Welcome! Here are the website rules, as well as some tips for using this forum.
Need to contact us? Visit https://heatinghelp.com/contact-us/.
Click here to Find a Contractor in your area.
Network Security
Options
Jamie Hall
Member Posts: 23,318
There are several threads current regarding wi-fi and internet connected thermostats. I've noted this before, in individual threads, but perhaps a more general message is in order.
If you implement a wi-fi or internet connected thermostat, pay attention to security!
Set the strongest access password you can possibly think up for the device, both for changing settings and for reading information off it. Just do it!
If you implement a wi-fi or internet connected thermostat, pay attention to security!
Set the strongest access password you can possibly think up for the device, both for changing settings and for reading information off it. Just do it!
Br. Jamie, osb
Building superintendent/caretaker, 7200 sq. ft. historic house museum with dependencies in New England
Building superintendent/caretaker, 7200 sq. ft. historic house museum with dependencies in New England
1
Comments
-
What makes you say that?To learn more about this professional, click here to visit their ad in Find A Contractor.0
-
You really don't want someone else out there to be running your heat up and down! Nor, on the ones which sense when the structure is occupied, do you want someone else out there seeing when it is empty, and helping themselves to the family silver (or big screen TV!).
And trust me -- if you password is, let's say "1234567, they will!Br. Jamie, osb
Building superintendent/caretaker, 7200 sq. ft. historic house museum with dependencies in New England0 -
Why did you post my password?Jamie Hall said:And trust me -- if you password is, let's say "1234567, they will!
3 -
I agree a strong password is needed but don't be fooled, there is NO foolproof internet security!0
-
Best practice is to use a password manager with dual factor authentication. The password manager can generate very secure password for each account.
I prefer KeePass since the database is local to my system but I’ve heard good things about last pass.0 -
People can't get into your home network unless you go way out of your way to set up your home router to allow it, but yes, a good password never hurt anyone.NJ Steam Homeowner. See my sight glass boiler videos: https://bit.ly/3sZW1el0
-
Old thread, new spammer, soon to be banned spammer.I DIY.
2 -
It doesn't necessarily end with turning temps up and down. How would you like to be the guy Fazio Mechanical trying to explain this one?
https://slate.com/technology/2022/04/breached-excerpt-hartzog-solove-target.html"If you can't explain it simply, you don't understand it well enough"
Albert Einstein0 -
Its easy to see how the hack existed on the Fazio computers, but how is it that the Fazio log-in allowed an unrestricted path into the Target corp computers ? If the sole purpose was monitoring or altering the HVAC system, should that logon (or the Fazio IP) not have been restricted to just a few ports (on Target) that only go the controller(s) on site ?
Fazio provided the spark for the fire, but Target had piled all the wood and paper up (and then found their extinguishing system somewhat ineffective).
30+ yrs in telecom outside plant.
Currently in building maintenance.1 -
I set up my router to only allow the Mac IDs of my devices.1
-
Not so sure.. again..PC7060 said:I’ve heard good things about last pass.
https://www.google.com/amp/s/techcrunch.com/2022/12/22/lastpass-customer-password-vaults-stolen/amp/
One way to get familiar something you know nothing about is to ask a really smart person a really stupid question
1 -
@reggi - whew. Glad I use KeePass. If it’s in the cloud it can be stolen. Another reason multi factor (what you know and what you have) is important. Can’t just rely on a good password.reggi said:
Not so sure.. again..PC7060 said:I’ve heard good things about last pass.
https://www.google.com/amp/s/techcrunch.com/2022/12/22/lastpass-customer-password-vaults-stolen/amp/I also a) digitally backup and b) print my password vault out in clear text and store in bank safety deposit box. Important have recovery path in case of accident damage to computer (or me).
1 -
I used to do that, but stopped about 10 years ago as it became an unnecessary royal pain in the butt. Not to mention any modern device can easily spoof mac addresses via wifi now.CLamb said:I set up my router to only allow the Mac IDs of my devices.
Single pipe quasi-vapor system. Typical operating pressure 0.14 - 0.43 oz. EcoSteam ES-20 Advanced Control for Residential Steam boilers. Rectorseal Steamaster water treatment0 -
CLamb said:
Yes, but it would have to monitor the devices' broadcasts to know their MAC IDs. Just guessing one would be darn near impossible.ChrisJ said:
Not to mention any modern device can easily spoof mac addresses via wifi now.
Probably a lot easier than cracking WPA2.Single pipe quasi-vapor system. Typical operating pressure 0.14 - 0.43 oz. EcoSteam ES-20 Advanced Control for Residential Steam boilers. Rectorseal Steamaster water treatment0 -
Y'all are forgetting that I don't have to have access to your WiFi.
If I can get you to download an exploit like EDR_CALCULATOR.EXE and have it silently open a connection to me when it runs, you're pwned, as the kids say.
Once I'm there I can explore your network. I guarantee those consumer IoT devices on your network a) have horrible security to begin with and b) will never be patched to fix vulns.
Would be a lot of bother just to play with your thermostat though 🤣0 -
This warms the cockles of my heart 😉PC7060 said:
@reggi - whew. Glad I use KeePass. If it’s in the cloud it can be stolen. Another reason multi factor (what you know and what you have) is important. Can’t just rely on a good password.reggi said:
Not so sure.. again..PC7060 said:I’ve heard good things about last pass.
https://www.google.com/amp/s/techcrunch.com/2022/12/22/lastpass-customer-password-vaults-stolen/amp/I also a) digitally backup and b) print my password vault out in clear text and store in bank safety deposit box. Important have recovery path in case of accident damage to computer (or me).
I'm doing this today.1
Categories
- All Categories
- 85.7K THE MAIN WALL
- 3K A-C, Heat Pumps & Refrigeration
- 51 Biomass
- 423 Carbon Monoxide Awareness
- 71 Chimneys & Flues
- 1.9K Domestic Hot Water
- 5.2K Gas Heating
- 92 Geothermal
- 149 Indoor-Air Quality
- 3.2K Oil Heating
- 60 Pipe Deterioration
- 850 Plumbing
- 5.8K Radiant Heating
- 375 Solar
- 14.5K Strictly Steam
- 3.2K Thermostats and Controls
- 51 Water Quality
- 38 Industry Classes
- 55 Job Opportunities
- 18 Recall Announcements