Exten Posted August 7, 2013 Posted August 7, 2013 By default, my ISY994 will conduct business in an unencrypted fashion via port 8080. If I wipe out the 8080 in admin console (leave it blank) will that kill unencrypted access? There wouldn't be any other untoward consequences ? I realize that I can also just not let port 8080 in throo my firewall, or use a VPN but it's inside my homenet that I want to kill. Thx.
Michel Kohanim Posted August 8, 2013 Posted August 8, 2013 Hi Exten, I do not recommend it since, theoretically, ISY will choose a default port but this has never been tested. With kind regards, Michel
Exten Posted August 8, 2013 Author Posted August 8, 2013 Guess I'll have to test it. An admin console checkbox to auto-prefer an SSL connection? Or disable unencrypted all together with a checkbox? Or maybe an automagic flipover from unencrypted to SSL if the ISY is pre configured for SSL ? My firewall is like that. If I approach it with a browser on port 80 it automatically flips over to port 443 and redirects my browser over to an SSL connection. Recently there's been a news blip about hackers breaking into home automation systems. I hate the hassle but I guess I'll have to do it.
Exten Posted August 8, 2013 Author Posted August 8, 2013 Also.....mobilinc will automatically prefer an SSL connection and it will flip over to SSL just fine. It would be nice to see the flipover initiated at the ISY level as opposed to leaving it entirely up to the 3rd party software. Or a checkbox to completely disable unencrypted transactions. Thx.
Michel Kohanim Posted August 8, 2013 Posted August 8, 2013 Hi Exten, I think that would be a good idea: a checkbox to disable http altogether. Or, if you wish, use a very obscure port for http something like 30692. With kind regards, Michel
Recommended Posts