Written by Jan Otte on Thursday 20 June 2019 in the category Default with the tags Security.
This security advisory is a reaction on the recently discovered network vulnerabilities in Linux kernel (see below on particular names and links).
These vulnerabilities can, under certain circumstances, be used by an attacker against a range of our routers running current firmware (6.1.9) with the potential result of the router rebooting.
We have already prepared a patch which closes the vulnerabilities. The patch will be included in future firmware versions (6.1.10, 6.2.0) when these are released.
Until the new firmware versions are available, you may apply any of the recommended workaround. The easiest ...
Written by Petr Hanuš on Thursday 25 April 2019 in the category Release with the tags Security.
New version of firmware for our routers is available on Engineering Portal.
Except the SR305 and SL302 which are destined for NAM market and thus a firmware change is a subject of certification, the 6.1.9 is the default firmware for majority of router models. The NAM market models mentioned above can obtain the firmware via manual upgrade from EP if needed. Details of default FW versions can be found in the Firmware Distribution overview document.
It for sure contains usual load of fixes and security updates, but next to that, there are a few ...
Written by Marek Černocký on Wednesday 24 April 2019 in the category Documentation.
An official way how to build and install a node is using npm command. However it is not possible to find it on our routers as router is embedded device with limited resources and some nodes require complex building environment and high performance because of other languages than JavaScript.
Fortunately, it is easy to prepare a ...
Written by Jan Svoboda on Friday 1 March 2019 in the category Release with the tags User Modules.
New user module Sleep Mode was released. It is the successor of Bin-sleep user module (no longer available).
Using Sleep Mode user module, it is possible to switch the router into Low Power Mode and wake it up. Advanced options based on binary inputs and time are available.
Written by Petr Hanuš on Friday 9 November 2018 in the category Release with the tags Security.
After some delay, a new version of OS for our routers has been released. The version is marked as 6.1.8 and it will be either the last or one of the last ones before 6.2.0 hits public (note that 6.2.0 is already in beta as announced in the 6.2.0-beta article)
While only the patchelevel version number has increased, the release is not a pure patchlevel release.
It for sure contains usual load of fixes and security updates, but next to that, there are a few improvements as well. To name a ...
Written by Jan Otte on Wednesday 17 October 2018 in the category Default with the tags Security.
This article main topic is about v2 factory settings and default use case, also discussing a few LAN attacks on high-level.
When you get a cellular router from Advantech CZ, the default settings fall into one of the three cases:
As for the first possibility - router pre-configured exactly to your needs: as described in the first article, there are several ways how ...
Written by Jan Otte on Monday 30 July 2018 in the category Default with the tags Security.
A very important topic to cover in this article series is something we call security model of the router.
Before getting to that, let's look at the user model. There are a few user models being used in the operating systems based on Linux. Please note that this definition is something to make our security model more understandable and help with further understanding of the securing process, it is not a formal definition as used in information science.
Written by Jan Otte on Monday 30 July 2018 in the category Release with the tags Security.
New version of firmware for Advantech cellular routers has been released. The release was done for majority of models with usual exceptions (SL302, SR305 and Spectre v2 routers - please see firmware distribution overview).
As a patchlevel release it contains a number of bug fixes and also security fixes (most importantly the OpenSSL library update). Also the stability of v3 routers under very high loads has been improved.
Written by Jan Otte on Wednesday 6 June 2018 in the category Default with the tags Security.
You are about to read the first article in the series of articles about securing our routers. The series is tailored to our router devices, teaching and showing some general and specific principles and also describing possibilities and use cases. While some of the knowledge here is usable also outside of the router devices, you should keep in mind that we are focusing on our cellular routers running Conel OS 6.x here.
This first article is a basic building block. We are going to describe the device and its basic characteristics and possibilities of accessing the device with an accent on security. Also, some basic use cases are to be touched here and the terminology used for the rest of the series established.
Written by Jan Otte on Tuesday 17 April 2018 in the category Default with the tags Security.
Some time ago there has been questions about impact of IoTroop/Reaper Malware on our devices. A week ago there has been another inquiry. As it seems to be an (unexpected) pattern, this short information announcement is given to public.
