Page 1 of 1

[EN] Increase NessieDVB security

PostPosted: Fri Jan 27, 2012 10:59 am
by mebepi
Hi,

Can you please foreseen:

- That the web interface is protected by a login / password to avoid that somebody change the configuration. (especially for professional use).
- Changing the IP address requires later on to click on save button to confirm it, if we have a login/logout option we can pop-up the end-user that there are still some pending modifications not yet saved.
- To log failed attempt into the log file (try to access the nessie in SSH get the prompt do several tries but nothing appears in the log file so we cannot track possible attempt to hack the nessie).
- May be foreseen to use a non-standard port for SSH access to slightly improve security.
- To log failed attempt to connect to the webif when login/password will be implemented. ;)

Mebepi

Re: [EN] Increase NessieDVB security

PostPosted: Fri Jan 27, 2012 10:44 pm
by __jata__
This is basically the same as I asked looong time ago.... (22-12-2010). So, please could you implement this feature request.... ?

Re: [EN] Increase NessieDVB security

PostPosted: Fri Jan 27, 2012 10:59 pm
by hop
Yes, it is on TODO for ages.

I have to check how hard would be to add SSL support there, then I can say more.

Honza

Re: [EN] Increase NessieDVB security

PostPosted: Fri Jan 27, 2012 11:06 pm
by __jata__
In reality, using of the non-standard ssh port does not increase security notably, because ssh reports itself even on a non-standard port. So combination of 'nmap' and 'nc' will discover everything. But if the password is strong enough, there is no real chance how to break ssh access in a historically short time. Nevertheless, logging of denied accesses would be nice.