Client connect - What is this?

John - AI4FR

David

Erika - KØDD

John - AI4FR

David

It has been a while since I have mine set to auto-reconnect. I think if you disconnect from the radio (from menu line: Setting - Chose Radio - SmartLink Setup) you will find an option to change the password and other account options.

Erika - KØDD

My smartlink setup which I am not currently using uses my "GOOGLIE" Username and password...  I am just local with this one anyway,

Not that a VU2 ham is a bad guy or anything but trying to hack a radio IS being a bad guy.  IT's so EZ to download various versions of the SSDR software right off the website, and ANYBODY could connect...  It's just that they can't get past the Username ETC...  FUNNY, apparently neither can you?

John - AI4FR

Thanks David and I was just playing with that. I have unregistered the radio from smartlink. I'll leave it this way for a while or until I need it.

Erika - KØDD

It's nice to know the next time you're in India John, you'll be able to use your radio... That is after resetting things. giggle

Max

John - AI4FR

KC7ES

Ha Gei

John - AI4FR

John - AI4FR

Tim Blank

Same thing happened to me also, I am beginning to thing the flex licensing server dB was hacked? How else could such a large number of people see this same behavior?

Erika - KØDD

Just flippen wonderful... If so maybe they'll put that on a list of things to fix some day?

K5CG

This kind of thing is going to happen when your network becomes more complex and you don't reinforce your front door. Consumer grade Internet routers are not adequate.

Chris DL5NAM

... and if you use your Google or Facebook account login for other software login = open your door for the world and invite them to come !

Chris

Erika - KØDD

I would never have UPNP setup...  I'd get the correct port numbers from FLEX and manually set them up.  When I had UPNP turned on every hacker in on the planet walked right in my front door.  I needed to find out from the defaults on my router what loopholes existed.

I LOCKED it down tight.  I also changed the time server.  It was using the European Netgear default one and all of Europe was monitoring!!!!!  Wowsers...

I then set ONLY MAC address filtering and DHCP has reservations and only those and no new ones can connect.

That keep the front door locked down, but if they find individual ports...  Well that could be another thing.

My attacks went from 25 different IPs to maybe one a week or so.

Close your doors and lock them.  also close the ability to log in to your router remotely.  This is why I didn't use the router from the Provider and bought my own.

Erika DD

Erika - KØDD

Oh Chris, all of my googlie accounts have 15 character randomly generated passwords.  each one is a different ONE...  I'd never have anything important on less than 15 characters and they're weird ones...  I can barely type them twice when I have to !


Chris DL5NAM

Erika, i believe you but you count to the 0.1% they do it right . Most used password of the is ?

PASSWORD

Erika - KØDD

and their USER NAME is USERNAME...  Dummies  Yeah I found a site on the net with a random password generator and had the thing **** out 80 of them for me.  I only mark the pages with a used when i actually use them and there's no X-reference.  I usually add an additional character to some too.  HOWEVER if somebody got into my file cabinet and pulled my master password list out...  YOUWSERS...  Even my husband doesn't know ehere that thing is at at and if he did probably couldn't type one in correct.  HAHAHAHA.  Yes I have all his passwords and got rid of his 5 and 6 character ones, hahahaha.  I hate computers...  sigh

Wayne Schonfeld

John - AI4FR

Erika - KØDD

me 2 time to look at the router logs

Erika - KØDD

Ha Gei

Her, UPNP is the best solution :  

My Router will ONLY let the Flex and 2 other machines from inside use UPNP at all and never ever expose UPNP to the outside. I trust the handbook and the proposals of AVM who make my fritzbox router.

I have not seen the attack here myself, but was online just a while last day. I will monitor this today.

What scares me :  Why does no one from flex comment here at all ??  

K5CG

"Why does no one from flex comment here at all ??"

Because it's not a problem with the radio.

Bill -VA3WTB

Flex employees could chime in to explain what we are seeing here.
It is nothing new, I have seen this for a long time time. I was under the impression that DAX and CAT both have an IP address. When my radio starts I always see 3 IP addresses pop up. I thought I am seeing DAX IP CAT IP and the radio IP. I may be wrong about this.

John - AI4FR

Bill what you are seeing is normal. We all see that. We are also familiar with the IP addresses. What happened here is a NEW IP address attempting to connect over and over again, 30 or 40 times for nearly a minute.

Bill -VA3WTB

John, it sounds like your very concerned, perhaps you should start a help desk ticket to find out what it is.