[EAS] ALERT: EAS Device passwords
David Turnmire
eassbelist at cableone.net
Mon Feb 11 19:50:32 CST 2013
And... at the least invest in a $50 NAT router if you don't already have
one. It takes a fair amount of hacker skill to get past one of those.
If you need off-site access, make sure the router supports either source
IP filtering or VPN access. Even most cheap consumer routers that I
have seen allow restricting access based upon IP addresses. Even a
little "security by obscurity" helps... like altering the IP port number
on your EAS decoder's management interface if the vendor supports it
(and shame on those who don't!).
Dave
On 2/11/2013 5:38 PM, Richard Rudman wrote:
> Greetings:
>
> By now you may have seen reports about a hacker-originated bogus malicious EAS message that was actually aired in several markets.
>
> I just got a call from the EAS office in FCC in Washington. They are now actively investigating this very serious matter.
>
> For the time being the FCC concurs that all EAS clients should make sure the web interfaces for their EAS boxes have a strong password installed -- NOT the factory default password.
>
> Please pass this information along to all concerned.
>
More information about the EAS
mailing list