[Xastir] non licensed callsign in my area

russo at bogodyn.org russo at bogodyn.org
Thu Sep 7 18:45:52 PDT 2017 

On Fri, Sep 08, 2017 at 01:10:48AM +0000, we recorded a bogon-computron collision of the <kd5mkv at hotmail.com> flavor, containing:
> I m running firenet.us internet server, the intruder was using  a iphone or android aprs app and left me a message while I was away. I run UFW on my machine and will cease my internet server.

>From an igate standpoint, it's only a problem if your igate is gating his 
traffic to RF.  

If he sent his traffic from an iphone and it only propagated through the 
firenet server, without anyone putting it on RF,  and it was just an 
annoying message, then there's nothing illegal about it, nor is there anything 
you can really do.  Your responsibility is only to make sure your IGate never 
takes stuff off the internet and transmit it to RF if it violates FCC rules.

If it's annoying or offensive, you could potentially just filter it out
using filters on your firenet feed.

I thought you were talking about somebody connecting to your Xastir server
port (port 2023, the one that is enabled by Interface->Enable Server Ports),
and feeding data directly to your Xastir instance by connecting to it
and authenticating with a pass code.  That could only happen if you expose 
your sever port off of your LAN, which you shouldn't do.

I guess I'm a little confused now about your set up.

> From: Xastir <xastir-bounces at lists.xastir.org> on behalf of Tom Russo <russo at bogodyn.org>
> Sent: Thursday, September 7, 2017 7:57 PM
> To: Xastir - APRS client software discussion
> Subject: Re: [Xastir] non licensed callsign in my area
> 
> On Fri, Sep 08, 2017 at 12:13:30AM +0000, we recorded a bogon-computron collision of the <kd5mkv at hotmail.com> flavor, containing:
> >  I found a possible illegal callsign with passcode 9922 on my xastir program, He was running a iphone app from the internet. I found a passcode generator online and typed impoop and received a aprs passcode.
> 
> Are you running Xastir with its server port on a public interface?  Are you gating his traffic?
> 
> >    I turned off my Igate which gets little activity here, the passcode generator was N5DUX but found others online. Is there a way to block these intruders?
> 
> Don't let anyone at all connect to your local Xastir instance through the
> interwebz.  Put it behind a firewall, and expose your server port only to your
> LAN.  If you are running a bi-directional igate (and these should be the only
> kind) then monitor what is going out of your RF interface as third-party or
> message traffic from APRS-IS.  Shut down your transmit if it's abused.
> 
> Can't think of any other way.  APRS pass codes are completely insecure, and
> the algorithms have been public for well over a decade.  Anyone can write one,
> and there's nothing to be done about it.  That cat is long out of the bag.
> 
> --
> Tom Russo    KM5VY   SAR502   DM64ux          http://www.swcp.com/~russo/
> Made ya look! - Southwest Cyberport<http://www.swcp.com/~russo/>
> www.swcp.com
> Hey, what's a nice person like you doin' in a crummy joint like this?
> 
> 
> 
> Tijeras, NM  QRPL#1592 K2#398  SOC#236        http://kevan.org/brain.cgi?DDTNM
> [http://kevan.org/images/zombieface.jpg]<http://kevan.org/brain.cgi?DDTNM>
> 
> Graaaagh! Zombie DDTNM attacks! - kevan.org<http://kevan.org/brain.cgi?DDTNM>
> kevan.org
> Turn your friends into zombies, with the original zombie viral game.
> 
> 
> 
>  echo "prpv_a'rfg_cnf_har_cvcr" | sed -e 's/_/ /g' | tr [a-m][n-z] [n-z][a-m]
> 
> 
> 
> 
> _______________________________________________
> Xastir mailing list
> Xastir at lists.xastir.org
> http://xastir.org/mailman/listinfo/xastir
> Xastir Info Page<http://xastir.org/mailman/listinfo/xastir>
> xastir.org
> This is the Xastir users list. General topics related to the use of Xastir and APRS are discussed here. Please stay on topic as much as possible.
> 
> 
> 

-- 
Tom Russo    KM5VY   SAR502   DM64ux          http://www.swcp.com/~russo/
Tijeras, NM  QRPL#1592 K2#398  SOC#236        http://kevan.org/brain.cgi?DDTNM
 echo "prpv_a'rfg_cnf_har_cvcr" | sed -e 's/_/ /g' | tr [a-m][n-z] [n-z][a-m]

More information about the Xastir mailing list