid issue/router device issue AND ARRANGE AN ENGINEER VISIT . DON'T waste your time trying to explain to them the issue, they are dumb and won't understand anyway.
STEP 2--- When the engg arives, show him the hidden ssids being broadcasted in any phone app like ''WIFI ANALYZER/WIFI MAN''
He will tell you that its normal and other BS. You need to be persistent.PUT PRESSURE ON HIM AND HIS SENIORS. Thats the only way they work!!
Next, MOST IMPORTANT is to make him contact
JIO DEVICES TEAM by call via his phone . Those guys talk to the engineer via backend and turn off the hidden ssids THEMSELVES. It took about 1.5 hrs and he was constantly in touch with them on call and working on his laptop.
i asked the jio devices team person to guide me how to do it manually from my side ,but they said it can only be done via their side
also, if i hard reset the router ,i will have to call the same engineer again and repeat.
SEE THE PICS. HOPE THIS HELPS AND WORKS FOR ALL YOU GREAT PEOPLE IN HERE AND OUTSIDE as its a major security and HEALTH risk to beam sooo many hidden ssids at once.
Source
I struggled with the hidden ssid issue myself and tried everything but those hidden ssids were still broadcasted.
BUT since last 4 days i made complaint and followed up , so ...
THIS IS THE FIX
STEP 1 --- Contact jiocare and make them to arrange a complaint as hidden ssid issue/router device issue AND ARRANGE AN ENGINEER VISIT . DON'T waste your time trying to explain to them the issue, they are dumb and won't understand anyway.
STEP 2--- When the engg arives, show him the hidden ssids being broadcasted in any phone app like ''WIFI ANALYZER/WIFI MAN''
He will tell you that its normal and other BS. You need to be persistent.PUT PRESSURE ON HIM AND HIS SENIORS. Thats the only way they work!!
Next, MOST IMPORTANT is to make him contact
JIO DEVICES TEAM by call via his phone . Those guys talk to the engineer via backend and turn off the hidden ssids THEMSELVES. It took about 1.5 hrs and he was constantly in touch with them on call and working on his laptop.i asked the jio devices team person to guide me how to do it manually from my side ,but they said it can only be done via their side
also, if i hard reset the router ,i will have to call the same engineer again and repeat.
SEE THE PICS. HOPE THIS HELPS AND WORKS FOR ALL YOU GREAT PEOPLE IN HERE AND OUTSIDE as its a major security and HEALTH risk to beam sooo many hidden ssids at once.
Last edited by a moderator:
Great work, now this proves that it isn't a bug so why would jio make a hidden ssid?
There’s something coming up called LTE Unlicensed Access. It’s basically using 5Ghz or 2.4Ghz WiFi to broadcast LTE signals. Sort of like a small cell (femtocell) but devices won’t need special radios, just a software update to their internal LTE modems. But what this allows Jio to do is create a mesh network to cover building interiors with LTE through your routers which act as femtocells for their use… you don’t need to worry about your data quota exhaustion, this traffic is often bridged and separate from your traffic. Your router acts as a base station relay only, completely transparent to the end user, and so your LAN and WAN traffic flow on completely different VLANs.
They are able to completely control your WiFi radios remotely and it’s just a matter of time before they turn it back on again. You being paranoid about it is detrimental only to your own health because they have got it signed from you as a contract in which you have agreed to let them use “their FTTH assets” which are simply in your custody without your explicit consent in future.
