
<div dir="ltr">Many of the radios on <a href="http://sdr.hu">sdr.hu</a> require a password to use. From the looks of the web page that's presented for login, it appears to be part of the radio firmware (ie, same style, colors, etc). Depending on how the attackers are exploiting the radio, that *might* prevent them from getting in. But, of course, I have no idea how they're actually doing it. It might be some flaw other than the web interface. If that worked, it would be just a matter of figuring out how to distribute the password without giving it to the whole world.<div><br></div><div>Anybody know how the other <a href="http://sdr.hu">sdr.hu</a> users prevent this? Or do they just re-flash constantly?</div><div><br></div><div>Jeff N0GQ</div><div><br></div></div><br><div class="gmail_quote"><div dir="ltr">On Fri, Sep 28, 2018 at 10:24 AM Bart Kus <<a href="mailto:me@bartk.us">me@bartk.us</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">

  
  <div text="#000000" bgcolor="#FFFFFF">

    More precisely, I've turned off its Ethernet port on the switch

    until someone can find some suggestions for how to keep this device

    from getting pwnd every time it's put online.  I don't have the time

    to do that research right now.  Let me know what y'all find in this

    thread.<br>

    <br>

    --Bart<br>

    <br>

    <br>

    <div class="m_-1525514004083948503moz-cite-prefix">On 9/28/2018 10:09 AM, Nigel Vander

      Houwen wrote:<br>

    </div>

    <blockquote type="cite">

      
      David,

      <div><br>

      </div>

      <div>We’ve had issues with this SDR device getting

        compromised, so it’s currently been taken offline while we look

        at options.</div>

      <div><br>

      </div>

      <div>Nigel<br>

        <div><br>

          <blockquote type="cite">

            <div>On Sep 28, 2018, at 10:08, David Haworth via

              PSDR <<a href="mailto:psdr@hamwan.org" target="_blank">psdr@hamwan.org</a>> wrote:</div>

            <br class="m_-1525514004083948503Apple-interchange-newline">

            <div>

              
              <div style="word-wrap:break-word;line-break:after-white-space">Hi,

                <div><br>

                </div>

                <div>Haystack SDR was working fine last

                  weekend.</div>

                <div><a href="http://www.stargazing.net/david/sdr/HamWAN.html#P1d" target="_blank">http://www.stargazing.net/david/sdr/HamWAN.html#P1d</a></div>

                <div><br>

                </div>

                <div>For the past three days Haystack SDR </div>

                <div>

                  <h1 style="color:rgb(51,51,51);font-size:1.6em;font-weight:normal;line-height:1.25em;margin-bottom:16px;margin-top:0px;font-family:system-ui,sans-serif;font-variant-ligatures:normal;background-color:rgb(255,255,255)">This site can’t be reached</h1>

                  <p style="display:inline;color:rgb(100,100,100);font-family:system-ui,sans-serif;font-size:15px;font-variant-ligatures:normal;background-color:rgb(255,255,255)"><strong><a href="http://44.24.241.55:8073/" target="_blank">http://44.24.241.55:8073/</a></strong> is

                    unreachable.</p>

                  <div><br>

                  </div>

                </div>

                <div>Has Haystack SDR URL changed?</div>

                <div><br>

                </div>

                <div>73 David WA9ONY</div>

              </div>

              _______________________________________________<br>

              PSDR mailing list<br>

              <a href="mailto:PSDR@hamwan.org" target="_blank">PSDR@hamwan.org</a><br>

              <a class="m_-1525514004083948503moz-txt-link-freetext" href="http://mail.hamwan.net/mailman/listinfo/psdr" target="_blank">http://mail.hamwan.net/mailman/listinfo/psdr</a><br>

            </div>

          </blockquote>

        </div>

        <br>

      </div>

      <br>

      <fieldset class="m_-1525514004083948503mimeAttachmentHeader"></fieldset>

      <br>

      <pre>_______________________________________________

PSDR mailing list

<a class="m_-1525514004083948503moz-txt-link-abbreviated" href="mailto:PSDR@hamwan.org" target="_blank">PSDR@hamwan.org</a>

<a class="m_-1525514004083948503moz-txt-link-freetext" href="http://mail.hamwan.net/mailman/listinfo/psdr" target="_blank">http://mail.hamwan.net/mailman/listinfo/psdr</a>

</pre>

    </blockquote>

    <br>

  </div>


_______________________________________________<br>

PSDR mailing list<br>

<a href="mailto:PSDR@hamwan.org" target="_blank">PSDR@hamwan.org</a><br>

<a href="http://mail.hamwan.net/mailman/listinfo/psdr" rel="noreferrer" target="_blank">http://mail.hamwan.net/mailman/listinfo/psdr</a><br>

</blockquote></div><br clear="all"><div><br></div>-- <br><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature">-=jeff=-<br></div>