Careful what you open to the world

helloworld · November 8, 2017, 1:26am

I was just auditing my system for extra open ports I no longer needed open and decided to check out shodan.io and found an alarming number of people had some sensitives ports open without any authentication…

I saw people with port 445 open without any authentication, security cameras, home assistant without auth, ssh without keys, etc.

Port 445 is SMB/Samba so anyone can connect and depending on file permissions read/delete files and see any and all secrets and configuration files.

So please users check your network configurations and only open what you need.

Check your network with shodan.io or with GRC.

hijinx · November 8, 2017, 8:24am

This is a great post to help you lock down your HA:

hijinx · November 8, 2017, 8:44am

Yeah, searching for “homeassistant” shows a bunch of open SMB and MQTT servers:

https://www.shodan.io/search?query=homeassistant

Also open HA instances (per the search terms from HA docs - here)

https://www.shodan.io/search?query=Home+Assistant