[asterisk-users] Adit 600 password reset

Jerry Jones jjones at danrj.com
Thu May 29 08:22:30 CDT 2008 

Just noticed end of thread here. Not sure if it was mentioned but the  
newer - less than a few years - have a backdoor that works. Have not  
been able to get it to work on older units though. Here are my notes  
from the last time I tried - no warranties from me;)

Obviously via a serial connection.

PowerON

Restoring "Factory" Defaults

Stop the boot
press 1 and enter
type e db and enter

BOOT [?,c,p,t,x,y,z]: 1
BOOT debug ON
BOOT [?,c,p,v,t,x,y,z,@]: e db
  Preserving Mac= 0:e0:92:0:83:8
  Flash Man=Atmel(1f) Dev-AT29LV010A(35) 8K Locks: Lo=NO(fe) Hi=NO(fe)
  Erasing App DB…
  Erase Done!
BOOT [?,c,p,v,t,x,y,z,@]: 0
BOOT debug OFF
BOOT [?,c,p,t,x,y,z]: x

Looking for valid application image in Flash…

One Moment >>> Decompressing Image…
Attached TCP/IP interface to cpm unit 0
Attaching interface lo0…done
System startup
ERROR: Unable to recover db from flash.
        Creating new flash image.
CRC Error in OEM Data

[……………………]

Startup complete

On May 23, 2008, at 10:26 AM, C F wrote:

> yes that's how I figured out the username. since it returned incorrect
> login before the password prompt on the wrong username.
> I a don't know the password however.
>
>
> On 5/23/08, Shane Young <asterisk3 at shaneyoung.com> wrote:
>> Quoting Doug Lytle <support at drdos.info>:
>>
>>> C F wrote:
>>>>>
>>>>
>>>> Then there is basicly no way to do this besides for cracking it? I
>>>>
>>>
>>> Not that I am aware of, no.  This subject went around several years
>>> back.  They also talk about brute forcing the password as well.   
>>> As far
>>> as I recall, nobody came back saying they were successful.
>>>
>>>> have already figured out the username, now I just need to figure  
>>>> out
>>>> the password. What is a good screen automation program that can
>>>> bruteforce this for Windows?
>>
>> I had the same problem with one of mine.  I smply forgot the  
>> password.
>>
>> I seem to recall that the adit had a flaw in it, where it was obvious
>> by the error message returned if you had the correct length username
>> and password, which should make your brute-force attempt much easier.
>>
>> --Shane
>>
>> ----------------------------------------------------------------
>>
>>
>> _______________________________________________
>> -- Bandwidth and Colocation Provided by http://www.api-digital.com --
>>
>> asterisk-users mailing list
>> To UNSUBSCRIBE or update options visit:
>>    http://lists.digium.com/mailman/listinfo/asterisk-users
>>
>
> _______________________________________________
> -- Bandwidth and Colocation Provided by http://www.api-digital.com --
>
> asterisk-users mailing list
> To UNSUBSCRIBE or update options visit:
>    http://lists.digium.com/mailman/listinfo/asterisk-users

More information about the asterisk-users mailing list