[arm-allstar] Connection Results
Bryan St Clair
bryan at k6cbr.us
Tue May 16 11:10:07 EST 2017
Thank you again Doug,
I understood what you were telling me. My background is in network
security. Since this software is new to me, I am just trying to
understand it. (The type of log entry is aggravating to a guy like me, as
it's not a specific connection method and without great detail)
I was only going to change the node (all-star side, not local root login)
password to elimate possibilities of access to test myself from the outside
to duplicate the event.
Just using the opportunity to learn, I wasn't worried someone was in the
node with malice. I have no objection to other nodes connecting in, I just
wanted to make sure the web connection was a monitor only method.
On May 16, 2017 5:51 AM, Doug Crompton via arm-allstar <
arm-allstar at hamvoip.org> wrote:
> Bryan,
>
> I don' think you understood my last response and I think you are being
> overly worried. Our nodes are meant to be connected to and I doubt very
> much anyone is being nefarious with your system. I am sure it is someone
> coming in via the web transceiver and as I said if you want to stop it turn
> it off at allstarlink.org
>
> Another way to stop inbound connections is to not port forward your iax
> port (4569 or whatever you have it set to) but as I said Allstar is
> supposed to be a connectible medium and if everyone did that we would have
> no connections.
>
> There is absolutely no need to get or request a new node password and you
> have the ability to change your node login password in the ADMIN menu.
>
> On Tue, May 16, 2017 at 2:36 AM, "Bryan St Clair via arm-allstar" <
> arm-allstar at hamvoip.org> wrote:
>
> > Thank you Doug,
> >
> > In iax.conf I have a password for the 1 user account. I double checked
> your
> > howto to make sure more conf wasn't needed. But I do see other user type
> > settings in iax.conf. I never touched them, but I assume [radio] and
> > [allstar-sys] and [allstar-public] were to be left as is.
> >
> > I never shared my node password, but I will request it changed, to be
> safe.
> >
> > I disabled web transceiver and phone on allstar.org. Also changed my
> main
> > allstar.org login password.
> >
> > Any other suggestions I should complete to make sure I am secure?
> >
> >
> > On Mon, May 15, 2017 at 11:04 PM, "Doug Crompton via arm-allstar" <
> > arm-allstar at hamvoip.org> wrote:
> >
> > > Bryan,
> > >
> > > Both phone and iaxrpt connections are under your control requiring
> > > authentication. Phone requires a PIN number only issued to you which is
> > > viewable at allstarlink.org under account settings. iaxrpt is setup
> by
> > > you
> > > locally with user/pass so it is under your control. The web transceiver
> > is
> > > open to anyone connecting unless you disallow it at allstarlink.org in
> > > node
> > > configuration access settings. The phone portal can be turned off also
> > > although no one could connect there unless they knew your PIN.
> > >
> > >
> > > *73 Doug*
> > >
> > > *WA3DSP*
> > >
> > > *http://www.crompton.com/hamradio <http://www.crompton.com/hamradio>*
> > >
> > >
> > > On Tue, May 16, 2017 at 1:26 AM, "Bryan St Clair via arm-allstar" <
> > > arm-allstar at hamvoip.org> wrote:
> > >
> > > > Hello,
> > > >
> > > > In my connection log, I am seeing a connection happening that I was
> > > unaware
> > > > of.
> > > >
> > > > The log shows:
> > > >
> > > > Mon May 15 21:09:32 PDT 2017 == xxxxx Connected Callsign yyyyy ==>
> Web
> > > > Transceiver, Phone Portal, or iaxRpt
> > > > Mon May 15 21:11:55 PDT 2017 == xxxxx Disconnected Callsign yyyyy ==>
> > > > Web Transceiver, Phone Portal, or iaxRpt
> > > >
> > > >
> > > > I assume the Web Transceiver can only be done with my login creds for
> > the
> > > > node on allstar website. That correct?
> > > >
> > > > I don't know what/how a Phone Portal would happen.
> > > >
> > > > For iaxRpt, I have just one user (changed username) and password set,
> > so
> > > it
> > > > shouldn't be iax.
> > > >
> > > > Any way I can dig more into this to see how/why its happening? Or
> > should
> > > > this not be of any concern to me?
> > > >
> > > > --
> > > > Bryan
> > > > K6CBR
> > > > Allstar Base: 43918
> > > > Allstar Mobile: 43913
> > > > www.k6cbr.us
> > > > QRZ <http://www.qrz.com/db/K6CBR>
> > > > _______________________________________________
> > > >
> > > > arm-allstar mailing list
> > > > arm-allstar at hamvoip.org
> > > > http://lists.hamvoip.org/cgi-bin/mailman/listinfo/arm-allstar
> > > >
> > > > Visit the BBB and RPi2/3 web page - http://hamvoip.org
> > > >
> > > >
> > > _______________________________________________
> > >
> > > arm-allstar mailing list
> > > arm-allstar at hamvoip.org
> > > http://lists.hamvoip.org/cgi-bin/mailman/listinfo/arm-allstar
> > >
> > > Visit the BBB and RPi2/3 web page - http://hamvoip.org
> > >
> >
> >
> >
> > --
> > Bryan
> > K6CBR
> > Allstar Base: 43918
> > Allstar Mobile: 43913
> > www.k6cbr.us
> > QRZ <http://www.qrz.com/db/K6CBR>
> > _______________________________________________
> >
> > arm-allstar mailing list
> > arm-allstar at hamvoip.org
> > http://lists.hamvoip.org/cgi-bin/mailman/listinfo/arm-allstar
> >
> > Visit the BBB and RPi2/3 web page - http://hamvoip.org
> >
> >
> _______________________________________________
>
> arm-allstar mailing list
> arm-allstar at hamvoip.org
> http://lists.hamvoip.org/cgi-bin/mailman/listinfo/arm-allstar
>
> Visit the BBB and RPi2/3 web page - http://hamvoip.org
>
More information about the arm-allstar
mailing list