Search results

The panel can be grade 2 I believe, but I am not sure if that is the case with the signalling. They've literally not responded to me at all despite tens of attempts. I've been doing competitor research on video verified systems (hence this work), and on the whole the security is not good. I...

By not disclosing the issues though, the vendor wasn't going to fix them. Unfortunately, you sometimes need to force their hand.

The industry is a state. I thought the RF side of things was bad, then I looked at the IP side. Unfortunately, I can't really name the good guys without being called biased, so I'm just releasing the vulnerabilities I find. 3 months is long enough - customers should have been informed of...

That's really not how it works. They've had 3 months with acknowledged communication with CERT/CC - all they need to do is ask.

I asked them what they wanted disclosed, and there was no response whatsoever.

It's very easy to spoof alarms from other panels - the security they have on the IP side is essentially worthless: link deleted by Mod

I can't really comment on the actual threats from physical intruders that are seen day-to-day. But the signalling market and the standards dictate that the encryption must be there. It doesn't appear to be. In my opinion, the there are other threats. A denial-of-service attack across an entire...

You aren't the only person who has mentioned this being an issue. Looking at the protocol and architecture, it just doesn't allow for thing to be truly reliable - there is no end-to-end acknowledgement of the messages. There's also this (that I only found out about today)...

No - and many systems do send those over the Internet, totally in the open. I guess the difference is that they are known to be insecure and the level of threat is generally much lower.

No one had a problem with the HeartBleed OpenSSL bug until it was discovered. Things change. The CSL Dualcom products are so far behind the curve that it's not funny. 4, 5 and 6 concern the standards. I'm not sure why you don't think I have the standards, given that there are multiple excerpts...

As many of you know, I spent some time researching the CSL CS2300-R SPTs last year. I found a series of issues that I think are serious problems. CSL have had 17 months to deal with these issues, and after them dawdling, I opted for co-ordinated disclosure of the issues via CERT/CC. CSL have...

Yeah, I only know about Le Sucre because someone was ripping them out. Piper and Canary were just added for comparison - I don't think they are viable solutions for an alarm system. If I go professional, are there that many more options?

Thanks. I made a list: Honeywell Le Sucre ? Friendland Globalguard Crap Canary Single unit cam/PIR Piper Single unit cam/PIR Videofied Visonic Real Alarm Hard to get Risco Agility 3

I'm looking to get an Internet connected alarm (i.e. it can be controlled and monitored from outside the property), ideally with video verification and the ability to monitor the video from time to time. What systems are available that do this?

Great, that's what I'll do then. Just looked at another few manuals and they actually go so far to specify brands of flex. Totally stupid.

12445W so big. The breaker/cable sizing rules are still 10A + 30% of remainder, right?

Just about to install a new cooker. I was expecting the manual to either be vague or specify hard-to-get 6mm2 rubber flex. Instead it says "6.0mm2 flexible twin and earth". Is there such a thing as flexible twin and earth? I've installed a fair few cookers, more than 10 years back...

I wrote the post about connecting with an FTDI cable. A lot of the very cheap USB->Serial cables have problems connecting to anything slightly non-standard. The genuine FTDI cables are better. That's not to say the cheaper ones won't work though.

Surely the receivers in the Yale alarm aren't bad enough that a 2.4 or 5.8GHz wireless transmission is going to interfere with their 433MHz communications?

Do you have an idea about how much they are going to sell for? How are they doing an external bell box?