[update: Turns out it was a false positive, the problem occurred a second and third and fourth time, this time while totally disconnected from the internet, and on another machine; turns out there is some kind of bug that breaks the password; I can’t get in luci, or the main gui; In luci, I would log in successfully, but accessing page from the drop down menu resulted in my falling back to the login screen, where it says “no password set” and I’d proceed to put in a new password, and the loop would continue over and over again. At one point I had managed to login successfully into luci, and managed to access the dhcp page in the link near the bottom of initial login page, but was promptly logged out as soon as I accessed the drop down menu. Then I was unable to login to the main gui menu! As was happening on the initial post. So its a bug, not a hacker. At other times, I was able to login to the main gui, but not luci.]
Out of the blue my password was no longer accepted. I was no longer able to login to my router and was forced to do a factory reset; This occurred no less than 6-7 hours after receiving the item, and updating to the latest firmware. I had disabled samba, ipv6, ddns, and wan3.
It is protected behind An asus68u router with Merlin, hardened and secured with skynet, dnscrypt and dnssec; I had only one device connected to it at the time, that being an Iphone over wifi; wan was set to the Asus router. The iphone was also plugged directly into the USB port in the router in the timeframe this occurred.
So it appears either the Iphone was hacked, and was able to easily bypass router security via wifi, or via usb; or the gl has known exploitable hardware/software vulnerabilities.
Looking a little deeper; My sandboxied browser had unexpectedly crashed while typing into this forum; I have since cleared the sandbox. This suggests it is possible the parasite had gotten its hands on my password. Though once again, the only device connected to the GL at the time of this password change was my Iphone.
Other suspicious activity:
There were 9 firewall inbound and outbound entries on my windows pc that had been enabled without my permission; and which were previously disabled; previously I allowed zero inbound connections, and most of these rules pointed to ports whos services and drivers had already previously been disabled.
I’m using roughly the same plugins in chrome as firefox when it comes to modifying web content, ublock origin, umatrix, disconnect, https everywhere…etc. I am using a useragent switcher in Chrome as well; set as a linux machine using firefox; maybe thats the issue; the first thing I would have checked if id have not forgotten.
I am having trouble changing my password to the GL-Inet ML 3000 device. I keep getting a old password error message. However, I properly inscribed my old and new passwords? Is there a constraint in the fields? i.e. charaters that are not recognized, number of characters for the password, spaces? etc? Or could it be a bug?