Cable Modem Hackers Release Improved Firmware

FatCat writes "SecurityFocus has a story about a group of hardware and software hobbyists specializing in embeddded systems who've released their own custom firmware for Motorola Surfboard cable modems. The firmware lets you log in to an interactive VxWorks shell, or issue commands from a Web browser through an http interface. You load it by tapping an undocumented console serial port on the circuit board. So far, uncappers are apparently the primary consumers, and they're downloading up to 400 copies a day."

Loss of service

[mpost4]

I would think that doing this could put one in dangar of lossing their service. I this more then likely is a violation of the TOS of most cable ISP's and when you violate a contract( TOS's are contracts of a form ) you void it, so then the cable company is not obligated to server you any more. Is the promise of high speed you don't pay for (theft) worth the lose of service, and posable legal action?

Re:Loss of service

[MCZapf]

Your statement is false. Comcast, for one, is now advertisting its new faster service capped at 3Mb/sec instead of 1.5Mb/sec. Maybe in the past they didn't mention the caps, but they do now.

Re:Loss of service

[garcia]

I worked for ATTBI before they were swallowed up by Comcast. I still have an ATTBI hostname...

When the first round of "cable modem uncapping" documents started floating around to the masses I found plenty of open tickets that had been forwarded to the "legal department" for possible action. Most people had uncapped their modems to 10mbit/10mbit.

Apparently they had a script that ran that checked for this as they had quite a few open tickets all over the place. I guess it was not hard to find.

They would disable your modem, forcing you to power-cycle it. Then your modem would download a new, correct, config file. If they found that you were AGAIN in violation you were terminated.

Some people did not lose their service but most did.

Re:Loss of service

[Delf]

It's pretty straightforward. In exchange for being allowed to attach to their network, you agreed to use only certain (i.e. unmodified) equipment, and to allow them to access that equipment in order to ensure that it operates properly on their network (i.e. within the parameters they've decided to enforce.) It's not anything like trespassing on their part -- you gave them permission to do it when you signed up for the service.

Aside to Michael and FatCat: It's spelled "hobbyist".

Re:Loss of service

[Muad'Dave]

If they found that you were AGAIN in violation you were terminated.

Your service was terminated, right? I've heard of "substantial penalties" for breach of contract, but termination? Jeez!

Re:Loss of service

[l1gunman]

Your analogy is seriously flawed. Sattelite and cable signals are already coming into your house. You're not taking something that you're not paying for - the signals are already in your house.

This must be one of the most tired, and specious, arguments of all time. Though the signals may, indeed, be "in your house", those that you are clearly not paying for are protected, in some way, to inhibit you from accessing them if not authorized. You breaking open that protection to access whatever you want, to use your words, "is theft". It is that plain, it is that simple.

Here's another analogy like yours: Since you live in your parent's basement still, you must get your mail at their house, right? Every day your Mom picks up the mail that drops through the slot on the front door. Since they're "in her house" she can open whatever ones she wants, including yours, right? Bzzzzt. Wrong answer, thanks for playing. That letter that was addressed to you, though clearly "in her house" is not legally hers to open. Nor are those "extra" signals from the Spice channel that you're not paying for but want so desperately to see.

Re:Loss of service

[wo1verin3]

I think people forget about the problems that can happen when you uncap.

Re:Loss of service

[GPLDAN]

The Spice must flow!!

Sorry... couldn't resist.

So far...

[randomErr]

So far, uncappers are apparently the primary consumers, and they're downloading up to 400 copies a day.

That was until /. posted the link. Now something like 30,000 downloaded will be registered today.

Make that 40,000 now

Thanks to Slashdot, I'm sure it'll be 40,000 sometime today, that is unless Google changes their graphic to some sore of cable modem and beats Slashdot to the punch.

confused

[fjordboy]

I've always wondered why people go to so much trouble to uncap their cable modems and stuff. I used dialup for years and NEVER had to worry about messing with my modem to uncap it. My connection was burstable and had absolutely no cap!

Re:confused

[Pyro226]

I used dialup for years and NEVER had to worry about messing with my modem to uncap it. My connection was burstable and had absolutely no cap!

This is not actually true; "56k" modems are actually capped at 53k due to FCC regulations. I looked quickly on google and I couldn't figure out why they are capped and it doesn't really matter because almost no-one has a high enough quality phone line to get this rate. But there could be some dial-up hackers out there trying to get an illegal 3k.

Re:confused

[IWorkForMorons]

...when we finally got that low res porn we wondered why we had bothered...

I think I speak for many of us when I say I've never wondered why I've downloaded porn.

Re:confused

[aonaran]

It's because the higher voltage required to push it to 56k would cause enough crosstalk to interfere with neighboring voice lines which is what the telephone system is supposed to be used for.

Re:confused

[Fuyu]

According to this reply on NANOG, "What the FCC limits is the power (db) level you can place on the line in the PSTN. This is to limit crosstalk in copper cable bundles. This power limitation does not equal a speed limitation. This seems to have arisen from the fact that the first PCM modems - USR X2 units - could not go faster than 53.3K without violating the FCC power limitations. All other things being equal, the more power you can use, the faster you can go. To cover their ass USR put the disclaimer on the boxes talking about how X2 was capable of 56K, but limited to 53.3K due to the FCC blah, blah. Many people read this as the FCC having some cap on allowed speed since they didn't explain that the trouble was with X2's inability to go faster in
the allowed power band."

My Opinion

[TheRealMindChild]

Ok, while I HATE the fact that my cable is capped, and now I have some invisible limit to my cable modem, there isn't a court in the land that will side with me, blatently breaking a few laws, and ignoring the TOS that was agreed to.

Im just going to sit back for a while and hope something good comes of this... maybe cable providers will find that fighting with these people isnt worth the hassle.

Re:My Opinion

[Pope]

You're free to pay full market rate for your connection, just get a fractional T1 or leased line: problem solved! :)

Re:My Opinion

[lukewarmfusion]

My Comcast (and my Sprint PCS) TOS states that the TOS is free to change at any time, without needing any notification, additional signature or approval from me, and is enforceable without my prior knowledge. They can add fees and still charge a cancellation fee if I get upset and leave.

Something ain't right about that.

Re:My Opinion

[smellystudent]

"Uncapping" a modem refers simply to removing a speed limit implemented in the modem. It cannot remove speed limits imposed upstream, or monthly download limits. In fact, you'll just speed towards those limits even quicker!

Re:My Opinion

[gowen]

Something ain't right about that

Well, if I were you, I'd blame the moron who forged your signature on that particularly unbalanced and unreasonable contract.

Re:My Opinion

[BiggerIsBetter]

That goes both ways right? If they get upset about uncapping, just say you changed the terms.

Re:My Opinion

[xstein]

While hoping not to stray too off-topic, I've had a small experience with Sprint PCS quite recently.

As an extremely dissatisfied Sprint PCS customer (service was terrible in my area) I was looking for any way to break free from my contract, which I was unable to do a number of months without paying a $150 cancellation fee.

Upon receiving a notice from Sprint PCS that they would start charging for the previously free-of-charge service that allowed you to check your airtime usage from your phone, I called them and asked that my contract be terminated immediately as these were not the terms I had agreed to at the time I signed the contract. They offered me a better deal in an attempt to convince me stay with their service, which I declined, and happily closed my accout.

I advised my friends who were also hoping to leave their Sprint PCS contracts to do the same when they started charging a "Number Portability Tax" (this too before it was implemented), and they encountered similar success.

IANAL, but it seems to me that should you wish to terminate your contract when they change the terms you have a very firm legal ground to stand on. Whether or not they can terminate the contract when they change the terms, however, is another story.

Re:My Opinion

[The+Vulture]

While uncapping a cable modem cannot change monthly download limits, uncapping a modem certainly can remove speeed limits imposed on the upstream. That's one of the major reasons for uncapping a modem, to get more upstream bandwidth.

There's two sides to how much bandwidth is allowed to your cable modem, the modem, and the headend, called the CMTS (Cable Modem Termination System). As part of the modem's configuration file, there's either a Class of Service (DOCSIS 1.0) or a Quality of Service (DOCSIS 1.1/2.0) that controls how much upstream and downstream bandwidth you can get. On the CMTS, you can setup policies that dictate how much upstream and downstream bandwidth the CMTS will allocate per modem.

Most operators enforce the limits at the CMTS end (additionally specifying it in the modem config file), so that the values given to the cable modem are used just so that the modem doesn't waste it's time trying to push out/grab more bandwidth than the CMTS will let it have (in that case, the CMTS just wastes clock cycles in dropping packets from modems). However, if you don't enforce the values at the headend, then whatever the modem thinks are the correct values stands, and if you alter the config file, well, you've just increased your bandwidth.

-- Joe

Great, the bandwidth hogs

[Gr8Apes]

will be quickly disconnected! More bandwidth for me!

Re:Great, the bandwidth hogs

[haplo21112]

F U...You have the whole issue backwards, if the Cable company would just provide enough bandwidth all all users could go at thier full speed In my case 2/256 all the time...there wouldn't be any such thing as a bandwidth hog...I pay for a cable modem which is supposed to go at 2/256, and I don't think its at all unreasonable fr me to expect it to go a 2/256 whenever I want it too, and if thats all the time because I download/upload alot of stuff...(I ftp stuff back and forth from work, as well as send a shoutcast stream to myself at work so I can listen to anything in my music collection whicle I am at work)...then so be it, Its my Fing right as a customer to use what I purchased.

Re:Great, the bandwidth hogs

[Rostin]

I pay for a cable modem which is supposed to go at 2/256

I'm sure you do, but probably not in the sense that you seem to think is "reasonable." If you are like most people, you are paying for a modem which has been capped at those rates, which I'm sure you'll agree is a different thing entirely. It is "unreasonable" that you don't get 2/256 all the time only if you were guaranteed 2/256 continuously. I really doubt that you were. It is your right as a customer to use what you purchased, I agree. But it is not your right to expect service from your internet provider that they didn't agree to up front, and it sounds to me like you are griping because you didn't/don't understand what you agreed to, which really isn't anyone's fault but your own.

dropped carrier

[sinucus]

I'll have to say that with all the draconian rules being put in place with cable providers that I don't see this as being a new playground for crackers. You'll likely get dropped quicker than you can refresh the BIOS on that cable modem of yours. With DOCSIS compliant cable modems you'll be sure to know that the cable modem company DOES know what you're doing with it.

Re:dropped carrier

[ErichTheRed]

Yup, lots of people don't realize that. Especially over the last two years, cable broadband has emerged from the Wild West period. Now providers are actually looking at what's going on in their networks, and going after people who are stealing service. Of course, they don't have time to crack down on everyone, but they can easily collect statistics from the routers.

The thing that stinks is that our provider is great. They block a few common ports inbound to prevent casual abuse, but that's about it; it's fast and stable! Uncappers may ruin it for the rest of us with this firmware mod.

Re:dropped carrier

[clarkc3]

Of course, they don't have time to crack down on everyone, but they can easily collect statistics from the routers.

they dont have to take any special/extra time to crack down on them - they can check that with scripts, flag the account, and disable the modem.

VxWorks?

[Quasar1999]

It ain't free like linux is... so not only are they violating their AUP from their service provider, these guys are using software that they didn't pay for? WindRiver is gonna be pissed!

What will the companies do?

[toasted_calamari]

I have heard stories of cable companies coming down *extremely* hard on uncappers, doing things like banning them from having cable service for life and other such actions.

Given this, and the actions of DirectTV towards those who buy smartcards, I wonder what the cable companies will do.

Will they ignore those who download these firmwares for the advanced features like the remote terminals and have no intention of uncapping, or will they treat everyone who re-flashes their firmware as a "criminal".

Re:What will the companies do?

[DOCStoobie]

Well, some cable ISP's actually have it set up to where the CMTS (cable mdoem termination system) verifies both the modems firmware and config file source, to ensure that the modem is legit, and if the source doesn't match ... the CMTS won't route packets from that modem, or even allow it to pass on DHCP to the user's PC/router, so this will only work on some Cable systems

Is this right?

[ObviousGuy]

It's a simple question: Just because you can, should you?

Very neat

[BenDalton]

now if someone could do this for my cable modem. Although, I have to wonder how many people will use this to uncap their cable modem only to get in trouble by their provider. In this society, i wonder how long until the developers get sued by the people installing it on their cable modems because they got prosecuted by their provider? Sigh... what a nice little circle

Increasing Speed

[vpscolo]

Of course you can always setup a compressed SSH tunnel to speed up the text part of web browsing. I've found you get get upto 400% increases which is nice :)

rus

Re:Increasing Speed

[spectrokid]

Which would assume you have a computer on the other side for decompressing...

Hmm...

[Pxtl]

IANAA (I am not an admin) but shouldn't bandwidth capping be handled at the ISP's end, through a transparent proxy? Not through the cable modem? At the very least couldn't they just have the system automagically cut off service when the packets start flowing too fast, rather than getting into the legal minefields? Then they could say "I'm sorry, our system does not support uncapping" when someone tries and finds their machine not getting anything. Seems a more elegant solution than simply hoping nobody will try and then hosing lawyer hours at them when they do.

Re:Hmm...

[hattmoward]

The thing is, within a few blocks of you, cable modems are pretty much all working on the same piece of wire. There is a good amount of bandwidth to share out there (sorry, I don't remember, but it's A LOT), but if you use a transparent proxy, it's still possible to saturate the local segment and irritate other users. A solution using a bandwidth arbitrator for routing to users may work, but if all the cable modems run in full-speed mode, you get bursty connections while each modem waits its turn to go full-saturation. Unfortunately, uncappers don't realize that they're potentially screwing over someone else. I think that's the big beef that the ISPs have... They already planned for a high potential bandwidth, it's just that when you go from 1.5 to 3 Mbps, you're giving yourself a bigger timeslice on the wire. Other than that, DOCSIS (in its most common configuration) is a very Big Brother-ish protocol, and your ISP will know what you're doing the minute you do it... unless they're a bunch of monkeys with wire (read: Comcast).

Re:Hmm...

[tazanator]

Well this is comcast.. My tcpdump shows ARP traffic on my cable modem from 4 different class B subnets(XX.XX.xx.xx), and even 2 class A subnets (XX.xx.xx.xx) I could understand a class C subnet(XX.XX.XX.xx) but not traffic in class A corporate down at end user. I'm in Indiana and seeing customers in California reply to ARP's... wasted bandwidth. With this much ARP traffic allowed thru the routers it's no wonder they are short bandwidth and kicking bandwidth hogs. Comcast has great speed but at very high cost (about $60 in my area) and the limits and additional overhead they build into the network it's no wonder the people hate them. If I can wean my 10 year old daughter from the TV I will cut the cord and go to DSL (I want to run a game server anyways and DSL is only $30 out here). I am not surprised people uncap and reconfig the cable modem ... they do it to phones (voicemail, speaker phones, heck the ham's started long distance connecting the ham radio to a phone to get longer distance with out the bill), why should the inovative spirit stop at the cable company?

Re:Hmm...

[UID30]

couldn't they just have the system automagically cut off service when the packets start flowing too fast, rather than getting into the legal minefields?

You have obviously lost touch with your inner lawyer. :)

IMHO, the best solution is to alter the terms of all contracts with users (those who wish to cancel service can do so) ... the new contract should have a monetary charge in the order of cents per kilobit per second in excess of whatever the modem cap is. anybody that wants to uncap their modem, therefore, is welcome to do so ... and get a big ass bill the next month.

Re:Hmm...

[asdfghjklqwertyuiop]

I preached about this to Blizzard Entertainment for ages (via email, and on their forums) and they STILL don't get it.

Blizzard has been ignoring you because you don't know what you're talking about. It is simply not possible to design a game that has all sensitive computation being done on the server. The game will not be playable over the internet. It simply won't perform well enough.

Re:Hmm...

[ryanwright]

It is simply not possible to design a game that has all sensitive computation being done on the server.

What does a game need to send to the server?

- Character data (who you are, what you're saying)
- Positioning data (where you're at)
- Action data (spells you're casting, etc)
- Item data

The latter is where problem start: People can hack an item to give them whatever power they want. Then the client says "I'm doing 1,000 points of damage with my bare hands" and the server just eats it right up. There's no reason why this data cannot be checked! When I attack, the conversation should be:

Client: Attacking Hog Troll 125421 for 850 points of damage.
Server: OK, you're holding no weapons and wearing no armor. I know this because the last time you modified the items on your character, the client sent the data to me. The max damage you can do with your current outfit is 5, so I don't know what you're smoking. Request denied.

Re:Hmm...

[Eraser_]

ARP traffic coming out of california is an obvious mis-configuration, however seeing the various classes of addresses is not. IIRC cable comapnies were given the class A "24" to play with as they chose. When you get a DHCP lease in the 24 network, it should be chopped up by a subnet mask (like, 255.255.255.0) which turns it into 255^2 class C net blocks.

Your analogy to the phone system is flawed though. Speakerphone, answering machines (voicemail), people talking over HAM radio instead of picking up the phone all involve nothing which harms the Telco, or your neighbors. When you sign up for service, you agree that you will buy 1.5m/256k for $60/month. When you uncap your modem, you now use much much more than that, but at the same price. I would go after you as well.

If I generated electricity in my back yard with buttered toast and a cat, and then agreed to sell you a kilo-watt of energy every hour, hooked you up to a transformer which would only provide that much juice, and you came in and recalibrated it to give you two kilowatts per hour, I would either bill you twice as much, or cut you off. The only difference there is I'm not "the big bad cable company" nor THE MAN.

Plus, why not ditch your $60/month internet, and go with $30/month DSL, anyways? OR did that $60 include some form of CATV watching as well? I bet you want free HBO as well, since it's just a config in the box restricting you. It's just the lock on my door keeping you out of my house. I'll hit you with a baseball bat if you break it, though.

Monopoly

[lukewarmfusion]

In my area, Comcast is the ONLY option (outside of extremely expensive satellite alternatives). If they want to shut you off, they can. Then, you're screwed. I try not to do anything that will get me in trouble with them. Losing my cable, internet, etc. would be far worse than the tyranny of having my cable modem capped or my speed tiered. The problem is that they know this as well. That's why they can and do take these steps. My solution was the same one that Utah and others were going to do - city/state run broadband. It'd be just another utility and they could certainly offer it cheaper than Comcast. Plus, with the profits going back to the city or state, it would probably help lower/cut taxes. It's probably a simplistic view, and I realize that there are issues with letting the government control your internet access, but it would probably benefit the consumer much more than letting a monopolistic cable company charge $45 for crappy television and $45 more for internet access that goes down for "unscheduled maintenance."

This shouldn't even be possible

[huhmz]

Here in Sweden the caps aren't in the modems and quite frankly what kind of idiot ISP would do it this way? We are capped at the router or somesuch. I got 8 Mbit on my ADSL though which is maximum for ADSL so im not complaining.

Re:This shouldn't even be possible

errrr...... this is a discussion of CABLE not ADSL. ADSL lines are individual lines to the ISP's DSLAM, whereas cable modems are on a local network loop with other users, hence the need for capped modems......

Re:This shouldn't even be possible

[Quill_28]

Umm.. I believe cable modem use a shared line with other users.
I am certainly no expert but I think it is more difficult with this setup, than with DSL.

But I could be wrong

Re:This shouldn't even be possible

[Jarnis]

There is a big difference in technology when comparing ADSL and Cable modems. Yes, one could argue that the early cable modem standard sucks and is exploitable, but that's what is in use by millions of customers right now.

ADSL is single line from you to your local DSLAM. Zero issues with capping at the DSLAM end.

Cable modem has tons of users sharing the same cable, and the easiest point where you squeeze down what a single user can send/receive to the cable is your cable modem. Yes, there are ways of doing it at the ISP:s end, but they are either expensive or require nasty kludges.

Re:This shouldn't even be possible

[3Daemon]

Not really sure about the technicalities of cable-modem capping either.

However, I don't understand how so many businesses can actually base their plans on digital boxes being "tamperproof". To my knowledge, nobody has EVER successfully made anything digital tamperproof. DVD players, XBOX'es, Cable modems, Play Stations, all have been hacked. So why on earth do they keep trying?

Sure, it can make for some very tempting business models, but COME ON. It's like building your house on an erodable ledge by the sea, and then whine about it when your property goes bye-bye into the big blue.

Of course, as politicians seems to think such behaviour perfectly reasonable, and even write laws to support it, its never going to go away. :/

Re:This shouldn't even be possible

[jchawk]

Just on a side note for more info. . .

That's what is so cool about the DSL world, everything happens on that DSLAM, so the telco has control over your speeds.

Let's say you upgrade to a faster speed... Well remotely push an update to the port card you tie into that's in the DSLAM, then push an update to the modem and bam... You speed is upgraded.

The coolest thing to do is queue up a large download on the users PC, then push the updates to the modem and the DSLAM and you can actually see the speed increase. :-)

Then you can even remotely tweak the line that the DSL is running on... Not getting full speed that you are rated at? No problem just bump the voltage on the line a little bit and normally the problems is fixed. :-)

Content filtering on outoging packets?

[G4from128k]

It would be nice if these enhanced firmware systems provided some level of content filtering on outgoign packets. A simple test would see if key passwords, financial account numbers, or a honeypot file name were in any outgoign packets. If so, the modded device would kill the outgoing packet and log the destination.

Doesn't sound wise..

[stratjakt]

Could the cable company not quickly whip something together to scan all of their subscribers modems, and have a list of uncapped/hacked boxes in their hands within a few minutes, hours tops?

Or even better, can hackers reach this shell from the outside?

Sounds like a good way to lose your service and wind up in court.

Is it "bad netizenship"?

[djeaux]

Leaving aside the Sir Edmund Hillary rationale for hacking anything ("Because it was there") which is probably the #1 reason for any slashdottoid to crack out the soldering iron anyway, I have to wonder if this would be like circumventing any other speed limit. Aren't roadway speed limits set partly for safety & partly to control traffic?

If everybody "uncapped", would the result be enough net congestion that everyone would wind up getting "capped" speeds again? Is this a netizenship question?

As far as the ISP detecting "uncapped" cable modems, which has already been mentioned on this topic, I'd have to offer that my local cable provider employs so many utterly inept techs that they have trouble detecting when someone hooks up an unauthorized line to the pole, much less a change in the modem itself. That's why I've stuck with DSL -- 2 years with zero downtime, including a hurricane, while my cable service is down 3-4 times a week.

Re:Is it "bad netizenship"?

[JamesD_UK]

Leaving aside the Sir Edmund Hillary rationale for hacking anything ("Because it was there")
That was actually George Mallory who died whilst climbing Everest on June 6, 1924.

Harsh lesson for business

[Stiletto]

Lesson learned:

Don't stake your business on being able to place artificial limits on how users use a product they buy.

DivX learned this. The RIAA are learning this. the MPAA will learn it. And looks like broadband providers will soon learn it too.

Sniffing

[Quill_28]

So cable modem lines are shared.

If you got a shell from the modem, could you then sniff the traffic?

Just curious.

Re:Sniffing

[milgr]

More than a shell is required for sniffing traffic. I don't know what comes with the box, but typically the network drivers must be set up to sniff the wire in promiscuous mode.

Additionally, as the article indicates, the current cable modem standard supports encryption - so sniffing won't be so useful if it is turned on. The newer version of the standard has encryption turned on by default.

It's of no moment

[picklepuss]

It's interesting today, but it won't last. I wouldn't really bother with it. If the ISP is capping it at the modem and users find a way around it, the ISP will just figure out a way to cap it in a different place - they'll probably put the cap on the other end of the pipe where they have absolute control of the firmware/hardware.

I do think it's an interesting attack on the Cable providors who have an undocumented bandwidth limitation that they enforce. One would think that a potential benefit would be an increase in the number of people who are diconnected due to this invisible marker, and some court enforced clarification/disclosure of limitations. Sadly, the activity is obviously illegal, and therefore any potential long term gains from this kind of activity are rendered unachievable.

This won't last long

[Knightsaber2003]

As soon as someone from Motorola reads this, they'll be popping out new firmware to cable ISP's right quick. It's quite easy for the ISP's to push this out in a night or two. I do it for a living :)

Re:This won't last long

[Peridriga]

IDDWYDFAL (I don't do what you do for a living) but, couldn't it be possible for the flashed firmware have a option to refuse to allow a pushed firmware update?
Since essentially they are overwriting almost all of the programable material on the boxes wouldn't this be simple task?

Although you'd run the risk of your ISP saying if (modem.firmware != current_version) {disconnect_service}, I'd say that'd effect their QoS if some of the customer boxes didn't accept the update.

Re:This won't last long

[arctan1701]

hmmmm... i own my cable modem. my contract says nothing about allowing my cable company to access my computer systems and make changes. shouldn't this be a form of hacking/terrorism and be punished by death as it is for the rest of us?

Re:This won't last long

[tomcio.s]

No it isn't as simple as that in most cases.
See, in deployed network, where you don't have physical access to the box you can't afford to not be able to communicate with it.

So a company like Motorolla would not allow this to be a 'changable' option in the first place.

This is the US

We have to reserve a certain portion of all economic activity for our lawyers, else they're likely to run wild in the streets and start chewing the tires off cars.

With caps inside the cable company's network, there would be no oppurtunity for legal disputes and the resulting lawyer's fees....

Cheap VxWorks development system?

[jerryasher]

For engineers eager to gain VxWorks experience inexpensively, how reasonable a development platform is this modem?

Re:Cheap VxWorks development system?

[Quasar1999]

Umm, you are aware that VxWorks runs fine on an x86 based PC? Why muck around with a modem and hacking, when you could install VxWorks on a PC and worry about learning the system, not hacking the hardware.

Re:Cheap VxWorks development system?

[the_mad_poster]

Why muck around with a modem and hacking, when you could install VxWorks on a PC and worry about learning the system, not hacking the hardware.

I'm sorry, sir. You seem a little lost here. Are you aware that this is Slashdot? :-)

so the question becomes

[The+Tyro]

Why do this on a shared medium, particularly one you have to share with your neighbors? I like my neighbors, and I get almost 3.5 megabits down, which is pretty quick. Plus, my neighbors know I'm the cul-de-sac computer geek, and they'd probably come to me if their connections slowed to a crawl. What am I supposed to do? Play dumb when they ask me if I know what's up with their slow connections? That's pretty weak... and looks even weaker when the cable company tells my neighbors that someone in the neighborhood uncapped their cable modem... Hmmm... wonder who that person could be?

Sorry, but there's very few things worse than being a weasel.

Yeah, it's great to have m4d bandwidth, but you're really paying for a shared resource, and I think most people know that. Don't get me wrong... I appreciate the value of a good hardware hack as much as the next geek, but if you're using it to siphon huge amounts of bandwidth from your neighborhood node, that's a problem.

If you need huge, dedicated bandwidth, I'd say buy a T-1 line, or pay for a business-class account.

Re:so the question becomes

[Tassach]

T-1 is 1.5M down/1.5M up, on a dedicated connection. Comcast's standard offering is currently 3M down/256K up on a shared connection, which is more or less typical for cable modem. Remember that a basic T-1 package will almost invariably have a SLA guaranteeing that you won't have more than N minutes of downtime per month, at least 5 static IP addresses, and a noticable absence of draconian/asinine AUP terms. Of course it's going to cost roughly 10X as much as a cable modem connection, but it's well worth it if you really need those extra features. Of course there's SDSL if you're close enough to your CO, which can give you the same features as a T-1 for about 1/2 the cost. The Covad web site has rates posted, if you want to see real numbers.

Re:so the question becomes

[Awptimus+Prime]

Do you actually think they run another line for a business-class account?

I think that's the point, exactly. There are others paying for the bandwidth, while some kid with a hacked firmware is, in essence, stealing it.

Just because it's there, does not mean it's there for the taking. If you need the extra bandwidth, don't steal it. Buy it.

Also, just because the cable modem ring concept is flawed and difficult to control, by design, that does not make it justifyable to steal from them any more than it does to steal from music artists by downloading Mp3's. If you are going to be a criminal, don't play like it's not wrong. Accept that it's wrong, and get your kicks on the idea you stole something. That's less sick than the relentless and asinine justification I see all through this thread.

Re:so the question becomes

[BLKMGK]

Actually to me th question becomes - what can it do OTHER than uncapping? Are there any legit uses for this? The article mentions the possibility of firewall and NAT but that's not yet done. What else does it do NOW?

Re:so the question becomes

[nolife]

Why do this on a shared medium, particularly one you have to share with your neighbors?

All bandwidth is a shared medium. DSL to your house is not shared between you and the CO but that unshared segment is useless. Everyone in your neighborhood uses that same CO and you all are sharing the pipe the CO has. Not much different then a CM. I'd imagine a T1 from that CO to your house would share the same upstream also. If your CO has a good pipe you may not notice it, if it is small, you all will suffer the same. I do not know under what conditions the responsible CO party decides that the CO bandwidth needed upgraded but I'm sure /dev/random plays a role.

Re:so the question becomes

[thedillybar]

I heard "VxWorks shell" so I'd imagine you could run whatever processes you'd like on it.

Might be useful for the few geeks they don't leave their machines on 24x7.

How to handle uncappers fairly?

[lordmoose]

Okay, I work for a cable ISP. We don't want to send jack-booted thugs to shake down some 13 year-old kid who's just hacking to see what happens (I've been down that road myself). What is the best way to handle someone who uncaps their modem?

I'm not the SysAdmin, just a concerned employee.

Re:How to handle uncappers fairly?

[base3]

Cut off the user's service, and when they call, say that you noted a "network anomaly" and will need to reset their client equipment. Reset the parms, turn the service back on. No accusation necessary, and the subscriber will probably get the message.

If it were to happen a second time, it would be time to either permanently cancel the user or escalate to less subtle threats.

Re:How to handle uncappers fairly?

To do it fairly requires:

1. a good upstream end (high end CISCO)
2. A "fair share" scheduler

The goal of the "fair share" scheduling is to make a history of usage part of the scheduling. Packets are "delayed" in delivery until the users "fair share" limits are reached.

If the bandwidth maximum has not reached, then everyone gets full speed, BUT their usage is tracked. This tracking also involves a decay function to subtract from the usage.

When the bandwidth reaches maximum, the individual destination packets are delayed by an amount proportional to the current "usage" level of that destination. Since new connections (or idle ones) decay to a 0 usage, they end up getting preferential treatment. Once saturation occurs, the heavy usage distinations are delayed while the new connections accumulate usage.

It is similar to a priority heirarchy - no use - high priority... high usage - low priority. Over time, all usage becomes balanced, and the maximum bandwidth becomes shared among all targets.

The usual difficulty in "fair share" algorithms is in determining the "decay" function. Since it is time based you have the number of seconds vs consumed bandwidth. You also don't want it to delay too long (you want the packet delayed in the 10-500 ms range, but the packet itself transmitted in as short a time as possible).

You are shaping the traffic.. And I thought this was part of the newer routers...

Re:How to handle uncappers fairly?

[HeghmoH]

There should certainly be a less-subtle threat somewhere before permanent cancellation. It is utter bullshit if somebody pulls a stunt where they call you, say "we found some problem, can you reset your equipment?" with the hope that you will get the message, then cancel your service just because you thought your experiment and the phone call weren't related.

My high school pulled stunts like this, revoking my account whenever I violated rules which they never told me about, without so much as a warning beforehand. It's not a tactic worthy of a profit-making business.

I work for a cable ISP...

[strAtEdgE]

... and I can tell you that this wouldn't work on our service. Nor almost any cable service. You would get cut off within the day you started to exceed your bandwidth cap.

As for the question "why is the bandwidth capping happening at the cable modem?", I beleive the answer is that it has to so that the CMTS bandwidth (the bandwidth on the cable plant between the modem and the cable router) is not used up. But that's not to say that the bandwidth you use at the cable router end isn't closely monitored. Hence why you will get shut off in no time flat when you start to exceed your provisioned bandwidth.

Re:I work for a cable ISP...

[drcobb]

If your employer is like most, your checks could easily be circumvented by frequently resetting the SNMP counters on the modem. Most providers only check the CPE snmp counters rather than running any sort of IP accounting on their end for speed/lazyness. In one instance I know of a provider that bitches if you transfer more than 1gig a day. I'm not sure about this firmware, but this problem was solved for a 'friend' by using an APC masterswitch and a cronjob resetting the modem 10 min before every time the snmp counters were polled by the ISP. I'm not sure of vxworks but several other firmwares for other vendor devices allow you to clear snmp counters on the fly...

No way!

[Prince+Vegeta+SSJ4]

in fact I've been getting the lowest latency ever ever! Look Out Duke Nukem Forever!

SEE!

c>ping -t www.google.com

Reply from 216.239.41.104: bytes=32 time=10ms TTL=244

Reply from 216.239.41.104: bytes=32 time=17ms TTL=244

Reply from 216.239.41.104: bytes=32 time=7ms TTL=244

Reply from 216.239.41.104: bytes=32 time=4ms TTL=244

Wooho^C^C%%$*&$%.Destination host unreachable

T1? Don't think so.

[jasonhamilton]

It's funny that you said "huge, dedicated bandwidth" and T1 in the same sentence, especially in this context. If you opted for a T1, you'd be limited to around half your current shared bandwidth, so your reasoning confuses me.

They got too much attention...

[babymac]

Their site was pulled completely just moments after this story was posted:

http://www.tcniso.net/

Re:Spelling nazi...

[troc]

Is a hoobyist someone who discriminates against hoobys?

If so will all companies eventually be forced by law to employ a certain number of hoobys in some sort of perverse positive discrimination?

Will we get "hooby rights marches" and will Holland allow two hoobys to get married?

Enquiring minds etc etc

troc

cap?

[wfberg]

"So far, uncappers are apparently the primary consumers, and they're downloading up to 400 copies a day."

If they just downloaded it once, maybe they wouldn't exceed their cap?

No

[The+Tyro]

I know for a fact they don't run another line, because I purchased one of their business-class accounts for my corporation.

Why? Running servers for one, and I also get priority for bandwidth on the node, as well as better tech support (which I basically never use... calling tech support is a sign of weakness). Yes, it costs more, but I knew my utilization would be a good deal more than average, so I paid for the next level of service.

I personally suspect the uncappers are after some better upstream pipe... that's where residential accounts are seriously lacking compared to a T-1.

Screw uncapping, I just want my diagnostics back.

[Resaurtus]

Cox locks us out of the SNMP interface on our own modems. Now I understand taking away write privs but I feel I should have the right to see exactly how my modem is configured. Little things, like exactly what is my cap set at? Is it seeing errors? Whats my power level and SNR?

As I own that hardware, I feel I have a right to see how well it's working. Many issues (Like signal loss) would likely be within my own home and something I could fix. This software would probably let me read this information, however, as I don't own one of the modable products I'll probably look for one with all the info I want on a web page rather than getting a hackable one.

You forgot the second half of that

[BLKMGK]

256K UP. Frankly I'd like a little more upside bandwidth. I would LOVE to be able to setup a small FPS gaming server but the low bandwidth going up prevents many of the interesting games from being played. I have IDSL also because my cable company won't allow hosting of content either - that sux. IDSL is only 144K and while it can do some VOIP stuff it's not enough for FPS games either. I would GLADLY pay extra for the bandwidth I desire but COMCAST says no such plans exist...

AGGH!!!! GET A SPELLCHECKER!!!!!

[jeddak]

"...group of hardware and software hobbiests..." that's spelled hobbits, thank you very much.

Slow Upstream

[Nintendork]

I don't use much of my downstream. Maybe 50MB per day average. I do most of my surfing and downloading at work. What I do need though is faster upstream bandwidth. Right now, Comcast is limiting it to 256kbps (32KB/sec.) and I need around 768kbps to host Halo games on my Xbox. If they had a plan where I payed $10 more a month or something close to that for the increased upstream bandwidth, I wouldn't hesitate to go that route.

-Lucas

Re:Screw uncapping, I just want my diagnostics bac

[detritus.]

What kind of cable modem do you own? The surfboards have always (from at least the SB3100 and up, from my personal experience) had a web interface (192.168.100.1) that displays upstream and downstream power levels, frequency locks, SNR, as well as an event log. I have Charter cable. SNMP would be nice if it were accessible to the customers (to set threshold monitors, etc.) but having the web interface is much better than nothing at all. I don't know if they have the capability to lock out the web interface, but there's really no point in it.

Re:cable "modem"?

Enlighten us, then, oh wise Yoda, how to call these wondrous devices?

Cable or DSL modems are called modems, because they are essentially signal MOdulators/DEModulators. They function essentially the same way as an analog modem. DSL modems even use the same physical line, but communicate over a different set of frequencies then analog modems. Ditto for cable modem, the main difference being that cable modem taps into the cable line, while DSL modem taps into more-or-less standard phone lines.

So yeah, us illiterate slashdroids call these mystical devices cable or DSL modems, 'cause we are so ILLITERATE. :P

If only basic literacy came with obligatory logic and general knowledge module attached. Alas, the wonders of classical education, now long gone.