Many of the radios on sdr.hu require a password to use. From the looks of the web page that's presented for login, it appears to be part of the radio firmware (ie, same style, colors, etc). Depending on how the attackers are exploiting the radio, that *might* prevent them from getting in. But, of course, I have no idea how they're actually doing it. It might be some flaw other than the web interface. If that worked, it would be just a matter of figuring out how to distribute the password without giving it to the whole world.

Anybody know how the other sdr.hu users prevent this? Or do they just re-flash constantly?

Jeff N0GQ

On Fri, Sep 28, 2018 at 10:24 AM Bart Kus <me@bartk.us> wrote:

More precisely, I've turned off its Ethernet port on the switch until someone can find some suggestions for how to keep this device from getting pwnd every time it's put online. I don't have the time to do that research right now. Let me know what y'all find in this thread.

--Bart

On 9/28/2018 10:09 AM, Nigel Vander Houwen wrote:
David,

We’ve had issues with this SDR device getting compromised, so it’s currently been taken offline while we look at options.

Nigel

On Sep 28, 2018, at 10:08, David Haworth via PSDR <psdr@hamwan.org> wrote:

Hi,

Haystack SDR was working fine last weekend.

http://www.stargazing.net/david/sdr/HamWAN.html#P1d

For the past three days Haystack SDR

This site can’t be reached

http://44.24.241.55:8073/ is unreachable.

Has Haystack SDR URL changed?

73 David WA9ONY

_______________________________________________
PSDR mailing list
PSDR@hamwan.org
http://mail.hamwan.net/mailman/listinfo/psdr
_______________________________________________
PSDR mailing list
PSDR@hamwan.org
http://mail.hamwan.net/mailman/listinfo/psdr
_______________________________________________
PSDR mailing list
PSDR@hamwan.org
http://mail.hamwan.net/mailman/listinfo/psdr