Go to Post It's a good things we're engineers who regularly squeeze out 'miracles' with a severely limited budget, eh? I think that's an important aspect that we as mentors need to show the students from time to time, and this year is a perfect opportunity. - JesseK [more]
Home
Go Back   Chief Delphi > Technical > Programming > NI LabVIEW
Reload this Page UDP security loophole?
CD-Media   CD-Spy  
portal register members calendar search Today's Posts Mark Forums Read FAQ rules

 
Reply
 
Thread Tools Rate Thread Display Modes
  #1   Spotlight this post!  
Unread 11-03-2012, 17:18
RufflesRidge RufflesRidge is offline
Registered User
no team
  
Join Date: Jan 2012
Location: USA
Posts: 989
RufflesRidge has a brilliant futureRufflesRidge has a brilliant futureRufflesRidge has a brilliant futureRufflesRidge has a brilliant futureRufflesRidge has a brilliant futureRufflesRidge has a brilliant futureRufflesRidge has a brilliant futureRufflesRidge has a brilliant futureRufflesRidge has a brilliant futureRufflesRidge has a brilliant futureRufflesRidge has a brilliant future
Re: UDP security loophole?
Quote:
Originally Posted by Pirate King View Post
It can take lots of work and stuff like that but they can spoof the IP and MAC addresses of some of their packets to mess with some other robots on the Field.
Spoofing your IP won't do you any good, you're still not on the right vLAN.

There are much easier ways to cause field problems even with the WPA system in place, which I won't go into for obvious reasons, but I have not heard of it happening in 3 years and it is strongly against the spirit of the competition.

Long story short, there are much better ways to spend your code development hours than worrying about security of custom UDP communication.
Reply With Quote
  #2   Spotlight this post!  
Unread 13-03-2012, 03:28
mathgeek0001's Avatar
mathgeek0001 mathgeek0001 is offline
Commander Arctangent
FRC #1759
Team Role: Programmer
  
Join Date: Apr 2011
Rookie Year: 2007
Location: El Segundo
Posts: 26
mathgeek0001 is an unknown quantity at this point
Re: UDP security loophole?
Wait... so are you saying that all that work adding an authentication sequence to my standard UDP packet was for naught?
Reply With Quote
  #3   Spotlight this post!  
Unread 13-03-2012, 09:55
Mark McLeod's Avatar
Mark McLeod Mark McLeod is offline
Just Itinerant
AKA: Hey dad...Father...MARK
FRC #0358 (Robotic Eagles)
Team Role: Engineer
  
Join Date: Mar 2003
Rookie Year: 2002
Location: Hauppauge, Long Island, NY
Posts: 8,833
Mark McLeod has a reputation beyond reputeMark McLeod has a reputation beyond reputeMark McLeod has a reputation beyond reputeMark McLeod has a reputation beyond reputeMark McLeod has a reputation beyond reputeMark McLeod has a reputation beyond reputeMark McLeod has a reputation beyond reputeMark McLeod has a reputation beyond reputeMark McLeod has a reputation beyond reputeMark McLeod has a reputation beyond reputeMark McLeod has a reputation beyond repute
Re: UDP security loophole?
Quote:
Originally Posted by mathgeek0001 View Post
Wait... so are you saying that all that work adding an authentication sequence to my standard UDP packet was for naught?
Yea, that's pretty much a waste of time and resources for our robots.
Maybe you learned something though, then it'd have been worthwhile.
__________________
"Rationality is our distinguishing characteristic - it's what sets us apart from the beasts." - Aristotle
Reply With Quote
  #4   Spotlight this post!  
Unread 13-03-2012, 13:43
virtuald's Avatar
virtuald virtuald is offline
RobotPy Guy
AKA: Dustin Spicuzza
FRC #1418 (), FRC #1973, FRC #4796, FRC #6367 ()
Team Role: Mentor
  
Join Date: Dec 2008
Rookie Year: 2003
Location: Boston, MA
Posts: 1,084
virtuald has a brilliant futurevirtuald has a brilliant futurevirtuald has a brilliant futurevirtuald has a brilliant futurevirtuald has a brilliant futurevirtuald has a brilliant futurevirtuald has a brilliant futurevirtuald has a brilliant futurevirtuald has a brilliant futurevirtuald has a brilliant futurevirtuald has a brilliant future
Re: UDP security loophole?
FRC Robots should never be connected to an untrusted network -- EVER. Consider the following:
  • All robots ship with an active FTP server with username/password FRC:FRC, which allows you to reset the software to anything you want
  • You can completely reimage a rebot without authentication
  • For robots running windriver, a debugger can connect without authentication -- I'm sure you can load labview code without authentication too
  • If you have NetConsole active, then you can run arbitrary commands on the robot using a shell. Once again, no authentication.
  • I'm sure there are many other things

So worrying about dashboard communications is the least of your worries.
__________________
Maintainer of RobotPy - Python for FRC
Creator of pyfrc (Robot Simulator + utilities for Python) and pynetworktables/pynetworktables2js (NetworkTables for Python & Javascript)

2017 Season: Teams #1973, #4796, #6369
Team #1418 (remote mentor): Newton Quarterfinalists, 2016 Chesapeake District Champion, 2x Innovation in Control award, 2x district event winner
Team #1418: 2015 DC Regional Innovation In Control Award, #2 seed; 2014 VA Industrial Design Award; 2014 Finalists in DC & VA
Team #2423: 2012 & 2013 Boston Regional Innovation in Control Award

Resources: FIRSTWiki (relaunched!) | My Software Stuff
Reply With Quote
Reply

« Previous Thread | Portal | Next Thread »

Thread Tools
Display Modes Rate This Thread
Hybrid Mode Hybrid Mode
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT -5. The time now is 22:06.

The Chief Delphi Forums are sponsored by Innovation First International, Inc.

Contact Us - Chief Delphi - Rules - Archive - Top

Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2017, Jelsoft Enterprises Ltd.
Copyright © Chief Delphi