[Xastir] non licensed callsign in my area

Steve Rogers kd5mkv at hotmail.com
Thu Sep 7 18:10:48 PDT 2017 

I m running firenet.us internet server, the intruder was using  a iphone or android aprs app and left me a message while I was away. I run UFW on my machine and will cease my internet server.

Steve kd5mkv


________________________________
From: Xastir <xastir-bounces at lists.xastir.org> on behalf of Tom Russo <russo at bogodyn.org>
Sent: Thursday, September 7, 2017 7:57 PM
To: Xastir - APRS client software discussion
Subject: Re: [Xastir] non licensed callsign in my area

On Fri, Sep 08, 2017 at 12:13:30AM +0000, we recorded a bogon-computron collision of the <kd5mkv at hotmail.com> flavor, containing:
>  I found a possible illegal callsign with passcode 9922 on my xastir program, He was running a iphone app from the internet. I found a passcode generator online and typed impoop and received a aprs passcode.

Are you running Xastir with its server port on a public interface?  Are you gating his traffic?

>    I turned off my Igate which gets little activity here, the passcode generator was N5DUX but found others online. Is there a way to block these intruders?

Don't let anyone at all connect to your local Xastir instance through the
interwebz.  Put it behind a firewall, and expose your server port only to your
LAN.  If you are running a bi-directional igate (and these should be the only
kind) then monitor what is going out of your RF interface as third-party or
message traffic from APRS-IS.  Shut down your transmit if it's abused.

Can't think of any other way.  APRS pass codes are completely insecure, and
the algorithms have been public for well over a decade.  Anyone can write one,
and there's nothing to be done about it.  That cat is long out of the bag.

--
Tom Russo    KM5VY   SAR502   DM64ux          http://www.swcp.com/~russo/
Made ya look! - Southwest Cyberport<http://www.swcp.com/~russo/>
www.swcp.com
Hey, what's a nice person like you doin' in a crummy joint like this?



Tijeras, NM  QRPL#1592 K2#398  SOC#236        http://kevan.org/brain.cgi?DDTNM
[http://kevan.org/images/zombieface.jpg]<http://kevan.org/brain.cgi?DDTNM>

Graaaagh! Zombie DDTNM attacks! - kevan.org<http://kevan.org/brain.cgi?DDTNM>
kevan.org
Turn your friends into zombies, with the original zombie viral game.



 echo "prpv_a'rfg_cnf_har_cvcr" | sed -e 's/_/ /g' | tr [a-m][n-z] [n-z][a-m]




_______________________________________________
Xastir mailing list
Xastir at lists.xastir.org
http://xastir.org/mailman/listinfo/xastir
Xastir Info Page<http://xastir.org/mailman/listinfo/xastir>
xastir.org
This is the Xastir users list. General topics related to the use of Xastir and APRS are discussed here. Please stay on topic as much as possible.

More information about the Xastir mailing list