To help me resolve a technical problem TPG recently accessed my TPlink router to conduct a remote factory reset. Obviously, I trust TPG to remotely access my router to trouble shoot technical problems when they arise. What I don’t trust is having this ability to remotely access my router always turned on as a potential attack vector. To switch remote management off when I’m not requiring TPG support requires access to the default SU (Super User) password on my TPG supplied router. Can someone from TPG please urgently contact me so I can obtain this default password and disable remote management until I need it. One more point, please don’t tell me there is no SU password because I know there is. (Side point: I had this same issue with my TPG Huawei router and I had to log into the default Root password to fix it that, which also supposedly did not exist according to TPG tech support) NOTE: There are serious Cyber security concerns with keeping these remote management ports open (and its not ok from a trust, transparency and Privacy security perspective that TPG does not disclose this to ALL customers upfront and give them the option to accept, reject or alternatively be able to disable this feature when not needed.
... View more
I need to send confidential information in email from time to time (for example: account, bank, work, etc) and need to be sure that the TPG mail servers are achieving a secure mail transmission. I found an email domain report on https://luxsci.com/smtp-tls-checker which rated TPG at a "SMTP TLS" grade of "C" where gmail, telstra and optus, my bank and my accountant all had their mail servers rated as an "A" rating. According to the report the following need to be improved to be secure - refer attachment TPG_LuxsciChecker_2020-05-15.png. if this is true, I am concerned about the secure transmission of my mail over TPG existing email servers and account setup. Q1) Why isn’t TPG using the industry standard TLS V1.3 certificates? Q2) Why doesn't TPG allow implicit SSL/TLS option to ensure email information is not transmitted in plain text? Q3) Why is TPG promoting email account setup of customer with no email security and to use non-encrypted ports for example: Using POP Port 110 and not 995 or IMAP Port 143 and not 993? Even gmail is using implicit TLS and has TPC V1.3 certificates, is this not standard now? Please help, I wish to send and receive secure email and not have my personal information comprised. Have been trying to get onto TPG technical team for some days now, but it appears the COVID-19 situation is causing long delays in call backs which is very frustrating. Looking for closure that my ISP email service provider is providing at the very least the industry bench mark if not best practice with regards to secure transmission of email. Finally, if this is possible, how to setup the SECURE email settings ? Thanks In advance
... View more