I have been lately experimenting with GL’s DDNS and GoodCloud. I have some concerns for these services and the way they are set up:
When you bind your modem to the glddns.com, the password that is going to be used is the device serial number (S/N).
- That’s fine. But I noticed there is another serial number that is called device_sn_bk. I tried to bind to the DDNS using it, but failed. So what is the use of this backup serial?! I am afraid that someone would use it to remotely login to my modem!
The other concern is that the username for binding to the DDNS is the device_id. Again, the device id has a prefix two characters. For example, a device from Greece would have its id like: grxxxxx. Where did these two chars came from? It seems to me they are the Country Code! If so, then some attacker who manages to find your modem can also identify your country!
NOTE: I also tried to bind to GoodCloud with the backup serial number but it did not work.
I hope we have clear answers form GL engineers so that we have more trust to use these great services!