Flutterby™! : Recently revamped my home net to

Next unread comment / Catchup all unread comments User Account Info | Logout | XML/Pilot/etc versions | Long version (with comments) | Weblog archives | Site Map | | Browse Topics

Recently revamped my home net to

2014-01-13 21:05:08.14958+00 by Dan Lyke 5 comments

Recently revamped my home net to tightly control DNS and DHCP, but this current NTP attack makes me think I should have gone much further.

comments in ascending chronological order (reverse):

#Comment Re: made: 2014-01-13 21:26:37.243458+00 by: meuon

And you are still considering more networked home automation?

I'm thinking a single smart system, with hardline non-networked (serial/rs422 style maybe) controls may be the only way. Think "Battlestar Galactica", fairly old school tech that can't be infiltrated as easily.

#Comment Re: made: 2014-01-13 22:06:44.967195+00 by: Dan Lyke

Yep, I'm backing back my home automation stuff substantially. The NTP reflection attack is:

http://arstechnica.com/securit...liver-crippling-100-gbps-floods/

#Comment Re: made: 2014-01-14 13:52:58.736078+00 by: Larry Burton

Meuon, RS-485 should still be fairly secure as long as you leave them off of any gateway.

#Comment Re: made: 2014-01-14 17:46:21.35572+00 by: TC

Yeah last night was rough. Home bandwidth varied from 20 mbps to zero(total outage). I actually had to play a locally cached movie for the family's entertainment.

If you are "air gapping" a hardwired network, why not use good ol Ethernet? Cheap, easy, compatible with everything(only a security flaw if your worried about ninja hackers physically in your home) lots of bandwidth (maybe you want to stream a HD movie on your waffle iron)

#Comment Re: made: 2014-01-14 17:57:12.334771+00 by: Dan Lyke

TC, what's your modem brand?

On air-gapping: Part of the problem right now is that there's enough random crap bloat floating over Ethernet, and layers in protocol stacks, that it's hard to be sure that what's traveling over that wire is what you think should be.

Whereas if I've got a wire that's signalling at "open or closed" kinds of levels, I can measure what's flowing over that channel with a volt meter. RS-232/485 is a little faster, but you can still read it with an oscilloscope, and the protocol stack is understandable by a single person.