SAGE RTU'S
  • Home
  • Products
  • Downloads
  • Support
    • Contacts
    • Services
  • Brochures
  • Updates
  • About

Updates and News

Monthly Security Updates, Product News, and more

june 2023 SECURITY UPDATES

7/3/2023

0 Comments

 
Summary of security related changes for June 2023.

​Vulnerability Update:
  • VxWorks: OS updated to version 6.9.4.12 RCPL6.  Improves the protection against SSH brute force password authentication attacks by making this authentication method optional. If password authentication is enabled, a progressive time delay between incorrect SSH logins is now applied.  If the default threshold of consecutive failed password logins occurs, the attempting source IP address is then banned for a period of time.  Also removes low security ciphers from OpenSSL and SSH libraries.

Operational Update:
  • OpenSSL:  HTTPS protocol has been updated to use the OpenSSL 1.0.2.zf version. 
  • Webserver:  Improved server-side validation of data to reduce risk of configuration data corruption.
  •  WEB GUI:  SSH Server password authentication is now a user-defined option, disabled by default only SSH key authentication is allowed, greatly reducing risk of brute force attacks attempting to gain user access.  User will enable SSH Password authentication if wanting to use this authentication method.
  • DNPR: Improved network packet handling of malformed DNP3 packets.
  • ModbusM:  Changed size of sequential numeric break in register range that forces new data request messages to be size of 1 register, so if register 1 and register 3 are to be read, this will create 2 unique reads for register 1 and 3, instead of 1 read for 3 registers 1, 2, and 3.
 
Cybersecurity Update:
  • SSH shell password authentication is now optional, selected by customer.  Now the default authentication method is Key Pair authentication.  User must enable password authentication if this feature is desired.  When password authentication is enabled, a limited number of incorrect entries is allowed, with an increasing time delay between prompts for user credentials.  After specific number of failures, the source IP address is banned for a period of time from making further connections.
june_2023_security_update.pdf
File Size: 577 kb
File Type: pdf
Download File

0 Comments



Leave a Reply.

    Categories

    All
    Bulletins
    Security Updates

    Archives

    March 2025
    February 2025
    January 2025
    December 2024
    November 2024
    October 2024
    September 2024
    August 2024
    July 2024
    June 2024
    April 2024
    February 2024
    January 2024
    November 2023
    October 2023
    August 2023
    July 2023
    June 2023
    May 2023
    April 2023
    March 2023
    February 2023
    January 2023
    December 2022
    November 2022
    October 2022
    September 2022
    August 2022
    July 2022
    June 2022
    May 2022
    April 2022
    March 2022
    February 2022
    January 2022
    December 2021
    November 2021
    October 2021
    September 2021
    July 2021
    June 2021
    April 2021
    March 2021
    February 2021
    January 2021
    November 2020
    October 2020
    August 2020
    July 2020
    June 2020
    April 2020
    March 2020
    February 2020
    January 2020
    November 2019
    October 2019
    September 2019
    August 2019
    July 2019
    June 2019
    April 2019
    March 2019
    February 2019
    January 2019
    December 2018
    November 2018
    October 2018
    August 2018
    July 2018
    June 2018
    May 2018

    RSS Feed

Services

RTU System Consulting
Project Management
Design and Install
NERC/CIP Security Support
Complete RTU SUpport
RIG for ISO

​

Company

About
​
​

Support

Contact
​
© COPYRIGHT 2018. ALL RIGHTS RESERVED.
  • Home
  • Products
  • Downloads
  • Support
    • Contacts
    • Services
  • Brochures
  • Updates
  • About