R-sensors LLC
Bldg. 1, 4, Likhachevsky proezd, Dolgoprudny, 141701, Russia
+7 (498) 744-69-95,
NDAS-N. User Manual.
53
●
Blocking of outgoing connections. Any application on the device can send any data to any
address;
●
Control for which exact application opens and taps the port. For example, if connections to port
18000 are allowed, then a malicious application can open this port for tapping if it has been run
earlier than the SeedLink server;
●
HTTP connection protection. Traffic between the device’s web interface and the web server is
transferred over HTTP in an unencrypted form (except for the super-user password which is
encrypted by the RSA algorithm). An attacker can intercept the password for authorization in the
web interface and gain access. In addition, the web server used in NDAS-RT may have potential
vulnerabilities that could be exploited to hack the web interface and run malware.
To ensure the greatest security, it is recommended you follow the recommendations below:
●
Use the VPN technology and connect the device inside the VPN network. VPN allows connecting
a device with no need to assign a real IP address to it and open ports that makes it impossible to
connect to the device from outside;
●
If your device has a real IP address, block all incoming connections except SSH (port 22). Be
sure to set up a strong password for the debian account to eliminate the possibility of authorizing
an attacker via SSH. Use the SSH tunnel technology to access the device.
●
If possible, configure the IP addresses whitelist by specifying only the IP addresses which you
will use to connect the device.
12. NDAS One Manager module
The NDAS One Manager program module is designed to connect digital seismic sensors and the
NDAS One series data loggers (NDAS-8224, NDAS-8226, CME-4x11ND, CME-6x11ND) to the data
logger.
Software for the NDAS-N data logger and the NDAS-RT multifunction module is identical.
The functions and capabilities described in this chapter for NDAS-RT also refer to the data
logger.
The module has the following functions:
●
Automatically detects devices which are connected to the USB ports and the specialized NDAS
ports
●
Automatically switches the device into the real-time data mode