Tomato Linksys e900 - Change built in default password

Discussion in 'Tomato Firmware' started by tdas777, Jul 10, 2014.

  1. tdas777

    tdas777 Network Newbie Member


    In my home my younger brother knows how to reset the router to default password.
    Everytime i set limit, he resets it.
    Is there any way to change the built in default password from "admin" to something else.
    So that after pushing the reset button it won't change to "admin"?
    Firmware: Tomato v.1.28 by shibby

    Please help.

  2. lancethepants

    lancethepants Network Guru Member

    Yes, but you'd have to compile your own version of tomato. There's a file called defaults.c, and there you can set the default nvram values for when a reset occurs. It's only a small change, but the tricky part if you're not experienced is compiling it.
  3. tdas777

    tdas777 Network Newbie Member

    Well, i noticed a section in firmware page (Administration - Buttons/LEDs), where a custom script can be run if button is pressed for X seconds. So if a script can be written to reset everything except password, then it'll be perfect.
    Now i don't know, which button it's reffering to and how to compile a script for that.
    Well if this custom script is not the solution, then please tell me how to extract this tomato firmware, edit the nvram values to custom values for my purpose and repack the firmware perfectly, so that after flashing this, the router works correctly.

    Thanks a ton :)
  4. lancethepants

    lancethepants Network Guru Member

    I don't think you can do this through firmware extraction (firmware modification kit?). defaults.c is a compiled c-file. No way you can modify it once it's already in the firmware image.
    You need a linux environment debian(I prefer) or Ubuntu.

    Here's a little bit of a guide.

    Once you clone the repo, you'll run.
    git checkout tomato-shibby-RT-N.
    I think it's the tomato-shibby-RT-N branch you'll want for that router.

    Follow instructions in link for setting up toolchain.

    Modify the release/src/router/nvram/defaults.c file with your desired password.
    cd into release/src-rt
    make help
    for a list of possible builds.
    Pick one for the E-series routers, that will fit in 8mb flash.
    make V1=120 V2=shibby n60*
    Someone else want to make any corrections? You have to be careful so you don't brick your router.
  5. tdas777

    tdas777 Network Newbie Member

    Hey ,
    Thanks for the help.....
    I'll check that link and points you told.
    Well i dont have linux / Ubuntu; never required.
  6. Siff

    Siff Serious Server Member

    @tdas77: Put the router in a locked cabinet or use one of the plastic boxes which are used to lock thermostats, etc. (you'll need a bigger one, of course). Also, make sure that your brother doesn't have access to your WAN connection since he can simply connect directly to it or just bring another router.

  7. tdas777

    tdas777 Network Newbie Member

    @Siff: if you can genuinely help then comment, or else dont waste time, urs n also mine
  8. Siff

    Siff Serious Server Member

    Sorry, if you think that I'm making a joke with you or something, but my advice is absolutely serious. Of course, it is entirely up to you whether you'll take it or not.

    Good luck!
    Last edited: Jul 13, 2014
  9. Malitiacurt

    Malitiacurt Networkin' Nut Member

    Sorry but if someone has physical access he's gonna keep circumventing your rules.

    I've seen this time and time again, kids will learn to circumvent rules the tighter you squeeze. Better to talk to them than figuring out how to block every method.

    Nothing`s stopping him disconnecting the WAN port and connecting directly, or putting another router/switch in between. He'll likely also learn to switch his mac, etc.
  10. Mercjoe

    Mercjoe Network Guru Member

    You hit the nail on the head. I learned more about network security and how to get around it from my kids.

    Simple solution, explain the rules to them. If they break them then REMOVE all access. That is much easier then limiting the amount of access.

    They will only push you once.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice