Vodafone: Yes, we slurp data on customers' network setups, but we do it for their own good

BT does the same

All BT Home Hubs send back these details of your personal network, despite this being your private data.

So...

For the benefit of an ignoramus such as myself, this can't be avoided by not using the Vodafone supplied router?

"Our service helps overcome these issues"

Could someone please explain to me how capturing the MAC and IP addresses of the stuff I use in the privacy of my own house is going to overcome any issues whatsoever ?

I am well aware that any service provider likely has this capability - after all you're paying it to provide you with connectivity, so it obviously has the means to manage that connectivity. And that includes knowing what you connect to its service. Fine.

Except that, I can have a WiFi printer that the rest of computers can use. That printer is not going on the Internet, cannot be used from the Internet, and my computers using it do not send anything over the Internet to get to it to print. So why should my provider grab that address and what can it do with said address to "overcome these issues" ?

Apart from being able to tell me what I have connected to my network, I don't see how any provider can optimize anything at all with that information. And I'm not saying my provider is selling that info, I don't think so, honestly.

So what good it is to have that info ?

And that is why

Even though I am not a Voda customer, my ISP's modem is used solely as a pass through modem, with all the wifi and other gubbins turned off and handled by my router.

And this is why you never use the ISP supplied router.

I'd add never use one of the BIG 5 but most people prefer low price and bundled footy deals over security, reliability and speed so there's no point.

Connection management

Vodafone manage their connection points remotely and give client connections something very like NAT: the other end sees a generic Vodafone IP and not the client connection's IP. Does it with IPv6 too, so I am not sure if that is NAT or something else like a VPN or some mobile protocol or whatever. Certainly, my login to Wikipedia is frequently tainted by vandals given the same dynamic IP, be it v4 or v6. Then, the remote manager also has a subscriber web interface so we can log in and fiddle with things like net nannies and firewalls.

They obviously need to record a fair amount of shit to do all that. Not convinced they need to slurp /that/ much, though.

This combined with the ongoing outage since 9PM last night makes me glad my contact is up in under a month.

I am a Vodafone customer, and I know why their service is so ****!

Two reasons.

Vodafone use the "stable" profile - most UK FTTC ISP's use the "Gaming" profile. I didn't find this out till after switching and I've gone from 38Mb download sync speed to 33Mb. Not great.

Vodafone's supplied router is terrible. Why? Two reasons actually.

One the wifi is poor. They talk up AC standard and Beam Forming. Heads up Vodafone, it doesn't work. After switching I couldn't get wifi in my bathroom, ruining my "alone time".

Two, due to some firmware bug to do with FEC(?) errors, the router will re-sync the line to try and stablise it. Not good! The BT end sees all the re-syncs and thinks the line is unstable. The "stable" profile they use is more cautious about sync speeds and drops it down. The result, your sync speeds get lower and lower over the course of time. It settled at 25Mb for me. This is a line that was a solid 38Mb with Sky for 2 years. Hmm...should've eaten the price increase!

I managed to fix some of the above by buying a new router at my own expense. I won't plug makes/models, but suffice to say my wifi now reaches my bathroom again, and the sync speed has recovered to the above mentioned 33Mb. Still not 38Mb, but less of a noticeable reduction in day to day use.

Note that if you do change router like I did, it can take quite some time for sync speeds to recover. The BT end needs to see 7-9 days of stability before it tries to up your speed a little bit. In all I think it took about 2 weeks to get back up to 33Mb. My router reports my line is capable of the 38Mb I had previously, but the "Stable" or "Business" line profile Vodafone insist on using is preventing me from getting there.

Vodafone = AVOID! I will be leaving as soon as my contract ends. Wish I had known some of the above before joining, but a lot of the "real" informaiton about ISP's that customers need is hidden. Like the line profiles ISP's use. Not published or easy to find out.

P.S. If anyone cares...my cabling from master socket to router is CAT6. The cable the ISP sends you is garbage. Go on eBay and buy one, I guarrantee it will improve your FTTC sycn speeds immediately!

Hmm,

I'm with Virgin and I have their app which allows you to check your status and get an automated check of the router, which resets it remotely. I have so I can use the data on my phone to see if it's my router or the local cabinet (the dogs pee on it). They also know how many times recently I have reset my modem since if your ring they will note that fact. I've never seen anything which says they slurp MAC addresses from it though.

Helpline staff training also doesn't seem like it was. They sent me a new modem, same as the old one except for a phone socket. It wouldn't remember my settings on it. The original helpline dude asked why I would want to change from the default settings . . . I don't broadcast or advertise it's presence. You have to know it's there and the name of the bit you want to connect to as well as the correct password (set by me) to connect to it. It will not appear on your list of available WiFi's. i got it kicked upstairs and got a very helpful and pragmatic Brit who just advised me to go back to my old router. I still have the borked one, they didn't want it back.

I'm not interested in the neighbouring teenagers using it for nefarious activities and me getting a visit from the Polis.

I can see two other WiFi's which both look bog standard. One BT, one Virgin. I wonder how divorced from the discoverable numbers on the device the default password is.

"it gives a third party that information [...] there is no way to opt out"

Uh... GDPR?

Auto channel

I though and half decent WiFi router or AP had an auto select best WiFi channel?

No reason at all for the ISP to know that channel let alone the devices connected to it.

If they wanted to improve customer support maybe add that functionality to the Vodafone app? Something similar to WiFi Analyzer maybe, it's then opt in and would allow you to walk about to find signal strength issues etc. Probably too easy though.

IANAL bit it seems extremely dodgy for a service provider (with whom you have a contract) to demand that you agree to having your personal data handed to some third party (with whom you have no contract,no legal relationship and no contact). It sounds like the sort of thing that should not happen by default and not without a customer's explicit permission.

Easy way out

I've been on at Vodafone about this since they emailed me. Turns out the easy way to opt out is by doing what I've been doing for ages. Use your own equipment, not Vodafone supplied router.

It's still ridiculous there isn't a way to opt out officially.

PPPoe credentials are fairly easy to extract from nearly all locked down CPEs. Most of them have ppp on default config, so there is a PAP fallback mode. So all that is needed is to fire up a PPPoE server that doesnt off chap authentication. Next plug the wan port of the CPE into the nic running the PPPoE server. Not long after you will have the details in your ppp logs, or failing that wireshark

Sql names

Anyone with Vodafone adds a server name to drop their database? Just sayin...

The ICO [praised] Voda, telling us: "It's important that organisations are transparent "

That's alright then - you can carry on abusing your customers as long as you tell them you're doing it.

Next, it'll be OK to mug someone as long as you shout "this is a mugging" - right back to the "stand and deliver" of the 18th century.

In my practical experience both as a private person and a data protection consultant, the ICO is now hardly worth its (admittedly limited) budget. Under its previous leadership is was actually better on much the same resources.

Time to rename all my wifi smart bulbs and connect up that box of esp8266's. Might as well spoof the mac addresses while I'm at it.

Not a new thing at all.

I had this with a former ISP probably about 8 years ago. That's why I avoid using ISP-provided kit if I can. Basically I called up because my sync speed was slow, and the person I spoke to didn't understand the problem. To them "internet slow" just meant "wifi slow", and so they asked how many devices were connected. I refused to answer, since it was irrelevant, and they started reading off the hostnames of devices on my network. Not acceptable behaviour.

So since then I've been using modems whenever possible, with a MikroTik RB2011 running my LAN. For Vodafone I'll get a 15% discount if they can't get me 25Mbps (good luck) but only if I use their modem/router and use their app to claim the discount. Not a problem. With RouterOS I can isolate a(n RJ45) port off the bridge and still use it as my primary gateway. The only device the Vodafone router sees is my router. For traffic coming the other way, my router becomes the DMZ host. To use the app, I just connect to the router's wifi with my phone. A waste of a good AP, but IDGAF. I've got CAPsMAN.