Community discussions

Search found 853 matches

  • 1
  • 2
  • 3
  • 4
  • 5
  • 18
by msatter
Mon Aug 13, 2018 6:27 pm
Forum: Beginner Basics
Topic: google captcha after installing mikrotik
Replies: 4
Views: 196

Re: google captcha after installing mikrotik


In the captcha window, there is a link "Why did this happen?" Check there.

My guess is you have a public IP associated with malicious activity of some type.
So Google make you now also look as criminal...thanks.
by msatter
Mon Aug 13, 2018 12:28 pm
Forum: Beginner Basics
Topic: google captcha after installing mikrotik
Replies: 4
Views: 196

Re: google captcha after installing mikrotik

Google is just bugging you because they can.

Google does not like not to be able to know everything about you moving over the internet. This message is shown, when you are doing something right.

Better is to use duckduckgo.com to conduct your searches.
by msatter
Sun Aug 12, 2018 11:57 pm
Forum: RouterBOARD hardware
Topic: hAP ac² Amazon USA Price
Replies: 3
Views: 240

Re: hAP ac² Amazon USA Price

Don't buy Amazon. ;-)

Have a look who the reseller is and where he is situated. Could Eastern Europe so shipping costs.
by msatter
Thu Aug 09, 2018 12:42 am
Forum: Announcements
Topic: Security announcement blog
Replies: 60
Views: 6259

Re: Security announcement blog

I made a filter that act as a honeypot for port 8291 and I caught some fish and added that to my drop line in RAW and log when there is a revisit in that CIDR. I have the 146.185.222.0/24 (Barbarich Viacheslav Yuryevich) CDIR trying every 30 seconds to approach a port. It is still going it tried por...
by msatter
Wed Aug 08, 2018 2:45 pm
Forum: Announcements
Topic: v6.43rc [release candidate] is released!
Replies: 491
Views: 64669

Re: v6.43rc [release candidate] is released!

Found the problem and it was that I changed to an other DNS server that did not Round Robin by default.
by msatter
Tue Aug 07, 2018 12:37 pm
Forum: Announcements
Topic: v6.40.8 [bugfix] is released!
Replies: 36
Views: 9650

Re: v6.40.8 [bugfix] is released!

If 6.40.8 is safe in respect to latest rumors on miners https://www.bleepingcomputer.com/news/security/massive-coinhive-cryptojacking-campaign-touches-over-200-000-mikrotik-routers/ ? I keep hear that bugfix is not safe, but I'm not ready to mass-upgrade and reconfigure my park of routers to curren...
by msatter
Mon Aug 06, 2018 3:57 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 108
Views: 10879

Re: Winbox vulnerability: please upgrade

It looks that an CVE has been created and I don't know enough about if it is done by the one who discovered this vulnerability of by Mikrotik self. The CVE number is: CVE-2018-14847
by msatter
Mon Aug 06, 2018 3:56 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 108
Views: 10879

Re: Winbox vulnerability: please upgrade

We have added more details, so that it is more clear: https://blog.mikrotik.com/security/winbox-vulnerability.html thanks, it is much more clear now. Except that the 6.28 version is vulnerable too . I am able to read usernames/passwords from boards with this version using winbox vulnerability explo...
by msatter
Mon Aug 06, 2018 1:50 pm
Forum: The User Manager
Topic: Paypal
Replies: 21
Views: 1021

Re: Paypal

is it possible to downgrade 6.43rc45 (Release candidate) to a lower version?
why?
Why not?

It is possible but please the backup files you have to make, separate.

Restore the matching versions of RouterOS and backup file .
by msatter
Mon Aug 06, 2018 1:30 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 108
Views: 10879

Re: Winbox vulnerability: please upgrade

Well, the linked blog does include this information Versions that include a fix: 6.40.8 [bugfix] or 6.42.1 [current] released on 25-mar-2018 We have added more details, so that it is more clear: https://blog.mikrotik.com/security/winbox-vulnerability.html I did write that the blog did contain that ...
by msatter
Mon Aug 06, 2018 11:14 am
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 108
Views: 10879

Re: Winbox vulnerability: please upgrade

According to changelog it is fixed What's new in 6.40.8 (2018-Apr-23 11:34): !) winbox - fixed vulnerability that allowed to gain access to an unsecured router; So why would they post this again if it was fixed in April? do you can read ? THEN, IS THIS CLEAR INFORMATION? All versions from 6.29 (rel...
by msatter
Mon Aug 06, 2018 9:43 am
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 108
Views: 10879

Re: Winbox vulnerability: please upgrade

It's disappointing that both the httpd vulnerability
We did fix and send on day one.
This is referring to this post: viewtopic.php?f=21&t=137572#p678156
by msatter
Mon Aug 06, 2018 1:14 am
Forum: General
Topic: Mikrotik in the news..bad news
Replies: 57
Views: 2707

Re: Mikrotik in the news..bad news

Thanks Bram for explaining this and the access data was indeed stored in the device and so not with Mikrotik. Was stored, this because the password is not stored in router anymore, if I remember that well?
by msatter
Sun Aug 05, 2018 5:39 pm
Forum: RouterOS v6 RC and v7 BETA
Topic: Ltap mini upgraded to RC and GPS dissapear [SOLVED]
Replies: 3
Views: 184

Re: Ltap mini upgraded to RC and GPS dissapear [SOLVED]

I think you have to request support by mailing to support@mikrotik.com
by msatter
Sun Aug 05, 2018 3:37 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 108
Views: 10879

Re: Winbox vulnerability: please upgrade

Mikrotik has room improve also with the blog... Rhetorical question: Why people needs blogs, tweets or Facebook messages to feel beeing informed well? Because Twitter and Facebook are not wideley accepted ways to communicate. Facebook is evil and Twitter 'rate limits' me so of the visits I make onl...
by msatter
Sun Aug 05, 2018 3:26 pm
Forum: General
Topic: Firewall rules not working after 6.42.6 upgrade
Replies: 19
Views: 681

Re: Firewall rules not working after 6.42.6 upgrade

A RB750Gr3 and RB760iGS you can activate HW acceleration but still get local yo local traffic going through the processor. To partly avoid this, I notrack them in RAW. Despite I enable switch in the config it won't stick and only HW acceleration is steering is doing it the background but does not mi...
by msatter
Sun Aug 05, 2018 1:48 pm
Forum: General
Topic: Mikrotik in the news..bad news
Replies: 57
Views: 2707

Re: Mikrotik in the news..bad news

Since a few months we have now GDPR laws which regulated protection of private information.

I think that I can state that password falls also under the GDPR and that would have the impact that Mikrotik did not do enough, to protect their customers under the GPDR.
by msatter
Sun Aug 05, 2018 1:22 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 108
Views: 10879

Re: Winbox vulnerability: please upgrade

Course I know where announcements a located, I am not stupid. I am calling for doing that bit extra to inform all and keep an important notice im the picture.Creating the notice in announcements hope al is going being right from there is not working as is proven now. Mikrotik has room improve also w...
by msatter
Sun Aug 05, 2018 10:28 am
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 108
Views: 10879

Re: Winbox vulnerability: please upgrade

43north ... you are using our forum ... you are posting ... why have you not upgraded your router earlier even you have had (I suppose) knowledge of the problem? Honestly I had never read the announcements section of the forum, I do now...... and will from here on out. My ignorance cost me, I know....
by msatter
Sat Aug 04, 2018 8:29 pm
Forum: General
Topic: Mikrotik in the news..bad news
Replies: 57
Views: 2707

Re: Mikrotik in the news..bad news

Hands up who is daily following CVE news? I have bookmarked for Mikrotik and AVM now. AVM had a good run after the last containment of the VOIP vulnerability. ISP often offer also VOIP and the had to compensate customers for the expenseive calls made due to this vulnerability. Version 7 by AVM is r...
by msatter
Sat Aug 04, 2018 6:17 pm
Forum: General
Topic: Mikrotik in the news..bad news
Replies: 57
Views: 2707

Re: Mikrotik in the news..bad news

The warning e-mails by Mirkotik are sent out a day after news. I hope next week we will be informed why informing resellers and users that were on the mailing list were not informed earlier about the risk. If creating a CVE would have reduced the number of routers being infected to spread bad softwa...
by msatter
Sat Aug 04, 2018 1:17 am
Forum: Beginner Basics
Topic: Ethernet over power and PPPOE
Replies: 3
Views: 155

Re: Ethernet over power and PPPOE

Hi guys need some help. I have fibre connection to Ethernet over power net next device plugged into Mikrotik on ETH1 for PPPOE getting connection from other Ethernet over power thats connected to ISP. Works great no issue. But now I have other ETH over power device in other room but it does not get...
by msatter
Fri Aug 03, 2018 11:34 pm
Forum: Announcements
Topic: Winbox v3.16 released!
Replies: 63
Views: 6977

Re: Winbox v3.16 released!

OK I was thinking of the communication between routers and the Master Password is about saving the configs in a file on your computer so you can transfer to an other instance of Winbox. I was wrong! So looking at what it is and how it works and the options. Looking at the password interface I can on...
by msatter
Fri Aug 03, 2018 10:16 pm
Forum: General
Topic: Firewall rules not working after 6.42.6 upgrade
Replies: 19
Views: 681

Re: Firewall rules not working after 6.42.6 upgrade

That conversion is mandatory from 6.41 and Master port is replaced by bridge.

viewtopic.php?f=21&t=128915
by msatter
Fri Aug 03, 2018 9:09 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 108
Views: 10879

Re: Winbox vulnerability: please upgrade

The MAC addressing is used inside the network (L2) and sometimes on the first hop to your ISP router/switch. MAC can't be blocked as discussed in other threads.

viewtopic.php?f=21&t=133533&p=656925&hi ... 51#p656925
by msatter
Fri Aug 03, 2018 9:00 pm
Forum: RouterBOARD hardware
Topic: SFP module is extremely hot
Replies: 22
Views: 2797

Re: SFP module is extremely hot

I have Mikrotik in the utility close to the outside wall so it gets warm and toasty especially these sunny days. The heat generated the optical devices seems more moderate than purely electrical SFP modules. And those sqaure copper heatsinks looks to me to be very efficient but I don't enough extrud...
by msatter
Fri Aug 03, 2018 6:04 pm
Forum: General
Topic: IP Addresses list that access to google
Replies: 4
Views: 211

Re: IP Addresses list that access to google

The addresses depends on which ISP you use.

If you want it from Google self then ask their DNS at IP 8.8.8.8 and IP 8.8.4.4
by msatter
Fri Aug 03, 2018 6:01 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 108
Views: 10879

Re: Winbox vulnerability: please upgrade

A start can be found here: viewtopic.php?f=2&t=137375

Also check the blog for more information.
by msatter
Fri Aug 03, 2018 4:57 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 108
Views: 10879

Re: Winbox vulnerability: please upgrade

@CZFan, last you wrote that also but that thread was closed before I could read it. Security is for 95% reacting to a attack the remaining 5% can cause more damage than the 95%. I mentioned AVM, they had not long ago big hole in their VOIP system. It was patched and rolled out within a few weeks to ...
by msatter
Fri Aug 03, 2018 2:21 pm
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 108
Views: 10879

Re: Winbox vulnerability: please upgrade

AVM (Fritz!box) does it because they are in the SOHO area in which Mikrotik also more and more operative. You can switch of automatic updates and be warned and even tell not to check. TR069 can also be disabled so you are the boss. AVM sells routers in Germany, Poland, Netherlands, Belgium, Austria ...
by msatter
Fri Aug 03, 2018 2:07 pm
Forum: General
Topic: [Feature request] export append=yes
Replies: 2
Views: 179

Re: [Feature request] export append=yes

We are all wearing false teeth because we lost those the real ones chewing on this. Do it manually on your own computer.

Maybe it will be in ROS7 like many other unicorns.
by msatter
Fri Aug 03, 2018 1:45 pm
Forum: RouterBOARD hardware
Topic: SFP module is extremely hot
Replies: 22
Views: 2797

Re: SFP module is extremely hot

You may use the pictures. Don't forget to tell that not to much tension is put on the RJ45 and the power connector. To reduce the tension on the power connector you should use a round file create a space in the ribs of the heatsink. Glueing is also possible but I first want to order also a 10km vers...
by msatter
Fri Aug 03, 2018 12:27 pm
Forum: Announcements
Topic: Winbox v3.16 released!
Replies: 63
Views: 6977

Re: Winbox v3.16 released!

I also wrote, If you let WinBox remember (Keep Password) your plain password because you don't want to enter it every time then it becomes the responsibility of the user. Winbox should not keep any passwords when Keep Passwod is not selected for the setting gor that specific device. I can't image th...
by msatter
Fri Aug 03, 2018 10:42 am
Forum: Announcements
Topic: Winbox v3.16 released!
Replies: 63
Views: 6977

Re: Winbox v3.16 released!

You can't encrypt the passwords without a master password. How would you decrypt them then? This applies to any program, where you have any data that needs to be encrypted. To encrypt something, you need to have a decryption key. This is the master password. Yes, and as above people said, all your ...
by msatter
Fri Aug 03, 2018 9:59 am
Forum: Announcements
Topic: Winbox vulnerability: please upgrade
Replies: 108
Views: 10879

Re: Winbox vulnerability: please upgrade

In our country we have a lot of windmills and we don't fight them, we use them. However we have a "Bierkaai" and yes that has to do with beer...and not weed despite it arrives in the same city. De Bierkaai was the quay in Amsterdam where the barrels of beer arrived and the porters worked who loaded ...
by msatter
Thu Aug 02, 2018 8:38 pm
Forum: Announcements
Topic: Security announcement blog
Replies: 60
Views: 6259

Re: Security announcement blog

Then that good firewall takes the burden on them by not allowing to have that unsafe router to call home. The must not be a button to switch itall of and only a firewall rule can block it. It is like you are jumping out of a plain on a parachute and start cutting lines. Nobody can help you by knotti...
by msatter
Thu Aug 02, 2018 8:24 pm
Forum: General
Topic: Mikrotik in the news..bad news
Replies: 57
Views: 2707

Re: Mikrotik in the news..bad news

I can see the top of Sob's posting in the preview. And what happened was the unimaginable happening. A buyer of a device, you expect that it won't share your secret information, that you need to use that device. It was a blindspot on the side Mikrotik that it not was discovered during audits of this...
by msatter
Thu Aug 02, 2018 7:59 pm
Forum: Announcements
Topic: Security announcement blog
Replies: 60
Views: 6259

Re: Security announcement blog

To go to a HTTPS page you most of the time need a initiate that on http. Even the handshake on 80/443 is giving away that someone is looking at a screen that can be warned. Call home is the term for a device/application getting in touch with where it comes from. The IP address is to me not a signifi...
by msatter
Thu Aug 02, 2018 5:45 pm
Forum: Announcements
Topic: Security announcement blog
Replies: 60
Views: 6259

Re: Security announcement blog

RouterOS calls home each day or week to check if there is something wrong. If so every http session gets a page displayed that an update is needed because the router is below the minimal required version. If ignored then after two weeks the router only functions when you are initiating an update. A...
by msatter
Thu Aug 02, 2018 2:46 pm
Forum: General
Topic: Mikrotik in the news..bad news
Replies: 57
Views: 2707

Re: Mikrotik in the news..bad news

Im sure that suggestions for improving the firewall IPv4/IPv6 will be taken serious. For larger networks tr069 could be used to keep the routers up-to-date or streamline configs.

An user can interfere but that is something between the provider and the customer.
by msatter
Thu Aug 02, 2018 2:40 pm
Forum: Announcements
Topic: Security announcement blog
Replies: 60
Views: 6259

Re: Security announcement blog

Posted in an other thread also and I had the idea after discussion with an other member. My ISP will close down my connection when I have a device that misbehave so why not extent this to the router itself. RouterOS calls home each day or week to check if there is something wrong. If so every http s...
by msatter
Thu Aug 02, 2018 2:34 pm
Forum: General
Topic: Mikrotik in the news..bad news
Replies: 57
Views: 2707

Re: Mikrotik in the news..bad news

@msatter Do you think that all 70 000 users of hacked devices in Brazil do even know what WinBox is? Hmmmmmm you are giving me an idea. RouterOS calls home each day or week to check if there is something wrong. If so every http session gets a page displayed that an update is needed because the rout...
by msatter
Thu Aug 02, 2018 2:19 pm
Forum: General
Topic: Mikrotik in the news..bad news
Replies: 57
Views: 2707

Re: Mikrotik in the news..bad news

@msatter: How do you expect that Mikrotik could MORE persuade people to upgrade if they (users not Mikrotik) do not care? It is not a matter how many infos Mikrotik will publish. If admin/user/owner do not care than it is not a problem of Mikrotik. Do you think that other comapnies call or mail eac...
by msatter
Thu Aug 02, 2018 2:12 pm
Forum: General
Topic: Mikrotik in the news..bad news
Replies: 57
Views: 2707

Re: Mikrotik in the news..bad news

The sad part is that owners/admins DO NOT CARE.
And that statement right there is the crux of the issue.
Now they care and have seen some go mad in their first posting.
by msatter
Thu Aug 02, 2018 2:10 pm
Forum: General
Topic: Mikrotik in the news..bad news
Replies: 57
Views: 2707

Re: Mikrotik in the news..bad news

Mikrotik staff already posted a reminder for users to upgrade. More info here https://forum.mikrotik.com/viewtopic.php?f=21&t=137572 The sad part it's that the exploit is more than two months old.... Have a look at the posting times and my posting is probably the trigger to have Mikrotik posting an...
by msatter
Thu Aug 02, 2018 2:05 pm
Forum: General
Topic: Mikrotik in the news..bad news
Replies: 57
Views: 2707

Re: Mikrotik in the news..bad news

Mikrotik staff already posted a reminder for users to upgrade. More info here https://forum.mikrotik.com/viewtopic.php?f=21&t=137572 The sad part it's that the exploit is more than two months old.... You mean the one the patched back in April 2018? Or the one that was patched in March 2017? What re...
by msatter
Thu Aug 02, 2018 2:01 pm
Forum: General
Topic: Mikrotik in the news..bad news
Replies: 57
Views: 2707

Re: Mikrotik in the news..bad news

Mikrotik staff already posted a reminder for users to upgrade. More info here https://forum.mikrotik.com/viewtopic.php?f=21&t=137572 The sad part it's that the exploit is more than two months old.... Have a look at the posting times and my posting is probably the trigger to have Mikrotik posting an...
by msatter
Thu Aug 02, 2018 1:57 pm
Forum: Announcements
Topic: Winbox v3.16 released!
Replies: 63
Views: 6977

Re: Winbox v3.16 released!

I had a problem that Winbox was shutting down after 35 seconds. I could extend this time by keeping kicking stuff in Winbox. It would not display the uptime and clock And it only displayed zeroes. When opened health it onle displayed the buttons and after a few seconds it resized so that the values ...
by msatter
Thu Aug 02, 2018 1:17 pm
Forum: General
Topic: IPv6 problem!!!
Replies: 8
Views: 381

Re: IPv6 problem!!!

Hoi pe1chl, I have really trouble reading your posts on a tablet. The end of lines are all over the place and that is maybe due drafting in a separate program and pasting into the forum. Maybe you can change something in that process that the lines are not broken. I can't sent you a PM because it is...
by msatter
Thu Aug 02, 2018 12:51 pm
Forum: Announcements
Topic: Security announcement blog
Replies: 60
Views: 6259

Re: Security announcement blog

  • 1
  • 2
  • 3
  • 4
  • 5
  • 18